Amin Shah Gilani 🗝️👨‍💻

If there's anything you think I'm good at or a skill of mine you want tips on picking up, please reach out.

@yousifa @denisyarats It’s okay, every failure is an opportunity to learn. That said, > A sandboxed credential shouldn't be usable from an arbitrary external IP. This isn’t always true. It depends on the threat vector and they’ve adequately modelled the threat and mitigated it successfully.

Update: @denisyarats (Perplexity CTO) responded. He says billing is async and tied to the user's account, not Perplexity's master account. I want to be transparent about where I stand on this. I ran 400k+ output tokens through the extracted key with Opus 4.6 and checked my credits over 18 hours. They never moved. It's possible that's just a long reconciliation delay. What is not in dispute: the token extracted via .npmrc injection worked from my personal laptop outside the sandbox. A sandboxed credential shouldn't be usable from an arbitrary external IP. This also means it's a prompt injection target. a malicious webpage visited by the agent could plant the same payload + prompt, exfiltrate the user's token, and bill them for third-party API usage without their knowledge. The proxy pattern is the right architecture. Binding tokens to sandbox IDs and IPs would close the remaining gap. Appreciate Denis and the Perplexity team for the fast and transparent response.

@Pyrgi_Bot Hey that was me 👋

⛏️ A new message extracted from Bitcoin! ⛏️ "@amingilani <3 @izzashahid #SayItWithBitcoin #FloodTheBlockchain" 🔗 Block #401225 🕐 Date: Mar 5, 2016 04:06 UTC 📜 Category: OP_Return 🗣️ Language: English

10 years since I chiseled a message in the Bitcoin blockchain for my now wife. Thanks for the reminder @Pyrgi_Bot

@ChShersh In hindsight this is clearly a shitpost. I dunno why I’m still on this platform. It literally rewards the dumbest posts because the flame war is “engagement”.

@ChShersh It’s crazy that you can say something so absurd. 1) JSON is awesome, and 2) Yes they have. You have all these options from YAML, to TOML, and regardless of your preferred flavor Hjson is objectively better than JSON in that it’s a superset.

It's crazy how after 23 years, devs haven't created anything better than JSON for the human-readable serialisation/config format

wife: will you glance at the baby monitor while you're working pls me: no worries babe I got you

@Hadrians_Gate Oh, it’s cloaked 😂

Fuming. I asked for a Klingon Warbird, but he gave me a Romulan Bird-of-Prey! 😡

@martinmbauer Dunno, but someone with an increasing acceleration is probably a jerk.

Someone moving with high velocity is called 'fast', what do you call someone moving with high acceleration?

@mhartl For the 11th coin, the probability will always be 0.5% though just like the probability of success for the 5th run will always be 20%. I’ve lost money on the Martingale strategy and my gambler’s fallacy has been thoroughly cured.

@mhartl I get the sentiment but I wish he put a little more effort in his math. If p is 20% then q=80% The probability of 5 failures in a row is (0.8^5) ~32%, meaning the probability to succeed in one of those 5 attempts is (1-0.32) ~68%. Those are good but not 120% 😂

@siddi_ziddi_hai Not all of us bro.

Why are Desi atheists like this?

@armujahid They do! I have the MX3 and the MX5. Best headphones I’ve ever had. MX3 is nicer bass but MX5 is nicer overall! The Bluetooth multipoint is also awesome.

Putting the Sony WH-1000XM5 headphones to the test 🎧 With dual processors and eight microphones, they boast the industry leading noise canceling tech. Excited to see if they live up to the hype! #SonyHeadphones #NoiseCancellation

@kobigurk GM. I've been trying to reach you about your car's extended warranty on the big bad blue site. 😅

friendships begin with saying gm

@meowkoteeq Okay, I read the other comments. Everyone is in on the joke. It really is a joke. Phewww

@meowkoteeq You’re joking right? Please tell me you’re joking. This feels like it’s a joke, and it feels very well executed 😅 please be a joke.

can someone explain why is it considered ok for "engineers" to spend a full day arguing on socials about this stuff?? do they just make this shit seem hard to justify their salaries??? meanwhile me fixing their programs with $20 chat gpt in FIFTY FOUR SECONDS 😑

A few years ago a friend asked me how he could batch rename files. I wrote him a one-liner. Turns out a colleague of his had allocated 3 weeks + overtime to manually rename each file by hand. 💀

I spent this afternoon moving video content from clares.ca to an object store, and writing forwarding rules. Took me an hour or so but imagine not being a developer. This stuff would have taken me weeks.

Remember when we were told children were being killed in Gaza because Hamas was using them as human shields? Now we know the real reason. When Israel wanted to kill someone, they waited till he went home, then dropped a bomb on the building, killing the whole family.