Dan Connolly

Join us for @agoric dev office hours Wednesdays at 9am Pacific time (aka SFO time). github.com/Agoric/agoric-…

@touseefliaqat @karpathy @ryancarson @agoric and in general, using capability security to support the Principle of Least Authority github.com/dckc/awesome-o…

@touseefliaqat @karpathy @ryancarson @agoric and the way Genode does software installation #On-target_package_installation_and_deployment" target="_blank" rel="nofollow noopener">genode.org/documentation/…

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

@whatwindfall @UAPresearcher @pgrous @diigo You expressed it just fine. And I have some idea... my data goes back to 2011, and it would cause me no end of grief to lose it. "In general, I don't trust any cloud services. I keep backups of linkedin contacts, tweets, etc." madmode.com/2021/closet-li…

@dckc @UAPresearcher @pgrous @diigo Dan, you are a lifesaver. Thank you so so so so much for this. I wish there were a good way for me to express that - you have no idea how much I appreciate this.

Is @diigo down?

@whatwindfall @UAPresearcher @pgrous @diigo try this: mm-diigo-rescue-285.netlify.app . open source. no warrantee.

@dckc @UAPresearcher @pgrous @diigo It would be amazing to be able to get these back. Do you have any idea how to do so without an API key? I do have the extension...

@UAPresearcher @pgrous @diigo The server wasn't down when I tried it. Just DNS / certificate. It's still possible to get the data.

@dckc @pgrous @diigo it's too late for me. 10 years worth of data down the drain. The whole server is offline so I can't retrieve anything.

@UAPresearcher @pgrous @diigo I managed to back up my bookmarks using an API key I got a while ago plus: curl -fsS --resolve secure.diigo.com:54.148.192.94 \ --user "$DIIGO_USERNAME:$PASSWORD" \ "secure.diigo.com/api/v2/bookmar…${start}&count=${count}&key=$DIIGO_API_KEY"

@pgrous @diigo I think they went out of business

@Siddhant_K_code Couldn't agree more: "we need systems that constrain what agents can do in the first place. Least-privilege access, scoped tokens, audit trails" colleagues @marksammiller @kriskowal are starting a project to do just that: dcfoundation.io/foresight-inst…

AI was supposed to make us more productive. So why is everyone more exhausted? Each task gets faster. So you do more tasks. Your brain doesn't scale like a GPU. Wrote about it honestly. siddhantkhare.com/writing/ai-fat…

🔥🧵 This is what decentralized cooperation looks like in action. An Afghan startup is using blockchain to deliver aid to 86,000+ families, proving that technology built on principles of decentralization can create real-world impact where it matters most.

@americanair do better, that is

I forgot to bring a #mask, but I've gotten them from Made in #KC here at the airport before. No joy. Maybe another shop, suggests the clerk... Or failing that, the airline. No joy and no joy. @amricanairlines , do better. It's not over. #publichealth #travel #mci

@CNNPolitics "This is a president ... who seems to regard the Constitution as a list of rules to be flouted." Let's stop using the title then, shall we? It goes hand in hand with the oath. cnn.com/2025/10/16/pol…

Breaking: @CFPB's new rule will remove ALL medical debt from credit reports! This is a huge win for the 1 in 5 Americans with medical debt on their credit reports. No one should have their financial future damaged because they got sick. 🎉

3/ AI breakthroughs like AlphaFold wouldn’t be possible without decades of work on datasets. e.g., AlphaFold was trained on protein structures from the Protein Data Bank (PDB), which took 50+ years and ~$20 *billion* to create. This is the kind of foundational effort AI needs.

There's a better way: #capabilities-based security and formally verified subsystems. #os" target="_blank" rel="nofollow noopener">github.com/dckc/awesome-o… See 15min explanation by @marksammiller youtube.com/watch?v=wW9-Ku…

What do these headlines have in common? - 81,000 firewall boxes compromised by a zero-day - a $250 embedded AI board with network connectivity The Linux security architecture; that is: ACLs and unverified, unsafe code. Not just insecure but insecurable.

@Jovonni from Agoric presenting @agoric <> @SecretNetwork integration for confidential trading strategies using Agoric orchestration and Secret confidential contracts, at #DeCC day in Bangkok. Imagine the power of confidential on-chain trading strategies, from a simple DCA to complex algorithms - free from frontrunning or copycats.

@gadikian @Msdms99 @osmosis I'd be happy to get you started in office hours sometime. docs.agoric.com has the coordinates, as well as getting-started stuff. Any particular widgets you have though of making with our smart contract platform?

@Msdms99 @osmosis Scrt - no Flix - yes Agoric - !!?! It's a really cool chain. No idea why its price is like this, so I kinda shy away. Something off there -- that said, I would love to use their contract stack sometime

. @osmosis is spreading it's wings. It is the best place to trade. Carefully thought out ux. Connections everywhere. One unified version of each asset. $osmo gonna rock it

@d4m1n @pavelsvitek_ everybody. JSON is ubiquitous. everybody is a stakeholder. We JSON5 and superjson etc. etc. etc. in various communities. But getting everybody to agree to something better is, evidently, a losing game.

@pavelsvitek_ this would make a ton of sense. I don’t understand why it didn’t evolve. Who controls it? 😃

why is JSON so popular? honestly it’s not even that good or efficient, is it?

@d4m1n It's clear why we need trees of some sort, yes? lisp/scheme didn't win out for web scripting, so S-expressions didn't win. perl/python/ruby/etc. all had lists and dicts. So here we are. It could have been much worse.