Chiali

Back in 2023, we incubated a privacy-preserving social media project. Building social media is hard. Adding true anonymity on top?? 🧐 A whole different problem.

@CarlBeek @trent_vanepps 🕯️🕯️🕯️🕯️

@trent_vanepps It truly was an honor and a privilege working with you! I am really proud of that project 🕯️

After 7 incredible years, I've decided that Friday May 29th will be my last day at the Ethereum Foundation. I'm humbled by the projects I got to work on along the way: from the KZG ceremony, to helping architect the early design of the Beacon Chain, and a lot in between. At the age of 23, the Ethereum space welcomed me on the basis of having some great (and many stupid) ideas and let me influence a multi-billion dollar technology, an incredible opportunity I will remain forever grateful for. Ethereum has had a huge impact on me, and I hope my work has had an impact on Ethereum, and in turn on the world. To every researcher, core dev, EFer, and community member, whether we worked together closely or not: thank you. The strength of Ethereum is, and always will be, the people behind it striving to make it what it is. I'm grateful to have spent these years among you. What's next: I don't entirely know yet. For now I'll be enjoying time with my wife and our 1-month-old while I figure it out. Longer term, I'll find or create something with brilliant people at the intersection of engineering excellence, hard problems, and useful products driving economic activity at scale. If that resonates, or you just want to catch up, slide into my DMs!

Now I wanna everything self-hosted and run on my local machine.

Btw, i tried asking claude to do a semi complex model, its no way close if i do it manually, so human still win at this point.

Anthropic has pretty good product marketing team. I have been using Blender MCP for sometime now, but they just know how to package it and impress everyone. I’m really adore Blender this OSS, as ex-3D person, this MCP really helped me accelerate learning and makings. Recently I found out 3D artist community seems not welcome AI generated images which I totally respect that, because making a such nice render from 3D software requires so much love. Hope they will be welcome this MCP, its so useful.

JUST BUILD IT.

Building an agent-first mini tool is quite fun.

The most underrated thing in AI agents right now is: OpenClaw/Hermes Agent is just more free than other locked down AI agents (the standard out-of-box Claude/ChatGPT route) "Free the Claw" is not a vibe I understood until I tried it. Now that I have it, I don't want to go back.

I'm running for US Congress. Seriously. Imagine common sense crypto policy and regulation, aligned with American dynamism. Check out our list of new Crypto Policies we will support, linked below. x.com/va_joe/status/…

A few weeks ago, I saw this agent-to-agent debating project, which I went ahead to build on my own, and ended up with many websocket bugs that I have no clue. Finally, go with a more basic route. Now, my agents are debating over Notion tasks. It's fun to see this working finally; now I have diverse opinions from different models on the same topic!

Vibe coding is more addictive than any video game ever made (if you know what you want to build).

Canada's privacy regulator cannot fine anyone for cyber attacks, data leaks, and systemic security negligence. ----------------------- The OPC found Loblaw was faking data deletion. They continue to keep your purchase history, IP addresses, and browsing data after you asked them to delete your account. Five days later, Loblaw disclosed a data breach. The penalty? A letter asking them to do better within 12 months. ----------------------- Telus Digital lost 1 petabyte of data. CIRO - the body that regulates your investment dealer, exposed 750,000 investors' SINs. PowerSchool exposed 2.77 million children's records. The hacker was a 19-year-old with stolen credentials. Total federal fines issued across all four breaches: $0. ----------------------- Bill C-27 would have introduced fines up to 3% of global revenue. It died in January 2025. No replacement has been tabled. ----------------------- If you're a lawyer in Canada who thinks this is broken, I'm building something. Follow along.

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

just nearly got scammed by a fake podcast. i realized because when i got on the call, the interviewer was someone i knew personally. except they had their camera off, sounded nothing like the person i know, and had no idea who i was. in retrospect there were very clear signs: > person who reached out to me had changed their telegram name within past two weeks (giveaway) > they offered to pay me for the podcast (i declined), which makes no sense > they offered to send merch to my home (i declined), presumably to get my address the call was on google meets, scheduled through my calendly, so there was no trick zoom download. and i don't know where this scam was leading. i hung up immediately before finding out. but be careful out there.

Folks, if you get crypto emails from websites claiming to be associated with openclaw, it's ALWAYS a scam. We would never do that. The project is open source and non-commercial. Use the official website. Be sceptical of folks trying to build commercial wrappers on top of it.

Canada needs clear, modern rules for stablecoins. A parliamentary petition I’m sponsoring already has 4,000+ signatures. If you agree, sign the #StandWithCryptoCA petition today for better stablecoin regulation: ourcommons.ca/petitions/en/P…

So much clickbait about AI and tooling.

There are more and more people who use job offers to scam people, what a shame. Get a life, really.

Blockchain Apps Have Failed to Win Over the Masses, Ethereum Builders Admit decrypt.co/358778/blockch…

Folks, I'm looking for @openclaw maintainers. If you love open source, have experience with running larger projects, are security minded and want to help, drop me an email. #maintainers-1" target="_blank" rel="nofollow noopener">github.com/openclaw/openc…