Adam Pippert

@KeruboSk Going to bed early, practicing this every day, and drinking too much coffee.

Apparently there are people who wake up before their alarm… and just get up. Just one alarm. No snooze. No struggle. Explain yourselves. How do you do that?

@codyschneiderxx Stop giving away my secrets!

the secret to b2b saas is selling things that get people promoted

@wydyama I miss it. I rented a Lotus once and definitely thought it was ridiculous for like 2 hours, but once I got the pattern down I couldn’t drive auto again.

There’s no way y’all like driving manual everyday

@ohryansbelt @PedroRossiSilv1 It is, but for early stage startups that barely have their crap together, it forces a little discipline.

@PedroRossiSilv1 soc2 is a useless standard

Delve, a YC-backed compliance startup that raised $32 million, has been accused of systematically faking SOC 2, ISO 27001, HIPAA, and GDPR compliance reports for hundreds of clients. According to a detailed Substack investigation by DeepDelver, a leaked Google spreadsheet containing links to hundreds of confidential draft audit reports revealed that Delve generates auditor conclusions before any auditor reviews evidence, uses the same template across 99.8% of reports, and relies on Indian certification mills operating through empty US shells instead of the "US-based CPA firms" they advertise. Here's the breakdown: > 493 out of 494 leaked SOC 2 reports allegedly contain identical boilerplate text, including the same grammatical errors and nonsensical sentences, with only a company name, logo, org chart, and signature swapped in > Auditor conclusions and test procedures are reportedly pre-written in draft reports before clients even provide their company description, which would violate AICPA independence rules requiring auditors to independently design tests and form conclusions > All 259 Type II reports claim zero security incidents, zero personnel changes, zero customer terminations, and zero cyber incidents during the observation period, with identical "unable to test" conclusions across every client > Delve's "US-based auditors" are actually Accorp and Gradient, described as Indian certification mills operating through US shell entities. 99%+ of clients reportedly went through one of these two firms over the past 6 months > The platform allegedly publishes fully populated trust pages claiming vulnerability scanning, pentesting, and data recovery simulations before any compliance work has been done > Delve pre-fabricates board meeting minutes, risk assessments, security incident simulations, and employee evidence that clients can adopt with a single click, according to the author > Most "integrations" are just containers for manual screenshots with no actual API connections. The author describes the platform as a "SOC 2 template pack with a thin SaaS wrapper" > When the leak was exposed, CEO Karun Kaushik emailed clients calling the allegations "falsified claims" from an "AI-generated email" and stated no sensitive data was accessed, while the reports themselves contained private signatures and confidential architecture diagrams > Companies relying on these reports could face criminal liability under HIPAA and fines up to 4% of global revenue under GDPR for compliance violations they believed were resolved > When clients threaten to leave, Delve reportedly pairs them with an external vCISO for manual off-platform work, which the author argues proves their own platform can't deliver real compliance > Delve's sales price dropped from $15,000 to $6,000 with ISO 27001 and a penetration test thrown in when a client mentioned considering a competitor

@ohryansbelt Mycroft is half the price, just saying….

@techsaleshackz Best BDR I ever had went straight to AE and did 1100% of his number his first year, established our permanent 10x hard cap.

Decagon promoing sdrs to Ent AE Are we buying this or Is this a fake title

@KingBootoshi One is a year doing workloads for a company, the other a month by yourself. Big difference. Maybe the biggest of all. Right answer is you should e spending $250k on tokens yourself on your own business that pays you $2mil/yr in revenue.

i'm barely maxing by $200 plan bruh wtf how you expect ppl to run up $250k worth of tokens 😭😭😭

@sergeykarayev We really should say ‘self-custody’ instead of ‘local’, because honestly that’s more important than the actual physical location of the model you run.

Running agents locally is a dead end. The future of software development is hundreds of agents running at all times of the day — in response to bug alerts, emails, Slack messages, meetings, and because they were launched by other agents. The only sane way to support this is with cloud containers. Local agents hit a wall quickly: • No scale. You can only run as many agents (and copies of your app) as your hardware allows. • No isolation. Local agents share your filesystem, network, and credentials. One rogue agent can affect everything else. • No team visibility. Teammates can't see what your agents are doing, review their work, or interact with them. • No always-on capability. Agents can't respond to signals (alerts, messages, other agents) when your machine is off or asleep. Cloud agents solve all of these problems. Each agent runs in its own isolated container with its own environment, and they can run 24/7 without depending on any single machine. This year, every software company will have to make the transition from work happening on developer's local machines from 9am-6pm to work happening in the cloud 24/7 -- or get left behind by companies who do.

@braelyn_ai St Regis has a pool. Not the answer you were looking for, but technically correct.

this is the first time I’ve ever wondered where I can find a pool in San Francisco

@colmdotcom Depends on the consumers. Dev tools companies love what they do because they sell to smart people or idiots they can make fun of and still be culturally acceptable. Most customers are idiots, but we don’t have the luxury of telling them so.

I’m sorry but consumer is a trillion times more fun than B2B

@jezell @ivanburazin They’re asking Firebase Studio users to do exactly this, or weirdly enough, switching to Antigravity.

@ivanburazin Replaced by the ai studio probably since it has firebase integration built in to the vibe code stack

Another day, another product killed by Google. Less than a year after launch, Firebase Studio is shutting down.

@herrmanndigital Sleep 4 hours a night and set up cron jobs during meetings

How do you all keep up with all the AI shit? Like it's insane.

@Yuchenj_UW I explicitly ask Claude not to do this, it’s arrogant

I noticed something interesting: Claude Code auto-adds itself as a co-author on every git commit. Codex doesn’t. That’s why you see Claude everywhere on GitHub, but not Codex. I wonder why OpenAI is not doing that. Feels like an obvious branding strategy OpenAI is skipping.

@brockpierson Not at all, thought those things were scams.

Might be a bit of a deep cut here, but did anyone else use GetRight or any other "download manager" back in the day?

@kylewgrove @runaway_vol Nah, I’ll just use M-x escape-vim (because, naturally, I run it inside an emacs REPL like a sane person).

@AdamPippert @runaway_vol AH! That's easy. You just need to hum the second verse of 'Frere Jaques', backwards.

meta couldn’t pull the plug on the metaverse because at least ten people are still trapped there and nobody knows how to get them out

@kylewgrove @runaway_vol My foot pedals are remapped to 1/2/3 for Claude code, now I am stuck in vim forever.

@runaway_vol all you have to do is ESC m-m-right foot pedal without-legs mode. It's quite ergonomic compared to emacs.

@a1zhang @lateinteraction I put Claude to work on this as a joke, but who knows? Maybe it will inspire someone smarter than I am. This is the slop I call “research”… github.com/AdamPippert/Br…

someone should try having RLMs write REPL code primarily using DSPy

@the_octobro You are an octopus: big brain and 8 legs. Most of us only walk forwards. Not so easy, this is why we struggle with FP. It asks us to go directions we don’t normally go.

@AdamPippert I traberse

Why do people say functional programming is hard? It's very simple: Everything is tree

@_michaelginn @redtachyon @petergostev Dario and Sam being wrong is not my problem unless they pay me to make it my problem.

@AdamPippert @redtachyon @petergostev I mean I agree, but that’s pretty explicitly the promise that the AI labs are pushing

These kind of claims never pass the sniff test. Benchmarks can be cheated, but if it worked 0-11% of the time on real tasks (which are not part of benchmarks) nobody would ever use LLMs for coding.

@_michaelginn @redtachyon @petergostev Then train smaller domain focused models on those things, not everything has to be generalizable all the time. That idea that it has to be is ridiculous.

@redtachyon @petergostev Except there’s plenty of esoteric, domain specific, and low resourced PLs that people do use, and it’s important to know whether models will work without much training data.