Muhammad Ukasha

Alhamdulillah, I am super stoked to find out that I'm a finalist in @webflow's "Professional Partner of the Year" award category. It's a real honor to have my name included alongside such an insane group of talented people! #webflowconf #webflowawards

Rooting for @github. They’ve given me years of free infra. happy to give them some time to figure this out. You got this.

BREAKING: Vibe-coding platform Lovable reportedly suffered a breach that exposed users’ AI chat histories, source code, & database credentials.

We’ve identified a security incident that involved unauthorized access to certain internal Vercel systems, impacting a limited subset of customers. Please see our security bulletin: vercel.com/kb/bulletin/ve…

It’s kind of crazy what we (myself included) are willing to give access to in the name of productivity. I have a feeling we will look back on these years with A LOT of regret. For many reasons. This is just one. Again, myself included.

@iamkhuramsohail @Ahmad__Mukhtar Running 2 inverter ACs, 2 refrigerators on a 5kw system.

@Ahmad__Mukhtar Bbai jan,3 acs and other home appliances on just 8 kw, producing 50 units per day 😯 i think you have miscalculated bro. 8 kw system can run only one 1.5 ton inverter ac+ other home appliances. And for nights if you have to rely on wapda one ac would consume 12-15 units per night

Not fully off-grid, but with an 8kW on-grid (~1M PKR) setup, I’ve been bill-free for the last 2 years - essentially at half the cost. Currently generating ~50 units/day, building surplus for upcoming peak summer. In summer 3 ACs for 16+ hrs & have UPS backup as well.

Probably one of the most original brands I’ve seen lately, indeed

maybe gta6 is also too dangerous to release

it's honestly embarrassing that Chrome accidentally became the best PDF viewer while Adobe spent decades making Acrobat slower and more bloated

@goncalotex @omma_ai What tool do you use to record the site?

Fintech 3D website with @omma_ai 💳 After getting the hero section as I wanted, I prompted Omma to generate new sections of the website while maintaining consistency of the 3D scenes and it did a pretty good job.

@superwhisper @steipete Nobody got the joke haha

Superwhisper's next update might be too powerful to release publicly. The new voice model is so fast at transcription it started finishing sentences users hadn't thought of yet... We even put it in a sandbox and it dictated its way out. It also identified a flaw in the English language that had gone unnoticed for 600 years. Linguists have been informed. Out of an abundance of caution, we are withholding the update until further notice. Sincerely, The Superwhisper Team

Claude Mythos is Delusional

Los alto al fuego siempre son una buena noticia. Sobre todo si conducen a una paz justa y duradera. Pero el alivio momentáneo no puede hacernos olvidar el caos, la destrucción y las vidas perdidas. El Gobierno de España no aplaudirá a quienes incendian el mundo porque se presenten con un cubo. Lo que toca ahora: diplomacia, legalidad internacional y PAZ.

claude code core

@petergostev I actually think they are keeping it in the dark just like Anthropic was.

It's so curious to me, doesn't look like Google is serious about AI. They've been investing in Anthropic for years, selling them TPUs, and basically diverting resources from Gemini while it is cracking under capacity constraints. Imagine OpenAI selling capacity to their core competitor to make a quick buck on the side. I'd be pissed of I was a DeepMind exec.

"AI makes everyone a developer" is true the same way "cameras makes everyone a photographer"

We are officially 100% in the movie "Her" now. Pretty soon, it feels like we're gonna see the line between "software" and "entity" disappear in real life.

@leinwand @webflow That's what I'm talking about. Amazing updates.

The new @Webflow MCP v1.2 just dropped.🔥 Raw HTML to Webflow elements. Component slots. 500+ CSS properties. Element querying. Variable creation. Your agents just got a whole lot more powerful. Here's what's new 🧵

If you're now designing or redesigning a website, this will help you a lot. I recently curated the best hero sections, footers, social proof and other website parts because I got tired of having 15+ tabs open (even with Mobbin). Giving it away 100% free. Comment on this post, and I'll send a Figma link to your inbox!

Today, we're releasing Omma. Create 3D, Websites, and Apps with AI agents. Start now on omma.build Follow @omma_ai

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.