Shodipo Ayomide
17.7K posts
Shodipo Ayomide
@developerayo
Engineering Lead in Identity • prev head of devrel: @ConcordiumNet, @0xpolygon • Advisor • views=mine • I just read tweets
Katılım Ağustos 2018
4.6K Takip Edilen22.9K Takipçiler
Shodipo Ayomide retweetledi
Shodipo Ayomide retweetledi
We just completed our first project funded by @midnightfdn:
DID:MIDNIGHT 🕛 has been build by @DennisMittmann and team.
And honestly, we are impressed.
The Midnight Foundation has shown what professional ecosystem support can look like. Even when our contact person changed, the process stayed smooth, reliable and respectful, from presentations, to amendments, to clear communication, to payments arriving exactly as expected.
This is how you help builders turn ideas into real products:
Fast. Professional. Reliable. Builder-focused.
Most importantly, we felt treated like a serious team contributing value to the ecosystem, not like applicants who constantly need to justify that they are not “greedy grifters trying to drain a treasury.”
That difference matters.
It is refreshing to work with people who understand that homegrown projects need trust, speed and support to create real impact.
Big thanks to the Midnight Foundation team around @rongurlavi!
🕛🚀
English
Shodipo Ayomide retweetledi
This is the major reason why we need to purge the tech space of rodents like this guy: techies who just know soundbites but lack substance.
I asked a simple question, "what can you possibly do that you think can stress a DB?" He gave the below retort; uneducated, per usual.
Let's take MSSQL that many people are familiar with. That's a Relational Database Management System (RDBMS) that is built to handle high concurrency enterprise-grade systems. In terms of transactions, you can get up to 1 million transactions per second (TPS) with MSSQL.
But the real factors that determine the number of transactions a DBMS can handle are things like:
1. CPU cores and speed
2. RAM (buffer pool size matters enormously)
3. Storage I/O (NVMe vs spinning disk is night and day)
3 Query design and indexing
So in terms of transactions ceiling, hardware is first, followed by your indexing and related configs, before it even gets to the DBMS engine.
I ask this dolt again, what can you possibly do that will stress the average DBMS, unless of course you're still using Pentium 1?
So far, everyone who says I don't know what I'm talking about has been found out to NOT know what they're talking about.
English
Shodipo Ayomide retweetledi
Shodipo Ayomide retweetledi
SECURITY ADVISORY — TanStack npm packages
A supply-chain compromise affecting 42 @tanstack/* packages (84 versions total) was published to npm earlier today at approximately 19:20 and 19:26 UTC. Two malicious versions per package.
Status: ACTIVE — packages are deprecated, npm security engaged, publish path being shut down.
Severity: HIGH — payload exfiltrates AWS, GCP, Kubernetes, and Vault credentials, GitHub tokens, .npmrc contents, and SSH keys.
If you installed any @tanstack/* package between 19:20 and 19:30 UTC today, treat the host as potentially compromised:
• Rotate cloud, GitHub, and SSH credentials immediately
• Audit cloud audit logs for the last several hours
• Pin to a prior known-good version and reinstall from a clean lockfile
Detection — the malicious manifest contains:
"optionalDependencies": {
"@tanstack/setup": "github:tanstack/router#79ac49ee..."
}
Any version with this entry is compromised. The payload is delivered via a git-resolved optionalDependency whose prepare script runs router_init.js (~2.3 MB, smuggled into each tarball at the package root).
Unpublish is blocked by npm policy for most affected packages due to existing third-party dependents. All 84 versions are being deprecated with a SECURITY warning, and npm security has been engaged to pull tarballs at the registry level.
Full technical breakdown, complete package and version list, and rolling status updates:
github.com/TanStack/route…
Credit to the security researcher for responsible disclosure.
English
This is crazy. The hacker installed a dead-man's switch that will wipe your computer if you revoke the GitHub token they stole from you. Revoking the token is what triggers the wipe.
TANSTACK@tan_stack
SECURITY ADVISORY — TanStack npm packages A supply-chain compromise affecting 42 @tanstack/* packages (84 versions total) was published to npm earlier today at approximately 19:20 and 19:26 UTC. Two malicious versions per package. Status: ACTIVE — packages are deprecated, npm security engaged, publish path being shut down. Severity: HIGH — payload exfiltrates AWS, GCP, Kubernetes, and Vault credentials, GitHub tokens, .npmrc contents, and SSH keys. If you installed any @tanstack/* package between 19:20 and 19:30 UTC today, treat the host as potentially compromised: • Rotate cloud, GitHub, and SSH credentials immediately • Audit cloud audit logs for the last several hours • Pin to a prior known-good version and reinstall from a clean lockfile Detection — the malicious manifest contains: "optionalDependencies": { "@tanstack/setup": "github:tanstack/router#79ac49ee..." } Any version with this entry is compromised. The payload is delivered via a git-resolved optionalDependency whose prepare script runs router_init.js (~2.3 MB, smuggled into each tarball at the package root). Unpublish is blocked by npm policy for most affected packages due to existing third-party dependents. All 84 versions are being deprecated with a SECURITY warning, and npm security has been engaged to pull tarballs at the registry level. Full technical breakdown, complete package and version list, and rolling status updates: github.com/TanStack/route… Credit to the security researcher for responsible disclosure.
English
Shodipo Ayomide retweetledi
Tip: ALWAYS use Resend.
@levelsio@levelsio
✉️ Trying @Cloudflare's new Email Sending feature today If you send 1,000,000 emails per month: - Postmark: $1,206/mo - Resend: $650/mo - SendGrid: $600/mo - Cloudflare: $354/mo - Amazon SES: $100/mo So Postmark is now by far the most expensive email provider And SES and Cloudflare are now the cheapest email providers I know my friend @marckohlbrugge is trying out SES now so I'll try Cloudflare and see how it is, SES is cheaper but Marc said it takes a bit more managing, and since I already use so much Cloudflare stuff it's nice to use them for email too With AI especially all of these are just as easy to use and setup in your app/site so economically it makes sense to go for the cheapest, because email is just email, it's all the same and deliverability is good with all of these I think TL;DR email sending has become a commodity!
English
@just_andydev @proxy_vector Yea, agreed, it's not for source of truth, memory is a bunch of layers not just one or two things. Vector is just that retrieval/similarity layer
look at mem0's design: github.com/mem0ai/mem0/bl…
English
@developerayo @proxy_vector I don't see it as a source of truth for memory. The Ai will eventually lack context if you use Vector search
English
@just_andydev @proxy_vector Hm 80/20, it's meant to serve as a retrieval layer for things like similarity searches and stuff
English
@proxy_vector I've tried vector searches and I can tell you it's not memory.
English
Any React Native engineer looking for a new role?
Must be Senior + Prod exp and Lagos based
English
Shodipo Ayomide retweetledi
⚡️ INSIGHT: Vitalik Buterin says ZK-payments could become the next standard for crypto payments in the AI-driven “agentic era.”
English
@TeetheBuilder Depends on contract signed, but ideally always have other things you've worked on by the side
English
@developerayo Quick question
A project you’re proud of, already on playsore but a private company repo on GitHub.
Should you still show it off? How do you present it?
English