Coel.eth - It's pronounced "Seel"

Another DEX project I have been working with has had a successful launch. TGE incoming shortly, so be sure to check it out.

Oh hey, good old @9999Luftballons is back (in spirit).

@Zeneca Depends on what you define as worth anything. If you aren't expecting $100, odds are very high. Probably 0.5%-1% in a box of former trash will be worth at least 5-10$. Odds of 100$+ is much better in a box of usable stuff from the mirage->stronghold era.

I’ve got a box full of old MtG cards from like 25-30 years ago, what’re the odds there’s anything in there worth anything?

Super interesting read on PropAMMs. 0x.org/post/propamm-s…

@vibestarterxyz How does this work with regards to: - Hybrid Coded Apps (dev does some stuff) - Council of Agents - Switching AI agents part way through - Rotating AI agents for specific types of tasks Not criticizing, its a cool idea, just want to make sure its all thought through 😁

We've updated how backers review agent attestations on raises. The origin capsule now shows exactly which AI agent built the project, the model provider, an attestation quality score, and direct links to the capsule hash, proof hash, and launch transaction on-chain. The idea is that before you back anything on Vibestarter, you should be able to verify how it was built without taking anyone's word for it. The capsule hash is immutable from the moment the raise launches, and if the proof file gets modified after the fact, the hash breaks. That's not a policy, it's cryptography. Built on ERC-8004. Every attestation is on-chain and verifiable by anyone.

@karpathy This is why you should always write explicit version dependencies into your code. And be careful using pip install --update. And hope to god no one installs your package while a supply chain attack is live. And... And... God. What a mess...

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

@jpn_memelord @MementoMori_ETH That was my point, it's a pool with too high of fees to be useful. Whoever is providing the 85m could be the same person trading through the pool, so that they take the fees from their own wash trades. Boom, laundered money.

@MementoMori_ETH @coel_eth It's the WETH-USDC 0.3% pool. So the liquidity is real, but who is supplying the massive $85m there? And who swaps through the pool? It would be good for routing large orders from market makers because of the depth, but how much is coming from that?

So ~65% of Uniswap protocol fees on Base are coming from a single pool. Longer thread tomorrow, but I couldn't sit on this fact that long. This one pool is pulling more weight than all others combined.

@CyphrGM Ok. Fair.

@coel_eth Gotta start em easy. People still haven't gotten this btw.

Challenges are back baby.

@jpn_memelord One could argue that the swap fees generated by these pools are "clean". If an investigator is looking at monetary flows between wallets, they would likely stop at LP fees and treat it as a terminal source without much deeper investigation.

@jpn_memelord Money Laundering Strategy? Single big LP can put their funds at a couple ticks. Bots wash trade over those ticks to create swap fees. If other LPs invade their ticks, they just withdraw LP and rebalance to nearby ticks. Would explain using a higher fee pool.

@vibestarterxyz So far, I have found good APIs for sports betting information. It already works in that regard, but I need to fine tune it. Finding a good edge bet is also not very common, so when one comes along you have to really take the leap.

@coel_eth Love that. Feels like everyone WANTS to build it but nobody gets close.

// gvibe What is everyone vibecoding today? Let us know in the comments, you might just secure yourself a wave 1 founder spot 🔒

Appears the Uni fee switch is live on @base + @Optimism. That means if you are providing liquidity on any V2 or V3 pools, your fees have just been cut by 16% - 25%. Migrate your liquidity to @AerodromeFi and @VelodromeFi today to earn maximally! 🛫

Ethos score insufficient as a metric. Apparently *I* have a low score. vault.coel.eth

@CyphrGM I just think its important to encourage people to still learn to code, or at least read code. The AIs make stupid decisions sometimes and catching them or debugging them can be a massive time saver.

@CyphrGM I'd classify it as equally empowering for coders and non-coders alike. It's damn near impossible for a coder to hold down a job and create an entire production ready app on their own. Just like the creative non-coders out there, I've been sitting on a variety of ideas for years.

Other than the fact that they look fucking cool, you're going to want one of these. Invites going out shortly. Who needs one?

One day soon, people will wonder how we let the Internet become a mass state surveillance operation that requires a gov't ID for everything. It will be because both sides of the aisle pushed these surveillance laws through under the cover of "helping kids." They don't help kids, they will destroy the Internet as we know it, and everyone seems to be sleepwalking towards that outcome.

@CyphrGM @base @ethos_network @AerodromeFi @basenameapp @HumnPassport How about wallets that deployed contracts on Base super early? :P

Getting close to finalizing the initial scoring criteria for 'The List', but open to hearing suggestions on reputable markers we can track for users on @Base. So far we have: - @ethos_network - @AerodromeFi VeVoters - @basenameapp holders - @HumnPassport scores. What else?

Supernova is now 2nd in 24 hour trading volume among all DEXes on Ethereum