Robert Koch

Every time Google Maps gives you directions, your phone does this. 14,671 streets searched to find a single 2.3 km route across Naples. It's called Dijkstra, the undefeated king of shortest path since 1959. Until last month. For 66 years, every GPS, every flight booking, every internet packet route ran on the same algorithm. In 2024, Robert Tarjan and four co-authors won Best Paper at FOCS proving Dijkstra was optimal. The world's most-used algorithm, certified untouchable. Eight months later, a team at Tsinghua led by Ran Duan published a paper proving them wrong. The catch is in what "optimal" means. Tarjan's proof showed Dijkstra is the fastest possible algorithm IF you have to output every point sorted by distance. The Tsinghua group noticed something the field had quietly assumed for 41 years: finding the shortest path does not actually require that sorting. The problem just asks for the distances. They combined Bellman-Ford's batch updates with a recursive partial ordering trick from Duan's own 2023 paper. Instead of sorting the frontier, they cluster the boundary nodes and only explore the representatives. The new bound is O(m log^(2/3) n), beating the 1984 ceiling. Best Paper at STOC 2025. The reframe came before the algorithm. Tarjan did not prove Dijkstra was the best shortest path algorithm. He proved Dijkstra was the best sorted-output shortest path algorithm. The field treated those as the same problem for four decades. They are not. Every speed limit you have memorized has a definition wrapped around it. Crack the definition and the limit breaks. The world's most settled algorithm just got beat by someone asking what problem it was actually solving.

Why are there basically no major cities on this entire coast of Australia?

Delve, a YC-backed compliance startup that raised $32 million, has been accused of systematically faking SOC 2, ISO 27001, HIPAA, and GDPR compliance reports for hundreds of clients. According to a detailed Substack investigation by DeepDelver, a leaked Google spreadsheet containing links to hundreds of confidential draft audit reports revealed that Delve generates auditor conclusions before any auditor reviews evidence, uses the same template across 99.8% of reports, and relies on Indian certification mills operating through empty US shells instead of the "US-based CPA firms" they advertise. Here's the breakdown: > 493 out of 494 leaked SOC 2 reports allegedly contain identical boilerplate text, including the same grammatical errors and nonsensical sentences, with only a company name, logo, org chart, and signature swapped in > Auditor conclusions and test procedures are reportedly pre-written in draft reports before clients even provide their company description, which would violate AICPA independence rules requiring auditors to independently design tests and form conclusions > All 259 Type II reports claim zero security incidents, zero personnel changes, zero customer terminations, and zero cyber incidents during the observation period, with identical "unable to test" conclusions across every client > Delve's "US-based auditors" are actually Accorp and Gradient, described as Indian certification mills operating through US shell entities. 99%+ of clients reportedly went through one of these two firms over the past 6 months > The platform allegedly publishes fully populated trust pages claiming vulnerability scanning, pentesting, and data recovery simulations before any compliance work has been done > Delve pre-fabricates board meeting minutes, risk assessments, security incident simulations, and employee evidence that clients can adopt with a single click, according to the author > Most "integrations" are just containers for manual screenshots with no actual API connections. The author describes the platform as a "SOC 2 template pack with a thin SaaS wrapper" > When the leak was exposed, CEO Karun Kaushik emailed clients calling the allegations "falsified claims" from an "AI-generated email" and stated no sensitive data was accessed, while the reports themselves contained private signatures and confidential architecture diagrams > Companies relying on these reports could face criminal liability under HIPAA and fines up to 4% of global revenue under GDPR for compliance violations they believed were resolved > When clients threaten to leave, Delve reportedly pairs them with an external vCISO for manual off-platform work, which the author argues proves their own platform can't deliver real compliance > Delve's sales price dropped from $15,000 to $6,000 with ISO 27001 and a penetration test thrown in when a client mentioned considering a competitor

Japan needs you.

I got invited to an OpenClaw Mastermind today. I drove through one little dirt path, crossed an asphalt road for 10 meters. drove through another little dirt path. I opened the door of a beautiful villa: - An health influencer with 4.1M followers. - A few other huge ones. - A guy who raised $30M with Y Combinator - A few SaaS Founders We talked about OpenClaw for a few hours. This is what I love about living in Bali: a big city vibe in a village.

hit the streets of sf and asked people what they think of ai surprisingly many said they don't like it or trust it, even in the city building the stuff I don't think that's anti ai, it's just a fair reaction to how it's been built so far