I’m struggling to visualise this, do you have any references with images?
sounds similar to a masseter muscle massage https://www.youtube.com/watch?v=7VnV7wUxst0
Readit Newsnickphx commented on Tinnitus Is Connected to Sleep sciencealert.com/tinnitus... · Posted by u/bookofjoe
nickphx commented on SPA vs. Hypermedia: Real-World Performance Under Load zweiundeins.gmbh/en/metho... · Posted by u/todsacerdoti
It's a nice article about a topic I care a lot about (the need for rediscovering hypermedia, and about the magnificent Datastar library/framework).
But I fear that the comparison is less SPA vs Hypermedia than a specific nextjs app on vercel versus a specific php app on a vps. And that people will justifiably give people reason to dismiss the whole thing outright.
If anyone is inclined to do that, I really urge you to look at Datastar's website and examples to see what it is capable of.
Also to read infrequently.org for far more about spa (especially react) vs hypermedia + progressive enhancement.
The underlying architecture matters little when the SPA requires several seconds of main thread work after downloading various "blobs" of minified java script..
nickphx commented on Labor market impacts of AI: A new measure and early evidence anthropic.com/research/la... · Posted by u/jjwiseman
You know you're having a real impact when you have to self-report on the impact you're having.
nickphx commented on Google Safe Browsing missed 84% of confirmed phishing sites norn-labs.com/blog/huginn... · Posted by u/jdup7
So I tested out the extension..
First the extension spammed me with "login required"..
So I click the notification to be taken to a login page..
Great? Now I have to create an account and verify a link..
Now I can test how great this is against a "fresh" facebook phishing page being actively promoted via Facebook Ads..
hxxps://r7ouhcqzdgae76-fsc0fydmbecefrap.z03.azurefd.net/new2/?utm_medium=paid&utm_source=fb&utm_id=6900429311725&utm_content=6900429312725&utm_t erm=6900429314125&utm_campaign=6900429311725
The "extension" did a "scan". {"url":"https://r7ouhcqzdgae76-fsc0fydmbecefrap.z03.azurefd.net/new2..."}
response: {"classification":"clean"}
great work?
If I click "Deep scan".. I see a screenshot blob being sent over.. response: { "classification": "phish", "reasons": [ "Our system has previously flagged this webpage as malicious." ] }
So if the site were already flagged, why does the "light" scan not show that?
nickphx commented on Google Safe Browsing missed 84% of confirmed phishing sites norn-labs.com/blog/huginn... · Posted by u/jdup7
"If you're interested in trying Muninn, it's available as a Chrome extension. We're in an early phase "
Domain is less than 4 months old.. Software is "early phase".. Already making misleading marketing claims of usefulness..
nickphx commented on Tell HN: YC companies scrape GitHub activity, send spam emails to users · Posted by u/miki123211
Martin from GitHub here. This type of behaviour is explicitly against the GitHub terms of service, when we catch the accounts doing this we can (and do) take action against those accounts including banning the accounts. It's a game of whack-a-mole for sure, and it's not just start-ups that take part in this sketchy behaviour to be honest. I've been plenty of examples in my time across the board.
The fundamental nature of Git makes this pretty easy for folks to scrape data from open source repositories. It's against our terms of service and those folks might want to talk with some lawyers about doing it - but as every Git commit contains your name and email address in the commit data it's not technically difficult even if it is unethical.
From the early days we've added features to help users anonymise their email addresses for commits posted to GitHub. Basically, you configure your local Git client to use your 'no-reply' email address in commits and that still links back to your GitHub account when you push: https://docs.github.com/en/account-and-profile/reference/ema...
I think that's still probably the best route. We want to keep open source data as open as possible, so I don't think locking down API's etc is the right route. We do throttle API requests and scraping traffic, but then again there have been plenty of posts here over the years from people annoyed at hitting those limits so it's definitely a balancing act. Love to know what folks here think though.
How about improving the processing of abuse reports for repos hosting windows malware that is actively being advertised to potential victims? https://github.com/preconfigured/dl/blob/main/ms-update32.ex...
sounds like a potential use for generative AI.. they can "validate" and "verify" the "biometrics" of the output from this-person-does-not-exist[.]com
nickphx commented on Claude is a space to think anthropic.com/news/claude... · Posted by u/meetpateltech
nickphx commented on Rural Americans are trying to hold back the tide of AI wsj.com/politics/policy/t... · Posted by u/rpcope1
nickphx commented on Two kinds of AI users are emerging martinalderson.com/posts/... · Posted by u/martinald
Three kinds, those who do not use it.