Dima Knivets

1.6K posts

Dima Knivets

Dima Knivets

@knivets

working in infosec. building devtools on the weekends (https://t.co/UdBvXszL5w)

bkk Katılım Mart 2010
268 Takip Edilen586 Takipçiler
Sabitlenmiş Tweet
Dima Knivets
Dima Knivets@knivets·
hikecode.com - code from your phone: - get an auto provisioned vps or bring your own - terminal optimized for mobile connections - voice recognition (sota model) - dev environment ready for work: vps configured with claude code and your repository - custom subdomain
English
1
1
2
936
Dima Knivets retweetledi
Furkan Gözükara
Furkan Gözükara@FurkanGozukara·
Absolute panic in Washington. Marco Rubio whines that Iran is planning to permanently control the Strait of Hormuz and charge a toll. He admits the US is powerless to stop it alone and begs the rest of the world to step in. Iran has completely outsmarted the American empire.
English
4.5K
13.1K
55.4K
2.9M
Dima Knivets retweetledi
Valerio Capraro
Valerio Capraro@ValerioCapraro·
Terence Tao put it plainly: there is no evidence that LLMs exhibit genuine creativity. Yes, they have solved some Erdős problems. But these are low-hanging fruit, questions that attracted little attention and that yield once the right existing techniques are applied. That is not creativity. That is search plus recombination. Yes, LLM outputs can look impressive. But look at who is impressed: typically non-experts. Experts know very well that LLM performance gets terrible when you approach the frontier of human knowledge. And this is not a temporary gap. It reflects a structural limitation. We do not fully understand human creativity. But we do know a key property: Conceptual leaps: the ability to generate new representations, not just recombine existing ones. LLMs do not do this. They interpolate in representation space. They operate within existing conceptual frameworks; they do not create new ones. This is why we haven’t “yet seen them take the next step”.
Valerio Capraro tweet media
English
150
306
2K
310.5K
Dima Knivets retweetledi
David Cramer
David Cramer@zeeg·
My brain is fried this week from trying to solve some of the complexity LLMs are generating to little success. At this moment in time it definitely feels like writing software is _harder_ in many situations. More taxing mentally.
English
65
26
532
33K
Dima Knivets retweetledi
DepressedBergman
DepressedBergman@DannyDrinksWine·
Sergei Parajanov on how the Soviet Film Ministry reacted after seeing "Shadows of forgotten Ancestors" (1965): "When officials saw the film, they understood it broke the principles of Socialist Realism and the social rubbish that ruled our cinematography at that time. But they could do nothing because it was too late: two days later, (Mikhail) Kotsyubinsky (The writer of the novel) had his jubilee. It was his centenary. So they said: "Let him go ahead and show his film." The film was released. They could ban it later on. And then they would somehow be finished with the whole affair. But when the intelligentsia saw it, they were moved. The film caused a chain reaction of unrest. The ministry asked me to make a Russian version. The film was not only shot in the Ukrainian language, but it was also in the Hutsul dialect. They asked me to dub the film in Russian. But I turned then down categorically." ("Sergei Parajanov Speaks Up", Ron Holloway, Kinema, 1996) P.S: On this day, 61 years ago, "Shadows of forgotten Ancestors" (1965) premiered at the Mar del Plata Film Festival, Argentina.
English
26
403
3K
200.8K
Dima Knivets
Dima Knivets@knivets·
depressing
Mitchell Hashimoto@mitchellh

Excited to share that I've joined Vercel's Board of Directors. Vercel is made up of builders and tastemakers that continually ship things that deeply impact how developers work: Next.js, AI SDK, v0, etc. I can't think of a more exciting place to be. Let's fucking ship. ▲ My relationship with Vercel goes back to the earliest days. HashiCorp was an early adopter of NextJS and Vercel (~10 years ago!) and it remains my default tech stack and deployment platform to this day. Ghostty's website is all on Vercel, too! Beyond that, I've been continually impressed with the teams relentless focus on shipping meaningful software. And importantly, software that has incredible taste. Now we are in the age of agentic software development. Vercel is building agentic infrastructure that I think every app and agent will need (I certainly need it!) and I can't think of a more exciting place to be. Huge thanks to @rauchg , Jeanne, Marten, @cramforce, @tomocchino and the entire Vercel team for the warm welcome. Time to work.

English
0
0
0
37
꩜
@redfoxbrownhat·
@mitchellh I respect that work you've done and understand some people choose to compartmentalize and not let political opinions get in the way of work, but Guillermo posted a picture of him fangirling with Netanyahu at the literal height of the genocide in Gaza. That doesn't bother you at all?
English
2
2
280
9.7K
Mitchell Hashimoto
Mitchell Hashimoto@mitchellh·
Excited to share that I've joined Vercel's Board of Directors. Vercel is made up of builders and tastemakers that continually ship things that deeply impact how developers work: Next.js, AI SDK, v0, etc. I can't think of a more exciting place to be. Let's fucking ship. ▲ My relationship with Vercel goes back to the earliest days. HashiCorp was an early adopter of NextJS and Vercel (~10 years ago!) and it remains my default tech stack and deployment platform to this day. Ghostty's website is all on Vercel, too! Beyond that, I've been continually impressed with the teams relentless focus on shipping meaningful software. And importantly, software that has incredible taste. Now we are in the age of agentic software development. Vercel is building agentic infrastructure that I think every app and agent will need (I certainly need it!) and I can't think of a more exciting place to be. Huge thanks to @rauchg , Jeanne, Marten, @cramforce, @tomocchino and the entire Vercel team for the warm welcome. Time to work.
Mitchell Hashimoto tweet media
English
218
85
3K
615.1K
Dima Knivets retweetledi
isabelle
isabelle@isareksopuro·
state of silicon valley: > Delve (YC W24) >"AI Native" >literally no AI >forbes 30u30 founders >charges $6k for a chatgpt'd legal contract >uses Indian contractors to fake data (impersonating as US-based CPAs) > leaked sensitive client data (Lovable, Cluely) & blamed it on AI...?
isabelle tweet media
erin griffith@eringriffith

A detailed and brutal look at the tactics of buzzy AI compliance startup Delve "Delve built a machine designed to make clients complicit without their knowledge, to manufacture plausible deniability while producing exactly the opposite." substack.com/home/post/p-19…

English
36
88
1.3K
111.9K
Mandy Lu
Mandy Lu@mandylu·
@shobhitic "Sheer hard work and grit won't take you there." "What will?" 🤔
English
8
1
73
18.6K
Shobhit Bakliwal
Shobhit Bakliwal@shobhitic·
saw this interview of founder of delve yesterday on instagram
Ryan@ohryansbelt

Delve, a YC-backed compliance startup that raised $32 million, has been accused of systematically faking SOC 2, ISO 27001, HIPAA, and GDPR compliance reports for hundreds of clients. According to a detailed Substack investigation by DeepDelver, a leaked Google spreadsheet containing links to hundreds of confidential draft audit reports revealed that Delve generates auditor conclusions before any auditor reviews evidence, uses the same template across 99.8% of reports, and relies on Indian certification mills operating through empty US shells instead of the "US-based CPA firms" they advertise. Here's the breakdown: > 493 out of 494 leaked SOC 2 reports allegedly contain identical boilerplate text, including the same grammatical errors and nonsensical sentences, with only a company name, logo, org chart, and signature swapped in > Auditor conclusions and test procedures are reportedly pre-written in draft reports before clients even provide their company description, which would violate AICPA independence rules requiring auditors to independently design tests and form conclusions > All 259 Type II reports claim zero security incidents, zero personnel changes, zero customer terminations, and zero cyber incidents during the observation period, with identical "unable to test" conclusions across every client > Delve's "US-based auditors" are actually Accorp and Gradient, described as Indian certification mills operating through US shell entities. 99%+ of clients reportedly went through one of these two firms over the past 6 months > The platform allegedly publishes fully populated trust pages claiming vulnerability scanning, pentesting, and data recovery simulations before any compliance work has been done > Delve pre-fabricates board meeting minutes, risk assessments, security incident simulations, and employee evidence that clients can adopt with a single click, according to the author > Most "integrations" are just containers for manual screenshots with no actual API connections. The author describes the platform as a "SOC 2 template pack with a thin SaaS wrapper" > When the leak was exposed, CEO Karun Kaushik emailed clients calling the allegations "falsified claims" from an "AI-generated email" and stated no sensitive data was accessed, while the reports themselves contained private signatures and confidential architecture diagrams > Companies relying on these reports could face criminal liability under HIPAA and fines up to 4% of global revenue under GDPR for compliance violations they believed were resolved > When clients threaten to leave, Delve reportedly pairs them with an external vCISO for manual off-platform work, which the author argues proves their own platform can't deliver real compliance > Delve's sales price dropped from $15,000 to $6,000 with ISO 27001 and a penetration test thrown in when a client mentioned considering a competitor

English
238
486
7.5K
2.4M
Dima Knivets retweetledi
Ramez Naam
Ramez Naam@ramez·
A complete self-own. And entirely foreseeable. The damage done might be reperable, but not easily or quickly. It'll take very large and clear steps in the US, including some substantial constitutional and legal reforms to limit the power of a crazy President.
Jostein Hauge@haugejostein

This is wild. People in *every single one* of the top US allies now think it's better to depend on China than the US. The global balance of power is clearly tilting away from the US and toward China.

English
31
132
737
162.8K
Dima Knivets retweetledi
ThePrimeagen
ThePrimeagen@ThePrimeagen·
i am using supermaven again and i have something to say about this whole AI thing. I think as a group (swe) we rushed so fast into Agents when inline autocomplete + actual skills is crazy. A good autocomplete that is fast like supermaven actually makes marked proficiency gains, while saving me from cognitive debt that comes from agents. With agents you reach a point where you must fully rely on their output and your grip on the codebase slips. Its insane how good cursor Tab is. Seriously, I think we had something that genuinely makes improvement to ones code ability (if you have it). Truly acts as a multiplier, and we left it in the dust because it is not sexy. hurts me on the inside.
English
218
133
3.7K
182.9K

Keşfet

@redfoxbrownhat @mitchellh @rauchg @cramforce @tomocchino @mandylu @shobhitic @elonmusk