Sabitlenmiş Tweet
My motto going forward: Move fast and make stuff, unit test, don’t break stuff!
Chicago, IL 🇺🇸 English
Jeff Schroeder
34.8K posts
Jeff Schroeder
@SEJeff
Linux and OSS Lover, breaker of distributed systems, OIF II Veteran, Security Engineer, Martial Artist, wannabe chef, and lifelong student. Tech is my passion
Lexington, KY Katılım Temmuz 2009
3.1K Takip Edilen4.6K Takipçiler
@dccockfoster @Timccopeland And says things like, “have fun being poor”
English
@Timccopeland I think this could work but only work if you have a borderline delusional founder who aggressively insults anyone who questions him and lies to investors
English
Been thinking about this for a while. What if you created a stablecoin that was pegged to $1 but instead of inefficiently locking up loads of capital, you back it with a second token
I know it sounds kinda risky but if it drops below a dollar, people can burn the other token and redeem it for the stablecoin. If it goes above a dollar, they can just sell the stablecoin and redeem it for the other token.
I feel like this might work if it captures a flywheel and builds up a sufficient ecosystem to support the daily buying and selling pressure + arbs.
What am i missing here?
English
Somebody bawling under oath as a video is shown of Afroman sitting on a dock playing a keytar and singing through a Roger Troutman talkbox while wearing a cowboy hat, Bootsy Collins sunglasses and a Lamé leopard print blazer is maybe the funniest thing to ever happen in court.
DatPiff@DatPiff
Afroman makes police officer cry hearing the songs he made about her being played in court 😂
English
@deanmlittle Her pokerface is legendary. How do you maintain composure with so much stupid?
English
Jeff Schroeder retweetledi
Monad now has linear memory expansion costs rather than quadratic like Ethereum. Smart contracts can now use more memory for cheaper cost. This expands what developers can build on Monad as well as reduces the need to potentially compromise security for optimization purposes.
English
Jeff Schroeder retweetledi
Jeff Schroeder retweetledi
if your skill depends on dynamic content, you can embed !`command` in your SKILL.md to inject shell output directly into the prompt
Claude Code runs it when the skill is invoked and swaps the placeholder inline, the model only sees the result!
English
Jeff Schroeder retweetledi
Jeff Schroeder retweetledi
Excited to share Visa CLI, the first experimental product from Visa Crypto Labs. Check it out and request access here
visacli.sh
English
people who know q are people who like q. People who like q are really weird and get excited and will show you how to animate a donut in q
cc: @kxsystems
English
Jeff Schroeder retweetledi
Request for product - come build this with Visa
Sarah Wolf@sarahzorah
a credit card but instead of cash back you get Claude credits
English
Jeff Schroeder retweetledi
It's not right to suggest that static analysis tools are blind to these types of attacks.
There are a lot of off the shelf lints that help here:
- For Rust, Clippy has the invisible_characters enabled by default
- Go has asciicheck and bidicheck (probably others too)
Hedgie@HedgieMarkets
🦔 Researchers at Aikido Security found 151 malicious packages uploaded to GitHub between March 3 and March 9. The packages use Unicode characters that are invisible to humans but execute as code when run. Manual code reviews and static analysis tools see only whitespace or blank lines. The surrounding code looks legitimate, with realistic documentation tweaks, version bumps, and bug fixes. Researchers suspect the attackers are using LLMs to generate convincing packages at scale. Similar packages have been found on NPM and the VS Code marketplace. My Take Supply chain attacks on code repositories aren't new, but this technique is nasty. The malicious payload is encoded in Unicode characters that don't render in any editor, terminal, or review interface. You can stare at the code all day and see nothing. A small decoder extracts the hidden bytes at runtime and passes them to eval(). Unless you're specifically looking for invisible Unicode ranges, you won't catch it. The researchers think AI is writing these packages because 151 bespoke code changes across different projects in a week isn't something a human team could do manually. If that's right, we're watching AI-generated attacks hit AI-assisted development workflows. The vibe coders pulling packages without reading them are the target, and there are a lot of them. The best defense is still carefully inspecting dependencies before adding them, but that's exactly the step people skip when they're moving fast. I don't really know how any of this gets better. The attackers are scaling faster than the defenses. Hedgie🤗 arstechnica.com/security/2026/…
English
@tysondavis1 @ASFleischman “Are you a tab ranger or a scroll ranger?” Easy way to tell!
English
@ASFleischman 75th guys get a little chippy if tab guys claim to be rangers.
English
I used to go running with a guy who said he was a ranger. I have no idea if he was legit but I ran a 530 mile with him, tasted blood, and he looked bored.
Dan@dmbkparker
Listen if someone leads with “I was an Army Ranger” the first question is, “oh cool what Battalion?” When they hesitate or look panicked you’ve learned all you need to know, because you see there are rangers and there are Rangers.
English
@wedtm @FurbyPerson The Merops Surveyer kit has a fully autonomous mode though the defense for this is likely air burst proximity rounds or (less likely) nets. They’re the best anti-Shahed interceptors in Ukraine right now
English
@FurbyPerson Training an AI to do this is months out.
I think the evasions will be accurate enough for the current gen CUAVs.
English
@RyanSAdams It’s decent. Solana today is 12 seconds and hopes to have full finality around 150ms soon with a new consensus mechanism.
English
i'm going to call this Pretty Good Finality (PGF) until someone explains it to me
i know it's not full finality...but it seems to gets you most of what's needed for finality in almost all cases (and it fails back gracefully if things go wrong?)
English
Um...did the EF just roll out a way to drop Ethereum finality from 13 mins to...13 second??
Bullish if true.
Fast confirmation rule.
fastconfirm.it
English
Jeff Schroeder retweetledi
Ethereum feels like it was designed by architects and researchers that haven’t actually worked on scalable systems: “let’s scale by creating microservices that all require pushing updates to a stale system that doesn’t work under high load”
Solana has been built by pragmatic devs focused on high throughput systems: “live load tests revealed bottlenecks in the transaction ingestion, block propagation, and block space. Let’s fix that and continuously optimize”
Noah 🎈@redacted_noah
P-token is a great example of why Solana is killing it on perf. Everyone thought the solution to scale was overly creative architecture. Meanwhile, Solana coredev have been optimizing with incremental changes for years. 10% gain here, 30% there. Compounding, and battle tested.
English
@joshyote These are all wrong though. The most tradfi has over crypto is REALLY BIG BAGS.
Source: worked in HFT for 15ish years
English
Moats in shambles right now
molu@molusol
TradFi has three moats protecting it from crypto. Cost. Speed. Finality. @solana just eliminated all three. > P-Token makes equity transfers nearly free. > @doublezero gives validators HFT-grade fiber latency. > Alpenglow settles transactions in under 200ms. The entire argument against on-chain equities… gone. Or am I missing something?
English