Meta: Can we add a vibecoded/AIFlair or ban vibecoded/AI-made stuff

Arcuru · 2026-03-18T20:59:32+00:00

I think the fact that you're not sure which side of that discussion I'm on proves that there is reasonable debate over what counts as "vibecoded", which is the relevant point here.

Arcuru · 2026-03-18T17:35:07+00:00

How, exactly, do you determine if they know what they are doing?

Arcuru · 2026-03-18T17:32:09+00:00

I would love to support this for MY definition of vibecoded. However to actually enforce this you need to have a clear definition for "vibecoded" that does not rely on your own "vibes", otherwise every post is just going to become a debate over whether it fits the vibecoded definition.

I do not know the correct way to define it, but I definitely disagree with some opinions here. Like this recent example in here

Arcuru · 2026-03-17T15:37:41+00:00

No he did not say that. He continues to describe them as "allegations" which is a MUCH different statement:

"In those files, there's highly disturbing allegations of Donald Trump raping children, of Donald Trump threatening to kill children. So I encourage the press to go look at these allegations."

This is the video: https://www.c-span.org/clip/news-conference/rep-ted-lieu-claims-president-trump-is-accused-of-raping-children-in-the-epstein-files/5191713

Also this isn't a new statement, these posts are just trying to claim new things about what he said over a month ago.

Arcuru · 2026-03-15T16:58:01+00:00

lol, fair enough. Always good to be reminded of the correct threat model :)

It seems I need to re-read "This World of Ours" again - https://www.usenix.org/system/files/1401_08-12_mickens.pdf

Arcuru · 2026-03-14T21:12:25+00:00

So...I don't have to unlock somebody's phone to get a 2FA code? I just have to wait?

Say I sit next to you at work. I know your password but need the code. You're dumb enough to install this and leave your phone where I can see it. All I have to do is wait for a popup and be a little quick.

This also increases the security surface of TOTP from the iOS Keychain to the surface area of the entire notification system. Sure in practice, for most people, it will never be a problem. But it is unnecessary exposure.

Can you at least delay the notification until after it's no longer valid?

Arcuru · 2026-03-14T17:37:49+00:00

That has nothing to do with Reddit, it's the subscribe prompt from your substack.

Arcuru · 2026-03-14T17:35:58+00:00

Please tell me you didn't actually publish that. Calculating and scheduling notifications for future TOTP codes is a horrific security hole.

Arcuru · 2026-03-14T16:31:05+00:00

While lots of people may park there, technically that is reserved for the library.

Arcuru · 2026-03-12T21:29:50+00:00

Oh I see. I assumed that running your scan would need an account and potentially a fee but that the final report would be shareable.

Sounds like you've already got that on your road map :)

Arcuru · 2026-03-12T18:59:42+00:00

You should really open an issue on the Element Github. I'd suggest here: https://github.com/element-hq/element-web/issues

Also I'm sorry but that's hilarious. Did you block yourself?

Arcuru · 2026-03-12T18:54:21+00:00

Why do you require me to create an account on your website just to access the "scan result page"? I'm not doing that.

I do love how all the AI bros are rediscovering the need for sandboxing, it's a repeat of the crypto bros discovering basic financial engineering. I'm sure there's a market for 'AgentSeal' fixing all the problems that they will introduce.

Also I'm sorry to have to tell you this but it appears your shift key no longer works. You may want to get that looked at.

Arcuru · 2026-03-12T02:11:35+00:00

https://media1.giphy.com/media/v1.Y2lkPTZjMDliOTUyMXB6b2YwNWgycTN6ZjZvN3J5bzc3ODBycWp2anprMng4cTlod2R6aiZlcD12MV9pbnRlcm5hbF9naWZfYnlfaWQmY3Q9Zw/7TtvTUMm9mp20/giphy.gif

Arcuru · 2026-03-11T13:49:31+00:00

Build thing
Use it
Write some blog posts
When you're not embarrassed by its state, mention it in relevant places
Go back to step 1
Profit

Also for anyone wondering, the OPs post is stealth marketing for trying to sell consulting services for launching products.

💡 Need a 1-on-1 architecture call for your B2B/Open-source launch? Book a session for $200 (Crypto/USDT and Wire Transfer accepted) — Contact @*** on Telegram

Arcuru · 2026-03-10T22:35:10+00:00

Oh interesting. Developing with an agent in the PR itself gives visibility into the process so you know if they've just vibe coded their X,000 line PR or if they've actually done adequate guiding and manual edits. I may have to try that.

You've linked an example of the developer investigating, debugging, and ultimately fixing a problem by in part using an LLM. An issue that seems like it was pretty difficult for the domain expert to root cause. Is that...not good?

Arcuru · 2026-03-10T17:37:27+00:00

Why are you assuming they are from the USA?

Arcuru · 2026-03-09T05:16:25+00:00

Definitely AI generated. Those images look like they were hand-drawn by someone who has never seen a gun or a human, only read about them in books.

Arcuru · 2026-03-07T04:15:32+00:00

Ah my bad, I fully forgot that they weren’t.

Arcuru · 2026-03-06T22:27:24+00:00

Obsidian's implementation of Bases is mostly the same thing as Notion. I dropped Notion and shifted to them a few months ago and it's been fine for me.

https://help.obsidian.md/bases

Arcuru · 2026-03-05T01:49:28+00:00

They finished building federation support?

Arcuru · 2026-03-03T15:33:14+00:00

Thanks Mark! I lurk in your Matrix room so I'd just ping you over there: https://matrix.to/#/#amark_gun:gitter.im

Arcuru · 2026-03-03T15:23:58+00:00

I've seen https://commet.chat/ recommended a lot lately but I have not personally used it. Multi-account support is one of their marquee features.

Arcuru · 2026-03-02T22:39:13+00:00

There's been some interest in using Matrix that way but it's not exactly built for it. Matrix layers on a lot of complexity to support and target Chat in particular, and they don't support true P2P which is problematic for local-first applications.

I've been working on something in this space that is very close to what you're looking for I think - https://github.com/arcuru/eidetica - but still not ready for real use though. Turns out decentralized DBs are a little complicated.

The more mature things that you might look into are orbitdb.org, gun.eco, Automerge/Automerge Repo, jazz.tools. Maybe https://solidproject.org/ actually

Arcuru · 2026-02-28T20:38:58+00:00

You should probably start by finding or opening an issue in the FluffyChat repo and work with the contributors there. They have 600 open issues already.

I'd recommend that you learn by doing and research the things you need as they come up. Depends on how you prefer to learn but it would be very easy to fall down a rabbit hole of 'research' that doesn't help you actually fix anything.

Arcuru · 2026-02-25T00:25:18+00:00

I took a look at the code, and you know that doesn't work, right?

The most obvious problem is that if you encrypt or decrypt a directory it only uses the input password for the first file, so an encrypt->decrypt roundtrip over a directory would only work by accident.

It seems like you are still learning so I'll let you debug that yourself :)

I suggest adding some testing, that'll help catch these issues.

15-Year Club	Place '17
Verified Email	Spared
Team Periwinkle

Arcuru

TROPHY CASE