@[email protected]

Happened at 0000 PST, or did it...

@realarmaansidhu @lochan_twt HuggingFace is better, but you have to use some tricky queries (I might personally use a "\1" control character).

Search "OPENAI_API_KEY" on GitHub. Right now. Public repos. Exposed credentials. Thousands of them. Sitting there. Live. Billable. 445,000 people just learned the most expensive lesson in software development: your API key is your credit card. And you left it on a public bench. 28 million hardcoded secrets leaked on public GitHub repos in 2025. Not private repos. Public. Searchable. Indexed. AI-service keys specifically surged 81% year over year. OpenAI keys grew 1,200x in exposure volume over two years. Bots scrape them within minutes. By the time you notice, someone in a timezone you've never visited has run 10,000 GPT-4 calls on your account. Developers have reported bills of $300 in a day. $5,000 in a week. One leaked key carried $150,000 in potential exposure. Not a company. A solo developer. Shipping fast. Forgot a .env in .gitignore. Pushed to main. Went to sleep. Woke up to an invoice that looked like a mortgage payment. AI coding tools made this worse, not better. Copilot autocompletes your code faster. It also autocompletes your key into a commit faster. The tools designed to accelerate development are accelerating the exact mistake that drains your account. Speed without discipline is just expensive velocity. OpenAI and GitHub have secret scanning. Keys get flagged. Some get auto-revoked. But "some" and "eventually" don't help the developer whose card got charged $2,000 before the scanner woke up. The fix takes 30 seconds. Environment variables. .gitignore. Secret managers. Usage caps in the OpenAI dashboard. Rotate keys monthly. Treat every API key like a debit card taped to your forehead in Times Square. Because that's functionally what a hardcoded key in a public repo is. The AI boom created a million new developers who learned prompting before they learned security. "Move fast and break things" works until the thing that breaks is your bank account. Your API key is not a string. It's an open wallet. GitHub is the street. And the bots never sleep.

Just search OPENAI_API_KEY on github. Thank me later

@lochan_twt @dhruvtwt_ I like to believe that these keys are published on purpose. However, I did meet with a startup founder who exposed his Closed AI key in his website's plaintext. Someone abused the key months later, but that's why he only put $10 worth into his account.

@dhruvtwt_ I still do this

Incorrect API key provided: sk-proj-********************************************************************************************************************************************************uT0A. You can find your API key at

Incorrect API key provided: sk-proj-********************************************************************************************************************************************************g7gA. You can find your API key at

Government should be open-source

@Tw1x_sty @idkclarkie They also had signage at their newer Delaware location, so I can assume they already completed their property exchange with Guidewire at this point.

@Tw1x_sty @idkclarkie As of September 2023, Rōblox also take up space in 950 and 920 Park Place. Also, each of these buildings are about 3 or 4 storeys tall. Source: I went there.

Stayed in California in the past years? Don’t stay over there & please evacuate from that state, due to active wildfires around some towns. I’m also afraid that if @Roblox gets burnt down by wildfires, it’ll ruin the future of gaming…

@VitalVegas Exposed ethernet sockets ... interesting.

Rio is about to start charging for valet parking. Can’t think of another off-Strip casino doing that.

@VitalVegas The best value for takeaway food that I found on my trip in June 2023 was at the food court in Fashion Show Mall. It was ~$13 for a good chinese-style plate of rice, meat, and probably some veg. There's a supermarket west of the Strip next with groceries at reasonable prices.

No.

@r4y319 I remember differently. All friendships were converted to follower-following relationships. Rōblox had a feature prior to 2015 called Best Friends. If two players were Best Friends with each other, they would be classified as Friends in the new system.

Did You Know?: Up until 2015, Roblox had an unlimited friend limit, meaning that you could Friend as many people as you wanted. When Roblox added the new limit, which was 200 at the time, friends that surpassed that limit were automatically converted into Followers.

🔒•••••••••••••••••••••••••

@ventalus09_ I've built that tool on my own college's Macintosh compites. How much RAM does yours have by any chance?

@windows8point1 alright, i'll try and see if it works on the iMac. i hope college doesn't flag it.

tweeting this from my school's iMac.

@syrakyooz What would you do with the bots? Would their incumbent computing devices also be in the crowd?

imagine 1,210 people following you around in real life what would you do

@ventalus09_ I designed it for computers which don't give you sudo. You don't even need to interact with your system's Applications folder.

@ventalus09_ Try running Ollama on that: github.com/Windows81/Loca…

@def_meditext @hetmehtaa Wouldn't make too much sense. GPT was a novelty to most people at the time. It wasn't only until GPT-3.5 that they began to commercialise.

@hetmehtaa A vibe-coded CYBER SECURITY infrastructure made by GPT-2.

i am a cybersecurity guy, scare me with one word

@Tigersharke Where does this go?

Some may want to update their luanti. discord.com/channels/36912…

@RevoltoftheApes Is that the same Ternus who's all over the news today?

"The soul organizes the body as an expression of itself, as its instrument, as its intermediary with the outside world." - John Ternus

@ConsensusGurus John "turn us around" Ternus

@StoicalSophist @DarkTechMonitor Now *that's* what I'd like to see on a marketing promo with an AI-slop novelty banknote!

@StoicalSophist @DarkTechMonitor Precisely. When the United States was established, the "of America" was not of too much importance. In fact, even Congress briefly replaced it with "of North America". And this one counts because we're within these 250 years. #History" target="_blank" rel="nofollow noopener">en.wikipedia.org/wiki/Names_of_…