Hacker News: michaelmior

New comment by michaelmior in "Postmortem: TanStack NPM supply-chain compromise"

michaelmior — Tue, 12 May 2026 08:57:57 +0000

That depends on what the software is. If you want to run a service that bonds to a privileged port for example, you need sudo.

New comment by michaelmior in "HERMES.md in commit messages causes requests to route to extra usage billing"

michaelmior — Sat, 02 May 2026 01:22:42 +0000

I don't think it's that simple, but I do think a lot of the problems mentioned are not inherent to the use of AI.

New comment by michaelmior in "HERMES.md in commit messages causes requests to route to extra usage billing"

michaelmior — Thu, 30 Apr 2026 22:44:32 +0000

We have some very heavy users of Codex in my org and we're very happy with the quality (politics aside).

New comment by michaelmior in "HERMES.md in commit messages causes requests to route to extra usage billing"

michaelmior — Thu, 30 Apr 2026 12:10:49 +0000

The problem in most of those cases is not specifically AI. Many of the issues you cited are related to Anthropic specifically and many could have been avoided with better testing.

New comment by michaelmior in "Is my blue your blue? (2024)"

michaelmior — Wed, 29 Apr 2026 17:05:57 +0000

I'm not saying our experience is unimportant. I'm talking about how we communicate what colors are. I'm not an expert by any means, but it seems like the way we communicate a shared understanding of what colors are is based on observing things that are the same color. I just don't think we have a way of communicating our subjective view of what a color looks like without reference to some other color.

New comment by michaelmior in "Is my blue your blue? (2024)"

michaelmior — Mon, 27 Apr 2026 23:11:43 +0000

The scenario you're describing seems like more of a language thing than a perception thing. We generally learn names of colors by references to common objects. I would argue that if people agree something is "Red, like a strawberry, tomato, or apple" then it doesn't really matter what you're seeing, that color is red.

New comment by michaelmior in "Ollama is now powered by MLX on Apple Silicon in preview"

michaelmior — Tue, 31 Mar 2026 18:21:20 +0000

> no reason why future devices couldn't bundle 256GB of mem by default

Cost is a pretty big reason.

New comment by michaelmior in "Ghostmoon.app – A Swiss Army Knife for your macOS menu bar"

michaelmior — Mon, 30 Mar 2026 13:12:41 +0000

This article[0] provides some details. Basically if you go through the lookup process on Apple's website and you don't have an existing D-U-N-S number, you can request one from D&B for free via Apple.

[0] https://support.pushpay.com/s/article/Acquire-your-D-U-N-S-n...

New comment by michaelmior in "Ask HN: Where have you found the coding limits of current models?"

michaelmior — Mon, 30 Mar 2026 13:07:54 +0000

At least part of that in my experience seems to be a desire to cover a number of edge cases that may not be practically relevant.

New comment by michaelmior in "Ask HN: Where have you found the coding limits of current models?"

michaelmior — Mon, 30 Mar 2026 13:00:01 +0000

On this note, one thing I've found Codex to do is worry more than necessary about breaking changes for internal APIs. Maybe a bit more prompting would fix this, but I found even when iteratively implementing larger new features, it worries about breaking APIs that aren't used by anything but the new code yet.

New comment by michaelmior in "Ask HN: Where have you found the coding limits of current models?"

michaelmior — Mon, 30 Mar 2026 12:58:20 +0000

One thing I've found that I've found super helpful for this is converting profiling results to Markdown and feeding it back into the agent in a loop. I've done it with a bit of manual orchestration, but it could probably be automated pretty well. Specifically, pprof-rs[0] and pprof-to-md[1] have worked pretty well for me, YMMV.

[0] https://github.com/tikv/pprof-rs

[1] https://github.com/platformatic/pprof-to-md

New comment by michaelmior in "Schedule tasks on the web"

michaelmior — Fri, 27 Mar 2026 11:08:14 +0000

I worry about the costs from an energy and environmental impact perspective. I love that AI tools make me more productive, but I don't like the side effects.

New comment by michaelmior in "I beg you to follow Crocker's Rules, even if you will be rude to me"

michaelmior — Sat, 14 Mar 2026 11:53:32 +0000

> This is the literal opposite of professionalism

I'm curious what definition the author is using of professionalism.

New comment by michaelmior in "Cloudflare crawl endpoint"

michaelmior — Tue, 10 Mar 2026 23:50:53 +0000

> I'm surprised that Cloudflare hasn't started hosting a pre-scraped version of websites that use Cloudflare's proxy

It's entirely possible that they're doing this under the hood for cases where they can clearly identify the content they have cached is public.

New comment by michaelmior in "TikTok will not introduce end-to-end encryption, saying it makes users less safe"

michaelmior — Fri, 06 Mar 2026 17:30:21 +0000

> The problem with that idea, that you are implying E2EE should require age verification.

I can understand why might draw that conclusion, but I would not personally support this.

New comment by michaelmior in "TikTok will not introduce end-to-end encryption, saying it makes users less safe"

michaelmior — Fri, 06 Mar 2026 17:28:49 +0000

> Surrendering that autonomy is not.

Then you can avoid using platforms that do not offer E2EE.

New comment by michaelmior in "TikTok will not introduce end-to-end encryption, saying it makes users less safe"

michaelmior — Thu, 05 Mar 2026 00:54:32 +0000

> Would it be a fair argument to say the police have a better opportunity to prevent crimes if they can enter your house without a warrant?

This is a false equivalency. I don't have to use TikTok DMs if I want E2EE. I don't have a choice about laws that allow the police to violate my rights. I'm not claiming that all E2EE apps should be banned.

> Right, but this is worlds apart from "sharing the encryption key with a private company", is it not?

Exactly why I suggested that as a possible alternative.

New comment by michaelmior in "TikTok will not introduce end-to-end encryption, saying it makes users less safe"

michaelmior — Thu, 05 Mar 2026 00:51:14 +0000

> Are you suggesting all messaged photos should be scanned, and potentially viewed by humans, in case it depicts a nude minor?

No, I was not suggesting that.

New comment by michaelmior in "TikTok will not introduce end-to-end encryption, saying it makes users less safe"

michaelmior — Wed, 04 Mar 2026 10:41:47 +0000

Yes, but this leaves the only way to identify this behavior as by reporting from a minor. I'm not saying I trust TikTok to only do good things with access to DMs, but I think it's a fair argument in this scenario to say that a platform has a better opportunity to protect minors if messages aren't encrypted.

I'm not saying no E2E messaging apps should exist, but maybe it doesn't need to for minors in social media apps. However, an alternative could be allowing the sharing of the encryption key with a parent so that there is the ability for someone to monitor messages.

New comment by michaelmior in "Ask HN: What are you working on? (February 2026)"

michaelmior — Wed, 11 Feb 2026 08:40:12 +0000

I have a side project of a new type of JSON database. Schema discovery is performed on the fly and that schema is then used to compress the stored data. This eliminates the need to use short key names to save space in addition to reducing overall storage requirements.