Nick Cotter
@ecstaticdisregard.bsky.social
Mainly a log of stuff I’ve read, interspersed with cats etc.
I integrate the things with the other things, architect the software and engineer the data.
nickcotter.com
I integrate the things with the other things, architect the software and engineer the data.
nickcotter.com
“The act-on-behalf model requires the gateway to extract execution context from…requests, generate new scoped authorization tokens for each downstream target, and inject…headers while maintaining the user’s identity context…without exposing overly privileged credentials to downstream services.”
Apply fine-grained access control with Bedrock AgentCore Gateway interceptors | Amazon Web Services
We are launching a new feature: gateway interceptors for Amazon Bedrock AgentCore Gateway. This powerful new capability provides fine-grained security, dynamic access control, and flexible schema…
aws.amazon.com
November 27, 2025 at 5:06 PM
“The act-on-behalf model requires the gateway to extract execution context from…requests, generate new scoped authorization tokens for each downstream target, and inject…headers while maintaining the user’s identity context…without exposing overly privileged credentials to downstream services.”
Nano Banana can be prompt engineered for extremely nuanced AI image generation
Nano Banana can be prompt engineered for extremely nuanced AI image generation
Max Woolf provides an exceptional deep dive into Google's Nano Banana aka Gemini 2.5 Flash Image model, still the best available image manipulation LLM tool three months after its initial …
simonwillison.net
November 27, 2025 at 1:46 PM
Nano Banana can be prompt engineered for extremely nuanced AI image generation
Python is not a great language for data science. Part 1: The experience
Python is not a great language for data science. Part 1: The experience
It may be a good language for data science, but it’s not a great one.
blog.genesmindsmachines.com
November 27, 2025 at 9:00 AM
Python is not a great language for data science. Part 1: The experience
“An indirect prompt injection in an implementation blog can manipulate Antigravity to invoke a malicious browser subagent in order to steal credentials and sensitive code from a user’s IDE.”
Google Antigravity Exfiltrates Data
An indirect prompt injection in an implementation blog can manipulate Antigravity to invoke a malicious browser subagent in order to steal credentials and sensitive code from a user’s IDE.
www.promptarmor.com
November 26, 2025 at 8:43 PM
“An indirect prompt injection in an implementation blog can manipulate Antigravity to invoke a malicious browser subagent in order to steal credentials and sensitive code from a user’s IDE.”
November 26, 2025 at 1:00 PM
We should all be using dependency cooldowns
We should all be using dependency cooldowns
Nov 21, 2025 Tags: oss, security
blog.yossarian.net
November 25, 2025 at 5:07 PM
We should all be using dependency cooldowns
LLM APIs are a Synchronization Problem | Armin Ronacher's Thoughts and Writings
LLM APIs are a Synchronization Problem
Maybe the LLM message APIs should be rethought as a synchronization problem.
lucumr.pocoo.org
November 25, 2025 at 1:46 PM
LLM APIs are a Synchronization Problem | Armin Ronacher's Thoughts and Writings
Agent Design Is Still Hard | Armin Ronacher's Thoughts and Writings
Agent Design Is Still Hard
My Agent abstractions keep breaking somewhere I don’t expect.
lucumr.pocoo.org
November 25, 2025 at 9:00 AM
Agent Design Is Still Hard | Armin Ronacher's Thoughts and Writings
Reposted by Nick Cotter
A first blush, I was wondering what the business case looks like - surely a clever strategic advantage play, some audacious winner-takes-all bet...
But, alas, it increasingly looks like the whole financial plan is "The Singularity is near. Amen !"
But, alas, it increasingly looks like the whole financial plan is "The Singularity is near. Amen !"
November 25, 2025 at 12:46 AM
A first blush, I was wondering what the business case looks like - surely a clever strategic advantage play, some audacious winner-takes-all bet...
But, alas, it increasingly looks like the whole financial plan is "The Singularity is near. Amen !"
But, alas, it increasingly looks like the whole financial plan is "The Singularity is near. Amen !"
Half Life 2 bug found decades later via numeric precision changes over time.
Tom Forsyth (@[email protected])
Attached: 1 image Recent discussion about the perils of doors in gamedev reminded me of a bug caused by a door in a game you may have heard of called "Half Life 2". Are you sitting comfortably? Then…
mastodon.gamedev.place
November 24, 2025 at 5:06 PM
Half Life 2 bug found decades later via numeric precision changes over time.
Thorium-uranium Conversion Makes Breakthrough
“It's like generating electricity by flowing 'nuclear fuel' through 'high-temperature salt',”
“It's like generating electricity by flowing 'nuclear fuel' through 'high-temperature salt',”
Thorium-uranium Conversion Makes Breakthrough
In early November, the experimental operation of a 2-megawatt liquid-fuel thorium-based molten salt reactor (TMSR), led by the Shanghai Institute of Applied Physics, Chinese Academy of Sciences…
www.stdaily.com
November 24, 2025 at 1:10 PM
Thorium-uranium Conversion Makes Breakthrough
“It's like generating electricity by flowing 'nuclear fuel' through 'high-temperature salt',”
“It's like generating electricity by flowing 'nuclear fuel' through 'high-temperature salt',”
Secret Service traced swatting threats against officials. They found 300 servers capable of crippling New York’s cell system | CNN
Secret Service traced swatting threats against officials. They found 300 servers capable of crippling New York’s cell system | CNN
A Secret Service unit set out to unmask the layers of burner phones, changing phone numbers and SIM cards that were swatting American officials. It ended with the largest seizure of SIM servers and…
www.cnn.com
November 24, 2025 at 9:00 AM
Secret Service traced swatting threats against officials. They found 300 servers capable of crippling New York’s cell system | CNN
Post a movie from where you're from.
November 24, 2025 at 8:49 AM
Post a movie from where you're from.
In the middle of Gran Canaria (or possibly by the edge of the Glowing Sea) #SundayPixOffTheBeatenTrack
November 23, 2025 at 5:00 PM
In the middle of Gran Canaria (or possibly by the edge of the Glowing Sea) #SundayPixOffTheBeatenTrack
The Art of Cat Acting
The Art of Cat Acting
YouTube video by Alex Boucher
youtube.com
November 23, 2025 at 11:22 AM
The Art of Cat Acting
How a French judge was digitally cut off by the USA | heise online
How a French judge was digitally cut off by the USA
Nicolas Guillou has been sanctioned by the USA as a judge of the International Criminal Court. He notices the effects primarily in the digital realm.
www.heise.de
November 23, 2025 at 10:00 AM
How a French judge was digitally cut off by the USA | heise online
Reposted by Nick Cotter
November 22, 2025 at 9:25 PM
Reposted by Nick Cotter
... And he still posts on Slashdot - Wozniak is the ultimate geek role model, the antidote to CEO worship !
November 22, 2025 at 12:32 PM
... And he still posts on Slashdot - Wozniak is the ultimate geek role model, the antidote to CEO worship !
Europe didn’t plan, so others did
Europe didn't plan, so others did | Trump's Russia–Ukraine peace plan
Trump’s Russia–Ukraine ‘peace plan’ is not a negotiation – it’s a geopolitical verdict. It shows that Europe is drifting onto the wrong side of history – the side where others make the decisions and Europe foots the bill.
www.epc.eu
November 22, 2025 at 12:31 PM
Europe didn’t plan, so others did
“Should we demand a forest for our children? “
Yes.
Yes.
Where Do the Children Play?
On the need for a world without us
open.substack.com
November 21, 2025 at 1:37 PM
“Should we demand a forest for our children? “
Yes.
Yes.
What US Tech Did to Ireland — The Dial
What US Tech Did to Ireland — The Dial
The country is alarmingly reliant on Meta, Google and Apple.
www.thedial.world
November 21, 2025 at 9:00 AM
What US Tech Did to Ireland — The Dial
“And why does it decide to lie to cover up violating its privacy policies?”
I caught Google Gemini using my data—and then covering it up
I asked Google Gemini a pretty basic developer question. The answer was unremarkable, apart from it mentioning in conclusion that it knows I previously used ...
unbuffered.stream
November 20, 2025 at 5:06 PM
“And why does it decide to lie to cover up violating its privacy policies?”
“A game review website devoted to helping you find games that don't use psychological tricks to manipulate you into becoming an addicted gamer.”
DarkPattern.games » Healthy Gaming « Avoid Addictive Dark Patterns
Game reviews to help you find good games that don't trick you into addictive gaming patterns.
www.darkpattern.games
November 20, 2025 at 1:46 PM
“A game review website devoted to helping you find games that don't use psychological tricks to manipulate you into becoming an addicted gamer.”
What happens if AI labs train for pelicans riding bicycles?
What happens if AI labs train for pelicans riding bicycles?
Almost every time I share a new example of an SVG of a pelican riding a bicycle a variant of this question pops up: how do you know the labs …
simonwillison.net
November 20, 2025 at 9:01 AM
What happens if AI labs train for pelicans riding bicycles?
How we Uncovered a Race Condition in Aurora RDS | Hightouch
How we Uncovered a Race Condition in Aurora RDS
See how we diagnosed and confirmed an AWS Aurora RDS race condition impacting failovers.
hightouch.com
November 19, 2025 at 5:06 PM
How we Uncovered a Race Condition in Aurora RDS | Hightouch