Ignazio Aleo 🏳️‍🌈

Introducing TurboQuant: Our new compression algorithm that reduces LLM key-value cache memory by at least 6x and delivers up to 8x speedup, all with zero accuracy loss, redefining AI efficiency. Read the blog to learn how it achieves these results: goo.gle/4bsq2qI

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

DEADLINE TOMORROW!!! This is a final reminder that the abstract submission deadline for the 2026 Annual Meeting of the Gait and Clinical Movement Analysis Society (GCMAS) is tomorrow, Friday, January 23, 2026, at 11:59 PM EST. Details here: na.eventscloud.com/website/87479/…

New blog post: Don't fall into the anti-AI hype. antirez.com/news/158

After today, Carlos Alcaraz and Jannik Sinner have played 3,302 points over the course of their rivalry. Alcaraz has won 1,651. Sinner has won 1,651.

Before AI coding, there was a lot of copy‑paste

The Gait and Clinical Movement Analysis Society (GCMAS) is now accepting proposals for tutorials and special sessions at the 2026 Annual Meeting, held June 9–13 at Creighton University Health Science Center in Phoenix, AZ. 🔗 Details: na.eventscloud.com/website/87479/…

Alcaraz’s three unbelievable drop shots when serving for the title in Tokyo. Absurd.

@KarenKrugerPhD @lenzetal @KevinDibbern Congrats Karen. Well deserved! 👏🏾🎉

I'm thrilled to share that myself and amazing collaborators (@lenzetal, @KevinDibbern, Amanda Whitaker, and Jessica Fritz) received funding from NICHD for our R01 "Advancing Functional Assessment of Pediatric Flatfoot Using Weightbearing CT".

@pjslycke 😮

Essential know-how.

Scott Delp gave an incredible keynote on his work using simulations and big data to improve human health. #gait25

This year's annual meeting kicked off with a two day pre-course on "Basic Gait Analysis & Interpretation". This course was designed to provide anyone working in a clinical lab necessary clinical & technical information @KarenKrugerPhD @JJKrzak @Kirktul @duganbiomech @orthodawg91

👇🏾😬😅

The Windows Vista update with aero glass was a huge part of my childhood, so I'm getting serious flashbacks

@pjslycke 😆

That’s a relief 😅

When you're more excited for Google and Microsoft keynotes than Apple's 🫨

This was wrong. Ideally, it’s: 1 designer who codes 1 engineer with taste

Elon and Steve Jobs are both famous for pushing people to simplify their designs. I don't think this is a coincidence. Large organizations naturally generate complexity, but if you have a CEO who hates it, this tendency is kept in check.

Someone asked me if now is a good time to start a startup, with all the uncertainty in the world. The answer is yes, because the dominant factor in the outcome of a startup is whether the founders can discover a great product, not the political or economic environment.

@Austen Honestly I would settle for merely avoiding disaster.