Olivia
Online
Michael
@_bluman
Building. Fellow @acumen and @halcyoninspires
San Francisco, CA
Joined December 2016
565 Following
770 Followers
4.5K Posts
https://t.co/zNUkYUBPWJ
@_wjbright But is it really a war on open source if you can use an API key?
@LoopOnChain @steipete @davemorin Hi Amart 👋🏽, OpenClaw superuser here too. Checkout https://t.co/YREeuqMPHF if you'd like to give your agent a phone they can autonomously make calls with. Built it to solve my own issues with needing to reach service providers that are accessible only via a phonecall 🙏🏾
God abeg o, can’t deal with no Viltrumites right now.
One thing about Invincible... that boy Vincible as hell 😂
South Bay area earthquake!
@seyitaylor Hi, I just DM'ed you something interesting related to this. Looking forward to what you think 🙏🏾
This is the first time I've seen a legit "AI caught something humans missed" moment that isn't cherry-picked. Devin flagged the semver bump pulling in a brand new package with no GitHub commits backing it. That's pattern recognition on supply chain anomalies that goes beyond typical code generation. Way more interesting use case
Devin Review caught the axios supply chain attack for multiple Cognition customers before the attack was publicly known.
These attacks will be 10x more frequent in the age of AI; it is critical that repo maintainers start using AI for defense as well.
(showing one example below where Devin Review caught the attack within an hour of its release - text minorly edited for anonymization)
Both the 1.x and 0.x branches got poisoned within 39 minutes of each other because the maintainer's npm account got hijacked. And all it took was swapping the email to a ProtonMail address and publishing via CLI instead of the normal GitHub Actions pipeline. min-release-age=7 in .npmrc would have blocked this for everyone
🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages.
The latest [email protected] now pulls in [email protected], a package that did not exist before today. This is a live compromise.
This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now.
Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that:
• Deobfuscates embedded payloads and operational strings at runtime
• Dynamically loads fs, os, and execSync to evade static analysis
• Executes decoded shell commands
• Stages and copies payload files into OS temp and Windows ProgramData directories
• Deletes and renames artifacts post-execution to destroy forensic evidence
If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.
https://t.co/O0luU7Uh5p
@inachu @vivilinsv We've got spam protection in place to prevent that. And there are daily limits to the number of calls that can be made to prevent abuse. Give it a try!
Introducing https://t.co/Lww8DBvpxK — voice, SMS, and email for any AI agent. One CLI. 500ms voice latency. Install in under 5 minutes.
Your AI agent can plan a holiday and fill forms, but gets stuck when it needs to make a phone call to change that reservation or text a follow-up to the crew you just hired for the renovation.
@vivilinsv It's amazing what's possible in today's world with agents!
@_bluman Congrats!! The agent could act on your behave in calls and texts - interesting :) Agents are getting more real.
@rdominguezibar https://t.co/8JnOeITnTc
Introducing https://t.co/Lww8DBvpxK — voice, SMS, and email for any AI agent. One CLI. 500ms voice latency. Install in under 5 minutes.
Your AI agent can plan a holiday and fill forms, but gets stuck when it needs to make a phone call to change that reservation or text a follow-up to the crew you just hired for the renovation.
The bet: in 12 months, every serious AI agent will have a phone number. The ones that don't will feel like chatbots.
@spixhq is the fastest way to be on the right side of that.
What's the first thing you'd want your agent to call, text, or email? Drop it below or check out the recipes at https://t.co/WeUI4snl7m
I spent 4 years building Voice AI and USSD systems that serve half a million farmers across Africa — real telephony, at scale, in places where a dropped call means a missed harvest.
Spix is that infrastructure, rebuilt from the ground up for AI agents.
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.2M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
87M followers
Taylor Swift
@taylorswift13
80.8M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
68.8M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.4M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.1M followers