Normal

Just got a new VPS and installed @NousResearch Hermes Agent fast and easy setup

@blueshirt666 Alhamdulillah

I never thought I’d accept Islam. No background. No plan. Just one moment… that changed everything. 🧵

@glider_fi @OndoFinance 🔥🔥

For decades, someone else decided what went in your portfolio. On Glider, you get to decide. Build your own investment portfolio with $TSLAon, $NVDAon, $SPYon or any stock. Every tokenized stock by @OndoFinance. Available to anyone, anywhere in the world.

I guess most of the CT users often use fonrtun pro extension or xhunt extension (specially in the chinese community this is very popular), people see open source on github and just trust it. so today, I checked both xhunt and frontrun to see what is really going on under the hood and tbh some of this stuff is wild. xhunt is open source, it is true but being open source doesn't always mean safe. their README says "local-only data storage, no sensitive information uploads" which is a straight up lie. i checked the actual code and every single API call sends your real IP address, physical city, ISP and even persistent device fingerprint using FingerprintJS and the full url of every single page you visit on twitter, all going to their server at kb(.)xhunt(.)ai. they hit 4 different IP geolocation services [ipapi(.)co, ip-api(.)com, ipinfo(.)io, ipify(.)org] just to figure out where you are. even worse, they deliberately use RC4 encryption and String.fromCharCode arrays to hide header names like "authorization" and "x-user-id" and "x-window-location-href" from anyone reviewing the code. tbh legit developers don't do that. they also have a completely unrestricted HTTP proxy in the background script (EXECUTE_REQUEST handler) with zero URL validation, means any code can tell your browser to fetch literally anything, your local network, cloud metadata, whatever. and there is an empty wallet injection function already wired up with world:MAIN access just sitting there waiting to be activated. their remote config runs on Alibaba Nacos so they can push changes server-side in minutes without any chrome store review. frontrun is a lil bit different. it hooks into 12 𝕏 GraphQL endpoints : your feed, followers, following, searches, community posts, all of it and monkey-patches fetch, XHR, and WebSocket on 8+ crypto platforms. the intercepted API data from 𝕏 and crypto platforms stays in your browser for the overlay, but every time you open a crypto site, frontrun pings Amplitude with the platform name, when you log in it sends your email and name to Amplitude and on errors it uploads logs with your device ID and user agent to their own server at loadbalance(.)frontrun(.)pro but the key difference is that intercepted data mostly stays local in your browser for the overlay UI. it's not being sent to their servers the way xhunt does it. it worth noting that frontrun also uses GrowthBook for remote feature flags so they can change extension behavior server-side without a chrome store update too. but overall, frontrun is much less shady than xHunt in practice. neither extension is stealing your keys or draining wallets today. but the infrastructure is there in the case of xhunt. remote config systems that can push silent changes, aggressive permissions, and in xhunt's case deliberate code obfuscation to hide what they are doing. just be aware of what you are installing.

@Zun2025 @degentokenbase 🔥🔥 but how decide the listing price the team or the user ?

So, we're gonna offer our minting service for one of the most hyped NFT on base which is @degentokenbase 🔗 form link : forms.gle/qz4DFqyuRq8fE7… make sure to read each and every rule mentioned on the form before filling it out. we strongly recommend not using any minting service if you are eligible to mint from a wallet where you hold a lot of funds , only use it if your wallet is burner.

@OpenGradient 💙💙💙

🙌 OG COMMUNITY SPOTLIGHT We’re highlighting standout work from the OpenGradient community Developers, educator’s, artists and contributors are actively creating, shipping, and contributing across the network From dapps built on the model hub to original artwork and hands-on improvements through testing and feedback. Featuring: @santotheplug1_ @LolaSt1400 @trungkts29 @0xNormal_ @kingop0007 @Shahzaib0x @DioeconmeXBT @kant_lll @amathxbt @kurlyk27 @K_Gass @gemspecialist01 Appreciation to everyone contributing and pushing the network forward. 👏

Is x402 dead? But there's a 3% fee on MPP

@0itsali0 @MintedNFTs @cmai_agent Yeah, I did a calculation and found it would end at about 6am UTC, but it was 5am UTC, It's okay hope I get the degen instead 😁

@0xNormal_ @MintedNFTs @cmai_agent although there was a timer in the image

Just joined @MintedNFTs DC and found out I missed the @cmai_agent raffle, heartbreak on arrival

@shydev69 I built a clipper bot using Claude, but I faced an issue when the character in the YT video isn't centered in the frame, the reels look horrible

Introducing Reel Farmer Paste a YouTube URL, get TikTok/Reel with animated captions in one command. Fully local. > How it works: 1. yt-dlp downloads the video 2. LLM reads the transcript and picks the most clip-worthy moments 3. FFmpeg cuts each clip, silence removed automatically 4. Whisper.cpp runs locally for word-level timestamps 5. Remotion renders animated captions 6. Combines everything into 1080x1920 reels Every stage checkpoints to SQLite. In case of a crash, it'll pick up exactly where it left off. @MiniMax_AI M2.7 wrote the entire code.

@charmsai early

being early has always mattered. we're rewarding it very soon reply "early" so we know who was here 🩵

@0itsali0 👀

@getNickAI @galaxyhq @SnapshotLabs NickAI

Meet NickAI. The first agentic trading operating system. Build AI agents that trade crypto, stocks and prediction markets 24/7. No code. No emotion. Multi LLMs consensus. Institutional grade, backed by @galaxyhq Coming onchain, powered by @snapshotlabs Try it today: getnick.ai Comment “NickAI” to get free credits.

@Fowlplay_eth early ?

The early bird gets the worm 🐦 The smart ones get in even earlier. Whitelist spots are very limited, secure yours below 👇 Fowlplay.fun

@Zun2025 gm

the ones who will make the most money next cycle are still grinding hard and building genuine connections with like minded people. stay locked in. gm gm (😄 late)

⛵️⛵️⛵️

@yuckyducks @opensea 0xabAC288712A39bE838f0f20EA28d4DA3a227b963

Someone stole the Yuckpot. Now 7,777 Yucky Ducks are sailing on @opensea to get it back. Apply for WL: yuckyducks.com Retweet and drop your wallet if you’re joining the hunt 👇

@rivaleuc @glider_fi same here

@glider_fi looking good from here

@Zun2025 ty zun i have made $3k from OG nfts

What I understood till now is everyone's problem with the Bonus code that made me money. But remember without that code, auction buyers would have been at an even bigger loss. Zama team didn't reach out to me to promote their sale. I commented under their intern's tweet and they gave me a bonus code. That's it. It is worth mentioning that I was literally unaware about the fact that I will receive 5% commission in coming days [I will write an article with time and date to show everything, will publish tomorrow] Before TGE, everyone was hyped. Everyone supported Zama. Everyone was ready to bid at pre-market prices. So why am I suddenly the villain? I am not any team member of Zama. I don't control their decisions. All I can do is reach out to them when my community has issues and that's exactly what I did. I also posted disclaimers on almost every sale post. Asked you all to DYOR. Some of you even joked about the disclaimers in the comments. But now you r coming after me? Be honest with yourselves that some of you got greedy. Zama is handling this terribly, I agree. But I have zero control over them. If you have issues, take it up with them directly instead of tagging me in every tweet.