Sabitlenmiş Tweet
☆☆
4.6K posts
☆☆
@bytezoldyck
employed shape rotating wordcel | ephemeral underclass | INTJ | 🇺🇸/🇳🇬 | tech | animanga | fgc | fps
him Katılım Ekim 2014
283 Takip Edilen119 Takipçiler
☆☆ retweetledi
19 - 22 memecoin trader
22-24 - Risk takin'
25 - Move to miami
26-29 - Drop shippin
30-35 - Selling reps
35-39 - Airpod Reselling
40-45 - sports betting
45-50 - Discovering myself
51-59 - Rest years
60 - freshman year at Florida state
65 - entrepreneur/Gap year
66 - sophomore year at ASU
67 - Made it
English
☆☆ retweetledi
If you never take advantage of your selfish years you live the rest of your life in quiet resentment bc responsibilities outside yourself constantly rob you of focus.
You realise you fuelled the desires of others so much you ran out of gas and undershot your own life trajectory.
English
i still got love for him so it makes me sad it turned out like this #vaguepost
English
☆☆ retweetledi
Every chud has that one goyslave homeboy they don’t play about
English
🚨 Annie Altman Files Amended Lawsuit Alleging Sexual Abuse & Rape By Sam Altman
> alleges abuse from 1997-2006
> family home in clayton, missouri
> began when she was 3, he was 12
> ended when she was 12, he was an adult
> forcible touching, oral sex, molestation, sodomy, rape
Original claims dismissed as time-barred (expired 2008). But the Judge allowed refiling under Missouri’s Childhood Sexual Abuse statute
Annie seeks jury trial + punitive damages based on Sam’s $3.3 billion net worth
Sam Altman denies all allegations:
> calls lawsuit “extortion”
Annie’s lawyer:
> she will “continue gathering evidence”
Case proceeds.
English
☆☆ retweetledi
i was confused before i realized this was about psych majors cuz if you traumadump in any engineering class the teacher is gonna hit you with one of these
⋆𐙚₊˚ bria@CQLEMENTINES
why do white gay people trauma dump in the middle of college seminars
English
Someone just poisoned the Python package that manages AI API keys for NASA, Netflix, Stripe, and NVIDIA.. 97 million downloads a month.. and a simple pip install was enough to steal everything on your machine.
The attacker picked the one package whose entire job is holding every AI credential in the organization in one place. OpenAI keys, Anthropic keys, Google keys, Amazon keys… all routed through one proxy. All compromised at once.
The poisoned version was published straight to PyPI.. no code on GitHub.. no release tag.. no review. Just a file that Python runs automatically on startup. You didn’t need to import it. You didn’t need to call it. The malware fired the second the package existed on your machine.
The attacker vibe coded it… the malware was so sloppy it crashed computers.. used so much RAM a developer noticed their machine dying and investigated. They found LiteLLM had been pulled in through a Cursor MCP plugin they didn’t even know they had.
That crash is the only reason thousands of companies aren’t fully exfiltrated right now. If the code had been cleaner nobody notices for weeks. Maybe months.
The attack chain is the part that gets worse every sentence.
TeamPCP compromised Trivy first. A security scanning tool. On March 19. LiteLLM used Trivy in its own CI pipeline… so the credentials stolen from the SECURITY product were used to hijack the AI product that holds all your other credentials.
Then they hit GitHub Actions. Then Docker Hub. Then npm. Then Open VSX. Five package ecosystems in two weeks. Each breach giving them the credentials to unlock the next one.
The payload was three stages.. harvest every SSH key, cloud token, Kubernetes secret, crypto wallet, and .env file on the machine.. deploy privileged containers across every node in the cluster.. install a persistent backdoor waiting for new instructions.
TeamPCP posted on Telegram after: “Many of your favourite security tools and open-source projects will be targeted in the months to come.. stay tuned.”
Every AI agent, copilot, and internal tool your company shipped this year runs on hundreds of packages exactly like this one… nobody chose to install LiteLLM on that developer’s machine. It came in as a dependency of a dependency of a plugin. One compromised maintainer account turned the entire trust chain into a credential harvesting operation across thousands of production environments in hours.
The companies deploying AI the fastest right now have the least visibility into what’s underneath it.
Andrej Karpathy@karpathy
Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.
English
beta males out here signing 80/20 deals, streets is fuckin vicious
Women Being Awful@WomenBeingAwful
English
☆☆ retweetledi
There are people (me) who had their whole life's course altered by the COVID era lockdowns and compulsory vaccination in horrible ways and most people will read this headline and not even blink.
All day Astronomy@forallcurious
🚨: U.S. cancels mRNA vaccine development, stating it has 'more risks than benefits'.
English
☆☆ retweetledi
This man is a billionaire and was removing labels with a hair dryer personally, you're simply not grinding hard enough
NIK@ns123abc
🚨BREAKING: SUPER MICRO CO-FOUNDER ARRESTED FOR SMUGGLING $2.5B IN NVIDIA GPUs TO CHINA >SMCI co-founder Yih-Shyan "Wally" Liaw arrested today >personally holds $464 MILLION in SMCI stock >charged with smuggling BILLIONS in Nvidia servers to china >used a southeast asian shell company to funnel $2.5B in servers to chinese buyers >$510 million worth shipped in just THREE WEEKS in spring 2025 >built thousands of fake dummy servers to fool U.S compliance auditors >caught on surveillance camera using a HAIR DRYER to swap serial number stickers >coordinated the whole thing over encrypted group chats >SMCI down 12% after hours >faces up to 30 years in federal prison ITS SO OVER…
English
☆☆ retweetledi
Sunni Kirkites (followers of ErikAisha Kirk, the Kirk podcast cohost sahaba)
Shii Kirkites (followers of Candace Owens, Tucker Carlson)
Candace's Charlie receipts are like the Ghadir Khumm hadith where Charlie Kirk appoints Candace as his khalifah.
The people doing sahih (kathib) al kirki is his wife and podcast companions releasing his mysterious "Stop" unreleased book. Kirk's TPUSA companions all sold his legacy out and suport Aisha Kirk's deviation from what Charlie al Kirki stood for.
The Turning Point sahaba claim they hold the real truth to what Charlie said and would've said. ErikAisha Kirk published an unreleased book allegedly written by Charlie right after his death. They claim to be in true orthodoxy with what Charlie preached. They even said "He wanted Erika to be president." Which is absolutely makthoub Kirki hadith.
Candace says no and is fought and ostracized and forced to preach Shia Kirkism from some bunker.
Chairman@LRH_Superfan
They're doing Hadiths of Kirk now
English
☆☆ retweetledi
☆☆ retweetledi
GIF
Webslinger052@webslinger052
@agony_addict I get that it's a "Scott Cawthon is a conservative christian" joke but almost nothing related to Charlie Kirk has been funny to me, it's all just "hey remember that time that one racist podcaster died? we plastered his likeness somewhere around here" which isn't really a joke
ZXX
☆☆ retweetledi
TypeScript community: This guy forked my repo and it really hurt my feelings
Python developers subplot:
Guido van Rossum@gvanrossum
Just what I thought. Israel pushed Trump into the Iran war.
English