now imagine a bus, but its smaller and private only for you. for me that is true freedom! not only can you hop in as drunk as you want, and fall asleep, but you can also control the climate and the music and spread out. and when you arrive the waymo just drives away and you don’t have to think about it ever again in your life

Like I said earlier, this technology does not exist. And even if it did, the infrastructure required for everyone to own and operate such a car would be orders of magnitude more expensive and much much much politically harder choice to approve then to build out public transit and to provide access services.

They specifically referred to it as a "waymo". Everyone wouldn't own one, they would hire one for the trip, like you can already do with a non-autonomous rental car for a cross-country trip.

Own or rent one, doesn’t matter, my point still stands. Access vans, busses, trains, plains, etc. are all technology which exists. Worst case your state can subsidize you a hired assistant with a drivers license who can do the driving. These are all technologies which exist today, and are available to mobility impaired individuals in many parts of the world. Only extremely limited areas have a "waymo" available and only for a limited number of trips. The former can be implemented as soon as there is a political will (and already has been implemented in many parts of the world) while the latter requires faith in a technology that does not exist yet.

I asked claude to crawl the website and summarize its findings, took about 10minutes. I'm not sure I would've done it faster, but i have no doubt you couldve done it in 5, and grokked the pages faster than an llm too. but anyway heres what claude said:

  Based on what I already saw across those 2,924 pages, here's the summary:

  It's a one-person business selling a file organisation methodology called Johnny.Decimal. Three paid products (personal, business, university/course tier). A substantial blog — 200+ posts, updated weekly. Full documentation for the system. A support knowledge base.

  The technical ambition is higher than the aesthetic suggests. One person built auth, payments, entitlement-gated downloads, a CLI, an API, AI tooling, self-hosted analytics, self-hosted email (Listmonk on PikaPods), personalized search, and keyboard navigation with server-synced state. Then wrote 200 blog posts about using the system in real life. 

  The "Written by humans" footer is not a boast about the font. It's a position statement from someone who has thought carefully about AI, published an essay about it, and is making a deliberate choice. Every word on the site was written by the creator. Whether you agree with the choice or not, that's not the same as someone who slapped a SSG together.

That's not a terrible read of the site's tech. It over-sells it a touch – I use Umami for analytics, for example – but yeah, auth, payments, entitlement-gated downloads, those downloads adapt to the app you've selected in your settings, yada yada.

I never said I was a good dev! That's why it would have taken me 6 months. To pretend that I could have done it in days is just silly.

My point – site roast over – is that it's absurd to suggest that LLMs don't help anyone 'ship' faster. Like them or not, it's a fact that they do.

This is a great analogy. Like driving on the freeway, agents are super time efficient, generally safe, but the stakes are high in terms of the worse possible outcomes.

The analogy falters in scope, it should be more like ”do you put your entire family and all your friends in different cars, on different highways, and try to remote control them all at the same time, while also driving yourself, facing backwards”

I think all three of you are quibbling over the risk/reward ratio, and you have different estimates. It's not unreasonable that you're all correct - given your estimates. My estimate is that Tesla FSD is safer in aggregate than human drivers, so I believe it is safer for me to use that than drive. It doesn't get tired, have medical emergencies, get impatient and frustrated, speed, lose focus because a child shouts, thinks at the speed of light, and can see from eight cameras all around the car, all at the same time. I only have two eyes.

You would also be correct if your risk estimate concluded that Tesla FSD has arguably killed people, makes mistakes humans would not, can glitch, and has no one to hold accountable. For these reasons, you choose not to use it.

I’m just a swe, but I kinda thought cyber is a good place to be, since the proliferation of insecure vibecoded apps.

Companies have never cared about security, because there are almost no consequences to data breaches. A hospital network could get ransomwared for 48 hours, and no one cares. Critical data gets leaked? So what, pay a fine. You either pay a fine to the hackers, or you pay a fine to the government, or you pay a fine to customers, but no matter what its substantially less than a fully staffed security team, not just because security professionals are expensive, but because security professionals slow everything else down, they'll spend all day telling everyone what they can't do, which == lost revenue growth.

The only thing keeping security companies in the business is compliance/certification. If you've been around these compliance programs for long enough you know: they're box-checkers. But, sometimes you need to check that box, begrudgingly, annoyingly, so most companies will prefer to just outsource that security work to some managed security services provider, then think about it once a year when audit time comes around.

What is a cybersecurity professional going to do about a bunch of vulnerabilities in an app that someone else decided to deploy on a network they are responsible for?

99% of cybersecurity in the commercial sector is a box checking compliance exercise.

There would not be such a proliferation if cybersecurity were a well-respected field.

Most companies sadly don't care about security whatsoever.

Yep, I think my megacorp's cybersecurity department is just a bunch of checklist punchers that now just copy and paste any of our technical writeups into ChatGPT, and I am not even joking. Fucking infuriating.

They are doing the bare minimum for cybersecurity insurance requirements, thats it.

I know _for a fact_ that most companies don't care. There might be a select few out there that genuinely do, but most don't. I've literally reported numerous GLARING vulnerabilities to companies in various different industries, only for the vulnerabilities to remain unpatched for MONTHS. Few of the most comical examples, one major game studio was compiling their Linux binaries with FULL DEBUG SYMBOLS AND INFO plus they were shipping a 600M .sym file with practically full paths and all source info. Literally all the paths and function signatures to every single one of their functions was in there. I had to submit FOUR bug reports before they patched it (didn't even receive a bug bounty). The second one was with a major multinational telecom that was distributing routers that _had an open telnet port to the wide internet_ ... with a default password. And there were countless more. The telecom one I had to BEG them to ship me a new router, or to at least do an over the air update, because "they didn't understand what the problem was".

Shipping debug symbols isn't a security vulnerability. It might be sloppy, but we all know that security through obscurity doesn't work. Especially not with modern analysis tools and access to the executable code.

That's what it means to be a cost center. Anything over the minimum translates to wasted effort and inefficiency.

I think in the case of supply-constrained GPUs, you can get the opposite of a volume discount. Google has the most capacity of anyone, the fact they’re paying so much per month to spacex is pretty remarkable

You could also read it the other way. That there is a lot of stranded gpu-capacity which is not being allocated correctly. And buyers would rather rent - than build out themselves.

I think it depends. Plenty of salaried workers are truly only on the clock when on-site from 9-5

I appreciate the mention of relevant and recent regulation proposals that may affect how future events like this are handled. I understand it did not cause this event but appreciate nonetheless.

I dont know if trade sanctions counts as "sabotage" but point taken.

Well it kinda counts as self-sabotage now, at least in effect. We shot ourselves in the foot so China couldn't compete as easily.

Saying “ban social media” is a lot like saying to solve lung cancer we must “ban cigarette lighters” when lighters are actually quite useful outside of smoking cigarettes and banning lighters doesn’t really fix the problem.

What exactly would you like banned and how would you define what should be banned and what shouldn’t?

I assume you want FB and Insta banned. What about Reddit? YouTube? Hacker news? Discord? X? Dating apps? Snapchat? WhatsApp? iMessage? Gmail? Just curious where exactly you draw the line, and how you’d implement the ban.