If Waymo has taught me anything, it’s that people will eventually accept robotic surgeons. It won’t happen overnight but once the data shows overwhelming superiority, it’ll be adopted.
Readit Newsaustinkhale commented on Experimental surgery performed by AI-driven surgical robot arstechnica.com/science/2... · Posted by u/horseradish
Per the article, all current European data centers used 62 million cubic meters of water for 2024. That is 3.4% of only Spain's existing desalination capacity (≈1.8 billion m³/yr).
Seems like this is solvable:
1. Keep rolling out the closed-loop cooling improvements now appearing in new DC designs.
2. Add more desal capacity where it’s cheap (sunny coastlines + renewables) to cover the residual demand.
Sources: - https://aedyr.com/plantas-desaladoras-agua-salobre-espana/
Snyk Research Labs regularly contributes back to the community with testing and research of common software packages. This particular research into Cursor was not intended to be malicious and included Snyk Research Labs and the contact information of the researcher. We were very specifically looking at dependency confusion in some VS Code extensions. The packages would not be installed directly by a developer.
Snyk does follow a responsible disclosure policy and while no one picked this package up, had anyone done so, we would have immediately followed up with them.
Upvoting this since presumably you're actually the CTO at Snyk and people should see your official response, but wow this feels wildly irresponsible. You could have proved the PoC without actually stealing innocent developer credentials. Furthermore, additional caution should have been taken given the conflict of interest with the competitor product to Cursor. Terrible decision making and terrible response.
austinkhale commented on Ask HN: Examples of agentic LLM systems in production? · Posted by u/SebaSeba
As a side note, while I know of several language model based systems that have been deployed in companies, some companies don't want to talk about it:
1. Its still perceived as an issue of competitive advantage
2. There is a serious concern about backlash. The public's response to finding out that companies have used AI has often not been good (or even reasonable) -- particularly if there was worker replacement related to it.
It's a bit more complicated with "agents" as there are 4 or 5 competing definitions for what that actually means. No one is really sure what an 'agentic' system is right now.
This has been my experience. Lots of companies are implementing LLMs but are not advertising it. There's virtually no upside to being public about it.
austinkhale commented on Ask HN: Examples of agentic LLM systems in production? · Posted by u/SebaSeba
I know of many, many LLM systems in production system, since that's what I've been helping companies build since the start of the year. Mostly it's pretty rote automation work but the cost savings are incredible.
Agentic workflows are a much higher bar that are just barely starting to work. I can't speak to their efficacy but here's a few of the ones that are sort of starter-level agents that I've started seeing some companies adopt:
austinkhale commented on 1 bug, $50k in bounties, a Zendesk backdoor gist.github.com/hackermon... · Posted by u/mmsc
Reported this exact bug to Zendesk, Apple, and Slack in June 2024, both through HackerOne and by escalating directly to engs or PMs at each company.
I doubt we were the first. That is presumably the reason they failed to pay out.
The real issue is that non-directory SSO options like Sign in with Apple (SIWA) have been incorrectly implemented almost everywhere, including by Slack and other large companies we alerted in June.
Non-directory SSO should not have equal trust vs. directory SSO. If you have a Google account and use Google SSO, Google can attest that you control that account. Same with Okta and Okta SSO.
SIWA, GitHub Auth, etc are not doing this. They rely on a weaker proof, usually just control of email at a single point in time.
SSO providers are not fungible, even if the email address is the same. You need to take this into account when designing your trust model. Most services do not.
Presumably one of the PMs you’re referring to has posted this article for additional information. Feels like they’re doubling down on their initial position.
https://support.zendesk.com/hc/en-us/articles/8187090244506-...
austinkhale commented on 1 bug, $50k in bounties, a Zendesk backdoor gist.github.com/hackermon... · Posted by u/mmsc
Our team at Zendesk has posted some more details about this bug here:
https://support.zendesk.com/hc/en-us/articles/8187090244506-...
Wild response. It appears you did not learn a single lesson through this process.
austinkhale commented on It's Time to Stop Taking Sam Altman at His Word theatlantic.com/technolog... · Posted by u/redwoolf
There are legit criticisms of Sam Altman that can be levied but none of them are in this article. This is just reductive nonsense.
The arguments are essentially:
1. The technology has plateaued, not in reality, but in the perception of the average layperson over the last two years.
2. Sam _only_ has a record as a deal maker, not a physicist.
3. AI can sometimes do bad things & utilizes a lot of energy.
I normally really enjoy the Atlantic since their writers at least try to include context & nuance. This piece does neither.
austinkhale commented on OpenAI changes policy to allow military applications techcrunch.com/2024/01/12... · Posted by u/miles
Good. In the US, we should all wake up to the fact that we enjoy the lives we lead in large part to the fact that we’re able to project strength. AI will be another piece in the puzzle of national defense.