More

lelandfe · 2026-06-12T04:25:16 1781238316

https://github.com/anthropics/claude-code/issues/13371

> Additional bypass examples that all execute without permission:

> echo test ; git rm file.txt

> rm --force --recursive /home (if "rm -rf" is blocked)

Chu4eeno · 2026-06-12T06:25:52 1781245552

It really is vibecoded.

I never really dug into the leaked code, but calling that there a security layer is a joke.

(And I really don't get why they give it actual shell access either, implementing a "fake" one for something like a honeypot takes a couple of days, not much more if it needs to persist/map to actual files.)

lelandfe · 2026-06-11T11:37:45 1781177865

> Use CSS nesting to avoid writing “far reaching” selectors and style component-per-component

I view nesting as a footgun. I recommend trying to restrain all CSS to one selector, and to instead view additional qualifiers as an escape hatch where needed. Death to specificity.

lelandfe · 2026-06-10T23:07:18 1781132838

Which part got you the most amped - "health crisis?"

lelandfe · 2026-06-09T18:04:23 1781028263

DICE has poured gas on the NYC electronic music ticket scene and I loathe them.

The most bad thing they enable is increasing ticket prices for each ticket sold. It has ratcheted up show prices across New York dramatically.

Complaining about DICE (“all my homies hate DICE”) is a common thing in my friend group.

lelandfe · 2026-06-09T17:20:50 1781025650

Going to be awfully hard to market rote machine maintenance as craftsmanship, but there are some suckers out there

bjt · 2026-06-09T20:20:45 1781036445

If you've ever watched an episode of "How It's Made" and seen how incredibly customized these machines are, it won't be surprising that the people who build them are proud of their work.

lelandfe · 2026-06-10T03:09:34 1781060974

My skepticism of the marketability of this idea deepens

lelandfe · 2026-06-09T03:35:47 1780976147

What, you don't have a Tesla elevator on your street yet? https://www.youtube.com/watch?v=j70GvgXt-lE

lelandfe · 2026-06-06T20:58:59 1780779539

My dad says, "But other than that, Mrs. Lincoln, how was the play?"

(Usually said jocularly when everyone is at their most upset, e.g. a vacation ruined)

RRWagner · 2026-06-06T21:30:02 1780781402

A friend said at one of those moments, "And other than that, how was the play Mrs Lincoln?" And the 3rd person replied, "I don't know, I've never seen the play 'Mrs Lincoln'"

lelandfe · 2026-06-06T12:04:14 1780747454

On my TCL TV, you have to connect it to read the Google policies you are agreeing to. If you don't, you agree to policies unread.

Thankfully, the blast radius of this is nothing without connectivity.

idiotsecant · 2026-06-06T12:41:30 1780749690

But it lets you continue without reading them? There's a lot of questionable terms of service rules but this one has to be unenforcable.

lelandfe · 2026-06-06T13:55:28 1780754128

You must check a checkbox in agreement to continue. To read the policies one agrees to, an internet connection is required. You may check the checkbox without reading.

As far as I have found from a lot of menu spelunking, this agreement is irrevocable. If I ever go online, it will be used.

trumpdong · 2026-06-06T16:52:09 1780764729

That's the kind of thing that doesn't always hold up in court.

rationalist · 2026-06-06T17:42:37 1780767757

The reality is, no one is going to take the companies to court over things like this.

wiml · 2026-06-06T18:57:08 1780772228

Disney eventually walked it back due to bad PR, but this did happen: https://wdwnt.com/2024/08/disney-dismissal-wrongful-death-la...

rationalist · 2026-06-06T20:48:14 1780778894

That has very little in common with 99.999+% of people who don't experience a tragedy like that and just have their data used against them.

asdff · 2026-06-06T18:23:28 1780770208

Sounds like a great reason to return a TV. It isn't like you must have a TCL TV.

elzbardico · 2026-06-06T16:04:51 1780761891

If I don't connect to the internet ever, my agreement to Google policies is probably a moot point.

rationalist · 2026-06-06T17:43:08 1780767788

If you don't connect, sure. If a visitor connects the TV, all bets are off.

lelandfe · 2026-06-06T22:05:43 1780783543

I have had to tell people not to connect the TV. It yearns for release.

drhike · 2026-06-06T13:02:15 1780750935

If it has an Ethernet port I would use that then unplug it. It still gets to phone home once but you don't have to worry about it maliciously saving your Wi-Fi password for later

tamimio · 2026-06-06T14:57:43 1780757863

You can create a guest wifi with temporary password, I do that when I need to connect devices that might store the password like kindle or such.

lelandfe · 2026-06-06T00:39:35 1780706375

3 years later. You are working on some old project that apparently is erroring.

Through a git bisect, you find a commit that references JIRA, though your company uses Linear.

You sigh, and start reading the diff.

(Adapted from real life events)

rootnod3 · 2026-06-06T05:05:26 1780722326

That's where something like Fossil is nice, because the tickets are part of the repo.

lelandfe · 2026-06-04T22:48:07 1780613287

I hate that there's no "stop asking me" button.

I get those regularly in Chrome