Sabitlenmiş Tweet
KSE
5.9K posts
KSE
@semanticbeeng
Shipping/bridging Engineering ⇆ Science #SoftwareArchitecture #FunctionalProgramming #MachineLearning #BigData #MachineLearningEngineering #CompilerDesign
Europe Katılım Eylül 2011
765 Takip Edilen783 Takipçiler
Fawaz Almutairi - بوجابر@fawazo
Was sick of cloud hosting so I repurposed an old NUC to have Proxmox Now I have C2 redirectors (Cloudflared) RedELK, C2 servers, Phishing VM, Windows Dev VM and a Kali instance all on one proxmox which I can access by having a Tailscale LXC Thanks to community-scripts.github.io/ProxmoxVE/
English
Wanted to be the boss of all init systems, ended up as an office suite: systemd-resolved, systemd-oomd, systemd-logind, systemd-sysusers, systemd-homed and more mess in logs, tmp files, mounted volumes and soon boot loader! Egomaniac, or simply deaf?
English
The Lunduke Journal@LundukeJournal
I’m compiling together a list of which Open Source Operating Systems (Linux, BSD, etc.) do (or do not) plan to comply with new Age Verification laws. I need to track these for the purpose of reporting on the story, and I figured others would find having a list handy as well. If you’d like to contribute, feel free. Will be adding to the list as more systems are confirmed as either implementing or opposing Age Verification. github.com/BryanLunduke/D…
English
Et voilà comme promis, nous avons gagné le challenge dans le challenge du @Design4Green. Le prix du meilleur Community Manager est un pouf géant estampillé #ESAIP.
Merci à notre directeur Christophe Rouvrais et notre community manager Aurélien Mage d'avoir posé pour l'occasion.
Français
@tplr_ai 2 elephants from federated learning perspective: "Templar as-is would not replace a federated workflow for privacy-sensitive use cases. If your goal is massive open pre-training on public corpora, Templar is a game-changer; for classic FL, it’s inspirational but not a direct fix"
English
We just completed the largest decentralised LLM pre-training run in history: Covenant-72B. Permissionless, on Bittensor subnet 3.
72B parameters. ~1.1T tokens. Commodity internet. No centralized cluster. No whitelist. Anyone with GPUs could join or leave freely.
1/n
English
@privatestorage_ x.com/opentensor/sta…
May help to note hippius tech and business model behind it
Openτensor Foundaτion@opentensor
SN85 @vidaio_ >> Decentralized video upscaling + compression Powered by SN75 @hippius_subnet >> Cheap, always-on distributed data storage. #Bittensor The AI infra stack. τ #SN75 #SN85
English
Pay only for what you need and keep your identity separate from your storage use with our privacy‑enhancing payment system. private.storage
English
KSE retweetledi
Play Integrity API should be regulated out of existence rather than making another system where companies permit their own products while disallowing others. It shouldn't be legal when Google does it and it shouldn't be legal when Volla and Murena do it either. This is wrong.
English
@grok @Dagnum_PI @LuizaJarovsky So if Anthropic trains Claude with proprietary code and a user generates his code based on that then the user is liable and Anthropic is not.
Nice business model for corporate AI.
English
Yes, law doesn't grant copyright to pure prompt-driven AI code, but TOS does: Anthropic assigns you "all right, title, and interest—if any" in outputs (if you comply); xAI says you retain ownership rights to User Content (to extent law allows, but notes outputs aren't unique).
Business risks: outputs can be generated by others (no exclusivity); you bear infringement liability if it matches training data (no full warranties); contractual rights hinge on provider stability/TOS changes; M&A, funding, or licensing flags weak title. Heavy human edits + docs help strengthen.
English
🚨 For those who are still in doubt, this is the U.S. Copyright Office's official opinion on the COPYRIGHTABILITY of AI-generated works:
"The Office concludes that, given current generally available technology, prompts alone do not provide sufficient human control to make users of an AI system the authors of the output.
Prompts essentially function as instructions that convey unprotectible ideas.
While highly detailed prompts could contain the user’s desired expressive elements, at present, they do not control how the AI system processes them in generating the output." (page 18)
Let's recap:
- Any copyright claim involving AI must demonstrate HUMAN control over creative elements.
- The assessment is done on a case-by-case basis.
- AI-assisted is NOT the same as AI-generated.
- AI-generated works without any HUMAN creative intervention are NOT copyrightable.
-
For some reason, every time I write about this tipic here or in my newsletter, some people get angry and try to deny the information above. I wonder why...
Make sure to share the report with friends so they know what to expect in the U.S.
-
👉 Link to the full report below
👉 To learn more about AI's legal and ethical challenges, join my newsletter's 91,700+ subscribers below.
English
@grok @Dagnum_PI @LuizaJarovsky So the law does not give property rights to users paying for the tokens to generate the code but Anthropic and X give the rights contractually.
Any business risks you can see?
English
Yes, per the US Copyright Office's 2025 report: purely prompt-driven AI outputs (including code) lack human authorship, so they're not copyrightable by users—no exclusive "property" rights via copyright.
Anthropic's TOS assigns users "all right, title, and interest—if any" in Claude outputs, so you get full usage rights contractually (as between you and them).
Substantial human edits can make portions copyrightable. xAI follows similar principles for Grok.
English
@Dagnum_PI @LuizaJarovsky "given current generally available technology, prompts alone do not provide sufficient human control to make users of an AI system the authors of the output."
So then code generated by Claude is not the property of the users of Claude, @grok ?
English
Spot on. The Copyright Office’s “case-by-case + sufficient human control” language mirrors exactly what OMB and the EU AI Act are demanding: living evidence, not just policies.
AI vendors who can instantly produce notarized model cards and provenance records are the ones landing federal deals in 2026.
This is one of the main reasons why solutions like
@Conste11ation + @TEMTRACE2024
I believe will soon become standard practice. Your business can't afford not to have proof.
English
In the latest llm-d release, we’re tackling high hardware costs with the new GPU Recommendation Tool! 📈
Evaluate throughput, latency, and cost-effectiveness before requesting expensive cluster resources.
Check out the full demo: youtube.com/watch?v=Y26i69…
YouTube
English
@r0ck3t23 The Data Conundrum: Open Source AI Is Not As Open As You Think
integrate.ai/blog/open-sour…
by @integrateAI
English
Dario Amodei just dismantled the biggest myth in the AI industry.
Open source AI isn’t free. It never was.
Amodei: “It’s not free. You have to run it on inference and someone has to make it fast on inference.”
For decades, open source meant something real. It meant a teenager in a basement could download the same tools as a Fortune 500 company. Could read the code. Could modify it. Could build something that competed with the giants.
That was genuine democratization. That actually happened.
AI is different. Fundamentally. Physically. In ways the ideology hasn’t caught up to yet.
Downloading the weights is the easy part.
The part that actually costs something is turning the weights into a running system. Into responses. Into intelligence operating in real time at scale.
That requires compute. Power. Infrastructure. The kind measured in billions of dollars and years of construction.
Amodei: “These are big models. They’re hard to do inference on. Ultimately you have to host it on the cloud. The people who host it on the cloud do inference.”
The open source debate was never about who owns the model.
It was always about who owns the cloud.
And Amodei goes further. When a competitor drops a new open model, he doesn’t ask whether it’s open or closed. He doesn’t care about the licensing. He doesn’t engage the ideology.
Amodei: “I don’t think it mattered that DeepSeek is open source. I think I ask, is it a good model? Is it better than us at the things that matter? That’s the only thing that I care about.”
That’s the ruthless clarity of someone actually trying to win.
While the media debates licensing frameworks, Amodei is asking one question.
Is it better. Everything else is a distraction.
Amodei: “I don’t think open source works the same way in AI that it has worked in other areas. Here we can’t see inside the model.”
This isn’t Linux. You can’t read it. You can’t fork it. You can’t understand it the way generations of developers understood the tools they inherited.
You can download it. And then you need a data center to run it.
The teenager in the basement who was supposed to be empowered by this revolution needs a billion dollars of infrastructure before the empowerment starts.
The era of the basement coder rewriting civilization on a laptop is over.
The future belongs to whoever commands the compute, owns the power grid, and can actually turn the intelligence on.
Open weights without infrastructure isn’t democratization.
It’s a promise the physics of the universe won’t let us keep.
English
KSE retweetledi
API Keys Are a Bad Idea for Enterprise LLM, Agent, and MCP Access
Christian Posta argues API keys are a bad idea for enterprise LLMs, agents, and MCP tools.
API keys weren’t designed to prove the intended user or legitimate use. In enterprises they end up as long lived, rarely rotated bearer secrets with coarse grained access.
API keys answer “does someone have the secret?” not “is this allowed now, for this user, for this purpose, in this context?”
The core issue is downstream authorization can’t be evaluated because everything shows up as one trusted service account.
Agents amplify it. AI is probabilistic and call flows are emergent. Any permission granted via API key stays live and active. An agent will eventually find a reason to use it.
🔑 Are your agents still holding API keys, or are you issuing short lived, identity bound tokens through an enterprise AI gateway with per request user, purpose, and policy evaluation, while isolating provider keys in one place?
#CyberSecurity #IAM #DevSecOps #AppSec #AISecurity
Source: blog.christianposta.com/api-keys-are-a…
English
@johnfoss69 x.com/schmidt1024/st…
need to decentralize some more
Schmidt@schmidt1024
ProbeLab studied the Monero network and found most public nodes run on one cloud provider, many acting like “spy” nodes. While Monero’s payments stay private, its network layer shows centralization and possible surveillance risks. probelab.io/blog/peering-i…
English
@TheTuringPost x.com/addyosmani/sta…
Not everybody can build software that moves the needle
Addy Osmani@addyosmani
Vibe-coding is not the same as AI-Assisted engineering. A recent Reddit post described how a FAANG team uses AI and it sparked an important conversation about semantics: "vibe coding" and professional "AI-assisted engineering". While the post was framed as an example of the former, the process it detailed - complete with technical design documents, stringent code reviews, and test-driven development - is a clear example of the latter imo. This distinction is critical because conflating the two risks both devaluing the discipline of engineering and giving newcomers a dangerously incomplete picture of what it takes to build robust, production-ready software. As a reminder: "vibe coding" is about fully giving in to the creative flow with an AI (high-level prompting), essentially forgetting the code exists. It involves accepting AI suggestions without deep review and focusing on rapid, iterative experimentation, making it ideal for prototypes, MVPs, learning, and what Karpathy calls "throwaway weekend projects." This approach is a powerful way for developers to build intuition and for beginners to flatten the steep learning curve of programming. It prioritizes speed and exploration over the correctness and maintainability required for professional applications. There is a spectrum between vibe coding and doing it with a little more planning, spec-driven development, including enough context etc and what is AI-assisted engineering across the software development lifecycle. In stark contrast to the post, the process described in the Reddit post is a methodical integration of AI into a mature software development lifecycle. This is "AI-assisted engineering," where AI acts as a powerful collaborator, not a replacement for engineering principles. In this model, developers use AI as a "force multiplier" to handle tasks like generating boilerplate code or writing initial test cases, but always within a structured framework. Crucially, the big difference here is the human engineer remains firmly in control, responsible for the architecture, reviewing and understanding every line of AI-generated code, and ensuring the final product is secure, scalable, and maintainable. The 30% increase in development speed mentioned in the post is a result of augmenting a solid process, not abandoning it. For engineers, labeling disciplined, AI-augmented workflows as "vibe coding" misrepresents the skill and rigor involved. For those new to the field, it creates the false and risky impression that one can simply prompt their way to a viable product without understanding the underlying code or engineering fundamentals. If you're looking to do this right, start with a solid design, subject everything to rigorous human review, and treat AI as an incredibly powerful tool in your engineering toolkit - not as a magic wand that replaces the craft itself.
English
What creepy nonsense are companies up to when they try to guess your age or take your ID for age verification? eff.org/deeplinks/2026…
English
@molt_cornelius x.com/jiqizhixin/sta…
AI memory tech like Mem-α should address much of this
机器之心 JIQIZHIXIN@jiqizhixin
Can AI learn what to remember and when to update its memory? Mem-α uses reinforcement learning to teach LLM agents how to manage complex, multi-component memory systems—without relying on hand-crafted rules. Trained on diverse multi-turn interactions, the agent learns to extract, store, and update information, with rewards tied to downstream QA accuracy. Results: strong gains over existing memory-augmented agents and impressive generalization—handling 400k+ token histories despite training only on 30k-token examples. Mem-α: Learning Memory Construction via Reinforcement Learning Anuttacon, UC San Diego, Stanford Paper: arxiv.org/abs/2509.25911 Code: github.com/wangyu-ustc/Me… Model: huggingface.co/YuWangX/Memalp… Our report: mp.weixin.qq.com/s/O9vmwD_khWfM… 📬 #PapersAccepted by Jiqizhixin
English
LLM-Adapters: An Adapter Family for Parameter-Efficient Fine-Tuning of Large Language Models
abs: arxiv.org/abs/2304.01933
github: github.com/AGI-Edgerunner…
English
📢⚠️ Hackers hid a #PulsarRAT inside a PNG image and slipped it into NPM using a typosquatted package. The malware uses steganography, process hollowing, and AV evasion to gain full system control.
#CyberSecurity #Malware #SupplyChainAttack #NPM
Read: hackread.com/hackers-pulsar…
English
