Readit NewsBecause you have to deal with them anytime you want to get anything done - planning and approval offices, tax departments, construction crews, contractors and on and on.
Life in the outside world means relying on a ton of people doing their jobs decently.
True, and oh man I can relate so much to that.
Ugh..
babyent commented on Ask HN: Tired of all the AI, what other cool tech is out there? · Posted by u/Mariefay
There's still so much SaaS left to make.
Lots of jobs aren't going to be helped by AI, let's be honest.
Lots of industries, for thousands of years, have been run using pen and napkins.
I've personally worked at a multi billion dollar multinational corp that was basically run off post it notes and emails.
I was just kvetching about this to my partner over breakfast. Not exactly, but a parallel observation, that a lot of people are just kind of shit at their jobs.
The utility tech who turned my tiny gas leak into a larger gas leak and left.
The buildings around me that take the better part of a decade to build (really? A parking garage takes six years?)
Cops who have decided it's their job to do as little as possible.
Where I live, it seems like half the streets don't have street signs (this isn't a backwater where you'd expect this, it's Boston).
I made acquaintance to a city worker who, to her non-professional friends, is very proud that she takes home a salary for about two hours of work per day following up with contractors, then heading to the gym and making social plans.
There's a culture of indifference, an embrace of mediocrity. I don't think it's new, but I do think perhaps AI has given the lazy and prideless an even lower energy route to... I'm not sure. What is the goal?
Why not just filter out those kinds of people?
I filter out people like that because
A. They’re not on the same level
B. I won’t hire them and I wouldn’t work with them
C. They serve no purpose to me in my life because I don’t even want to hang out with them
Dating app gamification. Never felt worse in my life but hey job experience is job experience.
babyent commented on GitHub MCP exploited: Accessing private repositories via MCP invariantlabs.ai/blog/mcp... · Posted by u/andy99
babyent commented on GitHub MCP exploited: Accessing private repositories via MCP invariantlabs.ai/blog/mcp... · Posted by u/andy99
> escaping strings going into SQL
This is not how you mitigate SQL injection (unless you need to change which table is being selected from or what-have-you). Use parameters.
You should use parameters but sometimes you need to inject application side stuff.
You just need to ensure you’re whitelisting the input. You cannot let consumers pass in any arbitrary SQL to execute.
Not SQL but I use graph databases a lot and sometimes the application side needs to do context lookup to inject node names. Cannot use params and the application throws if the check fails.
babyent commented on GitHub MCP exploited: Accessing private repositories via MCP invariantlabs.ai/blog/mcp... · Posted by u/andy99
I feel like the real problem is we're telling people to put their stuff in a safe but a post-it note with the combination on the side.
So I feel weird calling these things vulnerabilities. Certainly they're problems, but the problems is we are handing the keys to the thief. Maybe we shouldn't be using prototype technologies (i.e. AI) where we care about security? Maybe we should stop selling prototypes as if they're fully developed products? If goodyear can take a decade to build a tire, while having a century's worth of experience, surely we can wait a little before sending things to market. You don't need to wait a decade but maybe at least get it to beta first?
to be OG you must ship to production
Is there something wrong on my end? The IN animates fully, which is a nice visual cue. The HOLD remains static which is nice. But the OUT does not completely animate and it throws me off.