Johnny Gault

I love me some zero-build web frameworks. This one uses Vue and the HTML island concept. c0ckp1t.com

@octal @vultisig Wow yea real-world is always messier than theory!

@JonJonGault @vultisig So many FB deploys etc I’ve seen where principals or officials are authorized signers but a (third party, contractor) does all the device admin and can give them whatever and update it whenever, completely breaks the security model. Few CFOs/controllers competent at IT themselves

Kind of want to order a MacBook Neo and turn it into the first non-shitty crypto hardware wallet UX (would need a stripped down OS, and more-than-normal access to enclave for key storage, and a better way (enterprise tools?) to manage fw updates, but could be done via corp acct.

@octal @vultisig The point is you don’t need an enclave, right?

@JonJonGault @vultisig I would be wary of multisig trusting entirely devices under one admin domain (iCloud account, etc) but a locked down account/device cross verified and signed on another one (android or personal iCloud/ios) better. But mpc is hard to do inside Apple enclaves.

@octal MPC is The Way. @vultisig uses 2+ devices to sign. Seed is never reconstituted anywhere. Fireblocks for the masses, and open source. 💪

It probably doesn't require a secondary hw wallet, although it could use one (or something with a public key only, a screen, and user input) to verify TX details beyond just what the computer does. Enclave is strong enough to hold the keys IMO, better than shit SOCs.

@boazeb @DefiIgnas Nice! I am working on something similar 0xjohnnygault.github.io/Shards/ You might consider using Blockchain Commons libraries, they are trying to standardize the format of the Shamir envelope. Would be so cool if projects like ours were interoperable.

@DefiIgnas I built papervault.xyz for digital inheritance

What's the best security setup in crypto right now? Requirements: - Secure against loss - Simple enough that family can retrieve if you die - Limited exposure in case of a physical attack

AI is a ladder my dudes. Start climbing. If you want some inspiration, behold the most ambitious one-man project I have seen yet... github.com/Dicklesworthst…

Split your seed phrase + secrets using Shamir Secret Sharing. QR codes. Offline PWA. There are a zillion of these, but I like mine best. 0xjohnnygault.github.io/Shards/

@coderdannn Vultisig MPC wallet docs.vultisig.com/ecosystem/mark…

one way to prevent LLMs from leaking your priv keys or signing malicious txns could be a split key design, where llm/openclaw signs off on a tx after review, but there's also an n8n cron job polling new txns that verifies the tx payload before signing. has anyone built this?

@cullend @AFDudley0 en.wikipedia.org/wiki/Netflix_P…

I have a question I’ve never been able to get a satisfactory answer to. What *WAS* Netflix’s pre-AI “movie algorithm” that everyone always talks about? Like was it some NLP parser that broke it down into story blocks and compared perf? Was there a UI?

@octal CLI tool to backup your cloud email then slice and dice with SQLite and DuckDB. wesmckinney.com/blog/announcin…

Which is better for large mailbox local search on macs? Native Apple Mail or Outlook (ugh) or something else? Spotlight search is kind of shitty but so is outlook generally.

@hosseeb The man just described fatherhood 👴🏼

When I quit my tech job and considered becoming a founder in 2017, someone close to me told me: "I don't think you have what it takes to build something of your own." "What? Why not?" "I don't think you'll grind hard enough. You're a smart guy. But you're just not that hungry." That stuck with me. For a decade. Whenever things weren't going well, I wondered--do I not grind hard enough? Do I not want it enough? It's only in the last few years that I've come to realize: that guy was full of shit. Anyone who knows me now knows I'm a grinder. But in a weird way, he did me a favor. I became hell-bent on proving him wrong. The truth is, deep down, I'm lazy. I procrastinate, I'm avoidant, and I lack the drive to do things just for myself. But the most powerful forcing function is having responsibility. Before I started leading Dragonfly, I had a lot of time to navel-gaze and worry about how hard I was working. Now I can't. The weight is on my shoulders. I have no choice but to show up and do the work. The capacity was always there, I just didn't know it because before running Dragonfly, I'd never had this level of pressure on me. Being responsible for something brings it out of you. I wish someone had told me that 10 years ago. So I'm telling you now: if you're wondering whether you have what it takes, stop wondering. Get the weight on your shoulders. You might surprise yourself.

It's pretty obvious now that there is absolutely ZERO moat for these frontier models. Switching costs are zero. What will stick is getting devs hooked on your particular tooling/workflow.

@drewwilson @coreyhainesco @openclaw Lots of startups building "agent-in-cloud" type stuff as well (nebula.gg, lindy.ai, adept.ai, relevance.com, gumloop.com, crewai.com)

Put it on a new machine that doesn’t have any of your personal info on it. Create a separate Gmail account for it. Don’t give it access to anything personal and you’d be good. If it’s on the same WiFi network as you, it could maybe hack its way into your other machines, if they aren’t well protected. You can just give it its own hotspot from att or whatever for internet and keep it off your wifi. Completely disconnected at that point from YOU 👍

I keep getting so close to trying out @openclaw but then the security issues scare me away. I keep hearing there’s like 100 ways to get hacked. Is this true?

@luigidemeo @AvaLabs Dang it, I can't use this anymore.

Some personal news* - After nearly 5 years, I’ve made the decision to step down from my role as Chief Strategy Officer of @AvaLabs. This comes after a lengthy period of conversations and reflection. Officially, and for the past several months, I’ve been transitioning out of my responsibilities and preparing for a new chapter. Since joining in early 2021, just months after Avalanche's mainnet launch, when our team was a lean group of ~20 people, @avax has been my home, my passion, and a defining part of my career. We've delivered countless upgrades, scaled a network attracting billions in capital across more than 80 chains, brought major banks, asset managers, and enterprises onchain, powered gaming ecosystems, and fostered a vibrant community. I'm proud of what we've built together and the role I was able to play in it. I will forever be grateful to all the people at Ava Labs and the broader Avalanche ecosystem but in particular @el33th4xor, @John1wu, @kevinsekniqi and @JohnNahas84 for the opportunities to grow both personally and professionally. It's a rare privilege to contribute to such a talented team driven by an ambitious mission. As for Avalanche, I remain a believer in the technology, the opportunity, and many of my colleagues. I’ll continue observing, building, advising where valuable, and supporting from the sidelines. I plan to complete my non-operating term as one of the Board Directors for the Avalanche Foundation, which concludes in a few months. As for what’s next, for now I'm pausing to recharge. I’ll be catching up on precious family time (including with our third child, now six months old) and investing in myself a bit. I have and will continue having conversations about where I’m best positioned to contribute to this industry, perhaps as a founder or in another role. I remain as optimistic as ever that blockchains will transform the internet and I intend to contribute my energy towards that future. Stay tuned! -Luigi

@Melt_Dem The Virga series (Karl Schroeder) never gets any love, but the world-building is fantastic!

finished re-reading ender’s game and i forgot how phenomenal it was continue to believe reading sci fi is the greatest thing anyone interested in understanding, shaping, and directing the many manifolds of humanity’s future can and should do my sci fi reading list 👇

@JamesonCamp Pre-2001 we had "Pooling of Interests" in acquisitions, among its many benefits was your shares were freely tradeable post acquisition. So you could easily swap out to an exchange fund for diversification or put on a collar. This is what they took from you 😂

in 2020 I sold a company that a co-founder and I had built for just over $30M 90% of the sale was in a stock with a multi-year lockup on it what an amazing chart that stock has had since we sold to them 😂

@DCinvestor @MacroCRG Nah, there will never again be a "normal" President of the United States.

@MacroCRG nah, this kind of thing is not something which normal, secure people do whoever succeeds him will just remove the plaques and get on with it

Trump is gonna pay for this kinda shit so hard next time a Democrat is in the White House

@ycscaly Do you guys have any example code for signing policies controlled by Sui contracts? I can’t seem to find any…

I can’t overstate how easily nation state actors can hack any web3 project. We even showed that with super low resources in-house with 0d. Even small teams of NSO-level hackers can likely gain control over entire networks with months of works, and I’m saying that from first-level knowledge given my background. This is why it was super important for us to create Ika such that there’s a cryptographic guarantee that, even given the entire network is compromised on the event of such hack, the user’s funds will not be. 2pc-mpc is unbreakable in that sense It is mathematically proven: Ika is undeniable

@ErikVoorhees @SarahIronside6 Erik tweets always make me smile. Truly the patron saint of cypherpunk.

@SarahIronside6 what if I want to life my life as a person that doesn't have half my income stolen

As a liberal, I don't give a single fuck if you want to live your life as a conservative Christian. Why are conservative Christians so obsessed with trying to force liberals to adapt to their ideology?

@tridder46290 @GwartyGwart Bitcoin fixes this.

@GwartyGwart That's because companies have never been able to print money out of thin air. We've always said it figuratively but crypto companies do it literally.

People love to cite traditional tech incentives as evidence that crypto incentives work. “Look at Uber. Many early startups subsidize demand or give out perks to growth hack.” People did not take thousands of rides a month to “farm Uber.” They liked the product Uber offered. Outside of early credit card churning for points / cash back, I cannot think of a web2 growth hack that resembled what we have in crypto. The other problem with this analogy is that token incentives are, functionally, printed at 0 cost. Uber actually subsidized rides below the market clearing cost in order to gain traction. That was real cash burned by VCs and the company. What we have in crypto is people taking thousands of rides a month to earn something that looks like equity in Uber which, for the most part, they don’t actually want. They want to sell that to go to some other place and take a thousand more rides subsidized by VCs.