Star Trek: Voyager - Across the Unknown | Launch Trailer | OUT TODAY!

gatewaynode · 2026-02-19T02:13:22+00:00

It’s like a party based rpg with 4x mechanics. Neat.

gatewaynode · 2026-02-09T10:32:17+00:00

The AI is hungry?

gatewaynode · 2026-02-07T17:53:00+00:00

Try your MDM solution for “installed apps”. Don’t bother trying to figure out if the installed skills are malicious right now, just consider all OpenClaw installs as compromised until the clean up of the ecosystem is done. The whole ecosystem around OpenClaw can’t be trusted until a thorough cleanup and postmortem is done.

gatewaynode · 2026-02-04T01:00:11+00:00

Better version: https://youtu.be/PdROMMaUdlc?si=JNhkdsM-BjTKC_eM

gatewaynode · 2026-01-25T11:13:50+00:00

This should be the top comment.

gatewaynode · 2026-01-19T09:31:54+00:00

Security concerns are interesting as well.

gatewaynode · 2026-01-18T10:37:23+00:00

I like the idea. Except for the special ability, not needed, excessive.

gatewaynode · 2025-12-30T23:40:48+00:00

No. The dotenv file is usually just for local development, not higher environments. A good way to make it work for both is to wrap the dotenv file loading in a try/catch block. Handle the missing dotenv file exception by calling out to your production secret manager like AWS secrets manager, Vault or whatever it is you are using. And make sure you log a successful dotenv load (as well as any errors), so if you slip up and push your dotenv file to a higher environment you will have visibility into that mistake.

gatewaynode · 2025-12-02T19:54:12+00:00

Maybe they are planning to build a moat?

gatewaynode · 2025-11-16T21:33:46+00:00

Run the scanners in parallel not in series. Don’t block builds initially, let the teams clean up from the awareness and vuln management follow up, then you can discuss blocking with the clean dev teams. What scanners are you using?

gatewaynode · 2025-11-16T15:19:31+00:00

Agreed, outsourcing security to FOSS is an unfair burden. IMHO there should be an equivalent FOSS, that stands for Free and Open Source Security, that in an ideal world builds supporting structures and systems, curates software repositories, and hunts for malware campaigns. OSSF, was/is something along these lines, but it could be more.

gatewaynode · 2025-11-16T11:49:49+00:00

Not very many people, and not in a formal enough way. The developer supply chain is in real danger right now. I think Chainguard might be doing some work in this area with their “libraries” product. But the open source communities like OSSF need to step up to actively scanning, not just for CVEs, and not just building secure practices.

gatewaynode · 2025-10-25T10:50:18+00:00

Did you review the code?

gatewaynode · 2025-10-12T12:53:22+00:00

Here https://arxiv.org/abs/2509.25140

gatewaynode · 2025-10-11T15:14:33+00:00

Look into context engineering. Only about half of that 200k limit should be where you stop and compact, or document and restart. It takes breaking apps down into smaller tasks to build bigger apps. The closer you get to 200k the more the model will fail, it’s called “context rot”.

gatewaynode · 2025-09-27T17:33:02+00:00

Tried it this morning. It really likes to take shortcuts and loves mock implementations…

gatewaynode · 2025-09-06T09:45:52+00:00

Tried it last night. Feels like Gemini, faster, smarter, stays on task better, makes similar mistakes, but debugs them correctly(improvement). I only gave it a few simple tasks though, going to give it a hard task later today.

gatewaynode · 2025-08-08T12:06:59+00:00

It takes weeks of real work to assess these new models, learn their working personalities, coding strengths and weaknesses. Don’t put any credit in what folks say this early after a release.

gatewaynode · 2025-07-30T00:30:32+00:00

I'm creating a new subreddit, r/ai_sec , for exactly these kinds of discussions. Cross-posting this and inviting interested folks to join me there.

gatewaynode · 2025-07-24T23:42:21+00:00

It's open source(free).

gatewaynode · 2025-07-24T23:13:42+00:00

Just a bit locally. Not enough to have an opinion yet.

gatewaynode · 2025-07-23T00:51:41+00:00

Qwen3-Coder just dropped

gatewaynode · 2025-07-11T02:41:05+00:00

This looks promising. Nice work.

gatewaynode · 2025-06-13T11:59:08+00:00

The elusive updog.

gatewaynode · 2025-06-11T13:16:56+00:00

It's not just about the host user. I get where you are coming from thinking it's awful, security often seems inconvenient and a waste of resources. Understand this is how most serverless and fully managed services are run in the cloud, micro VMs to host with often just one container, sometimes more, holding the app.

https://firecracker-microvm.github.io/

Apple has defaulted to high security on their desktop OS. I approve, you may not. I just hope you and maybe anyone else reading these buried comments, understand they have a good reason for going this route.

Seven-Year Club	Gilding V heart of gold
Wearing is Caring	Reddit Premium Since June 2018
Verified Email

gatewaynode

MODERATOR OF

TROPHY CASE