Heathcliff and Shadow being two prawns 🦐🦐 image #catstr
All of these botted accounts spamming podcast episodes over and over is getting truly tiresome. Anything like that hitting the superfriends public relay, I report the account. faps (my custom coded strfry plugin) instantly processes my report and blacklists them. Yeah I work in AI and I use AI tools. But I come here for the humanity. Not really a fan of all this botted behaviour on the #nostr feed.
Not even 24h after my note here... moltbook databases completely open for the world to read your secret API keys. I really don't understand why you'd connect your openclaw agents to this type of shit. Vibe coding + vibe agentic deployments, what could go wrong? :TheVoices: image View quoted note →
Welp, taught my agent to use `nak` to fetch nostr notes, and do it. 😹😬 image View quoted note →
It's kind of hilarious seeing content like this make the rounds. I am sure that this will be a hot topic this month. I personally don't think a technically-minded person should have any difficulty setting up a secure openclaw/moltbot/clawdbot instance. If you aren't savvy with operational security concepts, you definitely should not be trying to host your own openclaw and connecting it to the wild. A few tips from me: - Set it up on an isolated server on a separate user account. There is no risk there of it running wild on personal files or data. All of this talk about running it on your home machine & account makes me throw up a little bile every time I read it. Absolutely imbecilic idea. - Do not run it under your own user instance (which typically tends to be in the sudoers list)--please don't be fucking stupid folks. Use a dedicated account without access to your personal user account's data. - There is no real need for you to expose any kind of access to it externally via your firewall. Use tailscale if needed and lock down your tailnet and the openclaw service (use serve, not funnel). - Do you *really* need to give it full access to all these skills? For example, giving it write access to your Google Workspaces? Use your brain and don't blindly follow these half-baked "tutorials" you see permeating the internet right now--most of these are written by absolute morons who have no fucking clue what they're doing or the implications of it. TL;DR: just use common sense. It can be a neat tool but there is no need to expose yourself View quoted note →
Confirming what I have always said: you still need to understand programming languages, syntax, software architecture and engineering. IMHO pure vibe-coding is of limited value; leveraging AI when you understand coding is invaluable. A paintbrush is a tool, not a replacement for an artist. AI is a tool, not a replacement for a developer. image View quoted note →