https://x.com/feross/status/2038807290422370479?s=20 axios exploit. npm package has since been pulled. but > The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise.
For once I'm glad that our JS codebase has a lot of outdated dependencies (unlike our Clojure codebase)!
https://notes.zachmanson.com/copilot-edited-an-ad-into-my-pr/
Yeah that makes me want to throw up a little
The backlash has been loud and swift: GitHub has since removed "tips" (as they called ads) from AI PRs.
I imagine that "feature" will be on the back burner until our collective standards have been sufficiently lowered in ~18 months time
wonders if Kalshi or Polymarket have open bets on that? đ¤
(that's a joke BTW)
Turboquant is supposed to reduce model sizes 6X in memory. I don't see openAI surviving when things start shifting local.
Standard Microsoft, nothing new. My gaming PC is pleading with me to switch to SteamOS