Hacker News: Mattwmaster58

New comment by Mattwmaster58 in "Kimi K2.6: Advancing open-source coding"

Mattwmaster58 — Tue, 21 Apr 2026 00:22:18 +0000

In terms of raw token cost, I've seen a couple providers at (all prices in terms of Mtok) $0.95 input/$0.15 cache input/$5 output vs $3 input/$15 output for sonnet.

Task prices of courses will be more interesting - a dumber model may use more tokens to get to the same goal.

New comment by Mattwmaster58 in "Font Smuggler – Copy hidden brand fonts into Google Docs"

Mattwmaster58 — Tue, 17 Mar 2026 15:10:09 +0000

copy/paste doesn't tell you much - here's the text/html content they put on your clipboard if you're curious. Apparently GDocs supports this out of the box, just hides it from the selection box. Which makes sense given that it doesn't support any font.

I just stole Facebook Sans

New comment by Mattwmaster58 in "US private credit defaults hit record 9.2% in 2025, Fitch says"

Mattwmaster58 — Thu, 12 Mar 2026 13:39:31 +0000

That's exactly where my mind went as soon as I read the title. HN rules say to "use the original title, unless it is misleading". I think the original title meets the misleading bar but I can't speak for other readers.

New comment by Mattwmaster58 in "Get free Claude max 20x for open-source maintainers"

Mattwmaster58 — Fri, 27 Feb 2026 16:18:10 +0000

It converts back to paid automatically if you had an existing paid subscription before. No other cases. In any case, this is still a valuable service they are providing for 6mo for free, which many will appreciate even if the goal is to recruit more users.

New comment by Mattwmaster58 in "Ghidra by NSA"

Mattwmaster58 — Mon, 16 Feb 2026 15:29:18 +0000

I'll second this. I used opencode + opus 4.6 + ghidra to reverse engineer a seedkey generation algorithm[1] from v850 assembly. I gave it the binary, the known address for the generation function, and a set of known inputs/outputs, and it was able to crack it.

[1] https://github.com/Mattwmaster58/ic204

New comment by Mattwmaster58 in "GLM-4.7-Flash"

Mattwmaster58 — Mon, 19 Jan 2026 19:17:47 +0000

I assume you're talking about 50t/s? My guess is that providers are poorly managing resources.

Slow inference is also present on z.ai, eyeballing it the 4.7 flash model was twice as slow as regular 4.7 right now.

New comment by Mattwmaster58 in "I hate GitHub Actions with passion"

Mattwmaster58 — Wed, 14 Jan 2026 19:51:37 +0000

It's generally very helpful - someone else mentioned here the fundamental problem is lack of a tight feedback loop. It doesn't perfectly replicate the GH environment, but for my use case that doesn't matter and it's super nice to have.

New comment by Mattwmaster58 in "Perfectly Replicating Coca Cola [video]"

Mattwmaster58 — Mon, 12 Jan 2026 14:31:25 +0000

As far as I know, the HFCS vs Sucrose is unlikely to be the reason for the difference in taste. I'm basing that off this video: https://www.youtube.com/watch?v=NY66qpMFOYo

TLDR: carbonic acid breaks down sucrose to glucose/fructose anyway

New comment by Mattwmaster58 in "Show HN: DoNotNotify – Log and intelligently block notifications on Android"

Mattwmaster58 — Mon, 05 Jan 2026 15:33:16 +0000

A couple years back I was looking for this sort of solution and ended up paying money to buy FilterBox which I've found to be good.

There are certain apps that I would love to be able to uninstall but have to keep for one reason or another, so I really appreciate apps like these which prevent attention-stealing notifications from making it through :)

New comment by Mattwmaster58 in "SourceFS: A 2h+ Android build becomes a 15m task with a virtual filesystem"

Mattwmaster58 — Wed, 22 Oct 2025 20:55:23 +0000

It's a shame that AI is ruining certain phrases, the "You’re absolutely right" was appropriate but I've been trained reading so many AI responses to roll my eyes at that.

New comment by Mattwmaster58 in "LD_PRELOAD, The Invisible Key Theft"

Mattwmaster58 — Thu, 16 Oct 2025 15:59:33 +0000

This doesn't seem like a realistic threat to me. Under what circumstances are you not pretty much completely pwned if an attacker could start their own processes, or have root access?

This sort of seems like saying IF an attacker gets the keys to your car, they could install a module that would allow them to come back and steal the car with a push of a button. Technically true, but they could also just steal the car straight up, or do any number of other things.

New comment by Mattwmaster58 in "A story about bypassing air Canada's in-flight network restrictions"

Mattwmaster58 — Fri, 10 Oct 2025 17:26:27 +0000

> I once merely mentioned the words “Heart Attack” on a plane and was kicked off by the flight attendants.

Well now you have a chance to tell your side - were you merely sitting and just uttered the words "heart attack" for no externally apparent reason?

New comment by Mattwmaster58 in "Discord says 70k users may have had their government IDs leaked in breach"

Mattwmaster58 — Thu, 09 Oct 2025 12:50:51 +0000

vx-underground claims to have communication with the group, and this post of theirs adds to the support agent theory: https://xcancel.com/vxunderground/status/1976238815665856646

> they were able to compromise Discord Zendesk by compromising a "BPO Agent" (outsourced support).

> Of course, as is tradition, it is also entirely possible they're lying

New comment by Mattwmaster58 in "Pnpm has a new setting to stave off supply chain attacks"

Mattwmaster58 — Thu, 18 Sep 2025 13:10:02 +0000

> Is that possible?

This comes up every time npm install is discussed. Yes, npm install will "ignore" your lockfile and install the latest dependancies it can that satisfy the constraints of your package.json. Yes, you should use npm clean-install. One shortcoming is the implementation insists on deleteing the entire node_modules folder, so package installs can actually take quite a bit of time, even when all the packages are being served from the npm disk cache: https://github.com/npm/cli/issues/564

New comment by Mattwmaster58 in "Microsoft PowerToys"

Mattwmaster58 — Wed, 10 Sep 2025 17:24:58 +0000

I've found splitting up my ultrawide into 6x2 cells, then you can use Ctrl+Shift to select every cell your mouse enters additively. I've wanted something like this for linux for a long time but haven't found anything.

New comment by Mattwmaster58 in "NPM debug and chalk packages compromised"

Mattwmaster58 — Mon, 08 Sep 2025 20:32:40 +0000

Off the top of my head, you could include your own checksum in the payload. Their code only modifies the address. Nothing would prevent them from reverse engineering checksum, too.

There are ways to detect a replaced/proxied global window function too, and that's another arms race.

New comment by Mattwmaster58 in "NPM debug and chalk packages compromised"

Mattwmaster58 — Mon, 08 Sep 2025 19:04:01 +0000

As others have noted, npm install can/will change your lockfile as it installs, and one caveat for the clean-install command they provide is that it is SLOW, since it deletes the entire node_modules directory. Lots of people have complained but they have done nothing: https://github.com/npm/cli/issues/564

The npm team eventually seemed to settle on requiring someone to bring an RFC for this improvment, and the RFC someone did create I think has sat neglected in a corner ever since.

New comment by Mattwmaster58 in "Ask HN: Spending Tracking Tools"

Mattwmaster58 — Mon, 06 Jan 2025 12:33:34 +0000

> You can link as many bank, credit card accounts as you want with one SimpleFIN account.

The website says "Connect up to 25 institutions and 25 apps"

New comment by Mattwmaster58 in "Cooking with black plastic is particularly crucial to avoid"

Mattwmaster58 — Thu, 31 Oct 2024 12:20:50 +0000

interesting, does work for me

New comment by Mattwmaster58 in "Can A.I. be blamed for a teen's suicide?"

Mattwmaster58 — Wed, 23 Oct 2024 12:43:29 +0000

https://archive.is/2zp1e