Yup, I read "— think Cargo, but for C/C++." and closed the tab.
> Microsofts esteemed moat (office) is “Web only” on the lowest tier. If you've ever used it before, you'd quickly come to the conclusion that web only Office is only useful for someone writing essays for school. The…
The bigger problem here is it seems like the rust utilities were rushed to be released without extensive testing or security analysis because simply because they are written in rust. And this isn't the first serious…
There is a license blurb in the readme. > This code, apart from the source in core/third-party, is licensed under the MIT License, see LICENSE in this repository. > The English-language models are also released under…
What's the point of posting what is clearly an AI generated comment.
Afaik Anthropic is not giving pretty much any provider model weights, so any inference of Opus is certainly not private. Either going through Anthropic or Bedrock, or Vertex. Of the three Bedrock is probably the best…
Another common tell nowadays is the apostrophe type (’ vs '). I don't know personally how to even type ’ on my keyboard. According to find in chrome, they are both considered the same character, which is interesting. I…
> That's the beauty of constraint-based parametric modeling as opposed to, say, modeling in Blender. I was thinking the same thing. This looks more like an API that makes 3d modeling look closer to CAD, but without…
CSP is inherently a client-side browser security feature, so yes.
That's certainly one of the things to be concerned with. Not certain how that's implemented, but I can still see there being holes in that strategy.
True. I suspect they will ban you depending on refusal frequency and severity.
Very much so. It feels like it can't have been that common in the original training corpus. Probably more common now given that we are training slop generators with slop.
More concerned (for the author) of someone trying to host/show illegal material. AI guardrails can only be so effective.
So SFT cost less only low hundreds of dollars? (1-10$ per hour per H100 if I'm seeing this correctly). What about SFT? Presumably basing this of Qwen is the reason it can be done for so cheap?
It doesn't help that the TPM spec is so full of optional features (and the N spec versions), so it's often annoying to find out what the vendor even supports without signing an NDA + some. TPMs work great when you have…
In many industries, once someone has physical access to a device, all bets are off. And when used correctly, TPMs can provide tons of value even when not encrypting the bus.
Which is stupid as those are the vulnerabilities worth determining if they exist. I can understand in a heavily regulated industry (e.g. Medical) that a company couldn't due to liability give you the go ahead to poke…
The best part is if you consider it a vulnerability, it is one you can't fix. It reminds me of SQL injection techniques where you have to exfiltrate the data using weird data types. Like encoding all emails as dates or…
Is the idea that you'd have to guess the GUID of a future chat? If so that is impossible in practice. And even if you could, what's the outcome? Get someone to miss a train? Certainly not "clear" based off what was…
Your "substance" is "trust Apple will enforce something correctly where there isn't a correct answer". I don't agree with that. Apple has a history of interpreting things favorably for themselves and locking 3rd parties…
> It’s literally their project and seems to meet their requirements. This is meaningless. Apple can carve out special exceptions for themselves all day long.
Sorry if I wasn't clear. I meant the WebKit guidelines were from the commenter, not from the apple page. > or features that improve memory safety within other languages, within the alternative web browser engine at a…
That's the commenter, not from the Apple page as far as I can tell. My point is the requirement is too broad. It cannot be meaningfully enforced.
> Use memory-safe programming languages, or features that improve memory safety within other languages, within the alternative web browser engine at a minimum for all code that processes web content; There is absolutely…
My question is why are multiple people commenting that "Rob Pike" in particular should use this feature.
Yup, I read "— think Cargo, but for C/C++." and closed the tab.
> Microsofts esteemed moat (office) is “Web only” on the lowest tier. If you've ever used it before, you'd quickly come to the conclusion that web only Office is only useful for someone writing essays for school. The…
The bigger problem here is it seems like the rust utilities were rushed to be released without extensive testing or security analysis because simply because they are written in rust. And this isn't the first serious…
There is a license blurb in the readme. > This code, apart from the source in core/third-party, is licensed under the MIT License, see LICENSE in this repository. > The English-language models are also released under…
What's the point of posting what is clearly an AI generated comment.
Afaik Anthropic is not giving pretty much any provider model weights, so any inference of Opus is certainly not private. Either going through Anthropic or Bedrock, or Vertex. Of the three Bedrock is probably the best…
Another common tell nowadays is the apostrophe type (’ vs '). I don't know personally how to even type ’ on my keyboard. According to find in chrome, they are both considered the same character, which is interesting. I…
> That's the beauty of constraint-based parametric modeling as opposed to, say, modeling in Blender. I was thinking the same thing. This looks more like an API that makes 3d modeling look closer to CAD, but without…
CSP is inherently a client-side browser security feature, so yes.
That's certainly one of the things to be concerned with. Not certain how that's implemented, but I can still see there being holes in that strategy.
True. I suspect they will ban you depending on refusal frequency and severity.
Very much so. It feels like it can't have been that common in the original training corpus. Probably more common now given that we are training slop generators with slop.
More concerned (for the author) of someone trying to host/show illegal material. AI guardrails can only be so effective.
So SFT cost less only low hundreds of dollars? (1-10$ per hour per H100 if I'm seeing this correctly). What about SFT? Presumably basing this of Qwen is the reason it can be done for so cheap?
It doesn't help that the TPM spec is so full of optional features (and the N spec versions), so it's often annoying to find out what the vendor even supports without signing an NDA + some. TPMs work great when you have…
In many industries, once someone has physical access to a device, all bets are off. And when used correctly, TPMs can provide tons of value even when not encrypting the bus.
Which is stupid as those are the vulnerabilities worth determining if they exist. I can understand in a heavily regulated industry (e.g. Medical) that a company couldn't due to liability give you the go ahead to poke…
The best part is if you consider it a vulnerability, it is one you can't fix. It reminds me of SQL injection techniques where you have to exfiltrate the data using weird data types. Like encoding all emails as dates or…
Is the idea that you'd have to guess the GUID of a future chat? If so that is impossible in practice. And even if you could, what's the outcome? Get someone to miss a train? Certainly not "clear" based off what was…
Your "substance" is "trust Apple will enforce something correctly where there isn't a correct answer". I don't agree with that. Apple has a history of interpreting things favorably for themselves and locking 3rd parties…
> It’s literally their project and seems to meet their requirements. This is meaningless. Apple can carve out special exceptions for themselves all day long.
Sorry if I wasn't clear. I meant the WebKit guidelines were from the commenter, not from the apple page. > or features that improve memory safety within other languages, within the alternative web browser engine at a…
That's the commenter, not from the Apple page as far as I can tell. My point is the requirement is too broad. It cannot be meaningfully enforced.
> Use memory-safe programming languages, or features that improve memory safety within other languages, within the alternative web browser engine at a minimum for all code that processes web content; There is absolutely…
My question is why are multiple people commenting that "Rob Pike" in particular should use this feature.