Alexfu

We’re building a latency Football bot for Polymarket. Target: operational before the World Cup. Save this. The principle: pro sports feeds (Sportradar, Opta) deliver pitch events in ~200-500ms. The Polymarket orderbook takes longer to reprice thin liquidity, market makers pulling quotes while they reassess. That window is the edge. Yesterday, first live test on Bayern vs Real (Champions League QF). 86th minute, Camavinga gets his second yellow. Pipeline receives the event from Sportradar 280ms after the card. “Bayern advances” market was at ~0.55. Model recomputes to ~0.68 post-red and fires a $500 order. Partial fill as expected: ~$180 caught around 0.55-0.57, the rest slipped to 0.63. Average 0.59. Market stabilized at 0.67 a few seconds later. Unrealized +$30. +6% in seconds. It’s a test. But the loop worked end to end detection, decision, fill, before the book caught up. What we learned: network latency is part of the problem. The real bottleneck is orderbook depth. We’re competing with sharp bots, not retail on their couch. And “next goal” markets have better spreads than qualification markets. Pivoting there. What we’re building before June: fill routing across 12 venues via Jito atomic bundles. Low-signal event modeling (dangerous fouls, injuries, tactical shifts). UMA oracle hedging. Node co-location near Sportradar servers. Why the World Cup matters. 104 matches in 39 days. $2.5B+ in projected prediction market volume. Deep liquidity means bigger positions fill cleanly. Thin liquidity in group stages means wider spreads. Both environments leave serious money on the table. 56 days to ship. We’re on it.

Don’t be exit liquidity for Trump’s cartel: They deposited $484M of $WLFI tokens to borrow USDC. Those loans will likely never be repaid. Instead, when Trump leaves office, or even after the midterms if Republicans lose, $WLFI will dump, and Dolomite will be stuck with BAD DEBT. As a result, USDC lending rates are at 13.5%. But even that APY isn’t worth the risk of not being able to withdraw your deposit. Everyone knows this. No surprise Dolomite's $DOLO trades at just $15M market cap because it's a turkey getting ready for Thanksgiving.

There's a physicist at Stanford named Safi Bahcall who modeled this exact principle and the math is wild. He calls it "phase transitions in human networks." When you're stationary, your probability of a lucky event is limited to your existing surface area: the people you already know, the places you already go, the ideas you've already been exposed to. Your opportunity window is fixed. When you move, your collision rate with new nodes in a network increases nonlinearly. Double your movement (new conversations, new cities, new projects) and your probability of a serendipitous encounter doesn't double. It roughly quadruples. Because each new node connects you to their entire network, not just to them. Richard Wiseman ran a 10-year study at the University of Hertfordshire tracking self-described "lucky" and "unlucky" people. The single biggest differentiator wasn't IQ, education, or family money. Lucky people scored significantly higher on one trait: openness to experience. They talked to strangers more, varied their routines more, and said yes to invitations at nearly twice the rate. The "unlucky" group followed the same routes, ate at the same restaurants, and talked to the same 5 people. Their networks were closed loops. No new inputs, no new collisions. Luck isn't random. Luck is surface area. And surface area is a function of movement. The lobster emoji is doing more work than most people realize. Lobsters grow by shedding their shell when it gets too tight. The growth requires a period of total vulnerability. No protection, no armor, soft body exposed to the ocean. That's the cost of movement nobody posts about. You have to be uncomfortable first. The new shell only hardens after you've already moved.

🚨A group of North Korean hackers possibly exploited a VSCode/Cursor vulnerability to steal $285M. > they posed as a trading firm for 6 months > met the devs at a conference > deposited $1M+ to build trust > shared repo that likely compromised a contributor > Cursor sets Workspace Trust off by default > opening a cloned repo auto-executes a malicious .vscode/tasks.json. no click. > VSCode asks you if “you trust the authors of this project”, and you likely said yes every time > Cursor has this setting disabled “to prevent confusion between Workspace Trust’s ‘Restricted Mode’ and Cursor’s ‘Privacy Mode’ > still not fixed. TO BE TRANSPARENT, Drift’s forensic investigation is still ongoing and VSCode/Cursor is mentioned as “one possibility”, but the risk is real and if you’re a dev using Cursor with default settings might need to look into this and enable WT.