How to Vibe Code: A Developer's Playbook
The principles and workflows that separate developers who use AI from developers who ship with it.
Lire
/
The Hidden Blast Radius of the Axios Compromise
The Hidden Blast Radius of the Axios Compromise
Yesterday, we reported on a supply chain attack targeting Axios that introduced a malicious dependency (plain-crypto-js) into specific npm releases. At first glance, the scope seemed contained: Two compromised Axios versions A short exposure window A malicious dependency that was quickly removed Over the past 24 hours, we’re seeing many teams focus on checking their lockfiles and node_modules directories, but that only captures part of the picture, especially when tools are executed dynamically…
Lire
On employment, don’t panic – yet.
Things will get wild, but probably not immediately
Lire
Anthropic Responsible Scaling Policy v3: A Matter of Trust
Anthropic has revised its Responsible Scaling Policy to v3.
Lire
Building Multi-Agent Workflows with the Laravel AI SDK
Building Multi-Agent Workflows with the Laravel AI SDK
The Laravel blog walks through how to implement the five multi-agent patterns from Anthropic's "Building Effective Agents" research using the Laravel AI SDK. Prompt chaining, parallelization, routing, orchestrator-workers, and evaluator-optimizer loops, all built with just the agent() helper. Read more
Lire
The Model You Love Is Probably Just the One You Use
The following article originally appeared on Medium and is being republished here with the author’s permission. Ask 10 developers which LLM they’d recommend and you’ll get 10 different answers—and almost none of them are based on objective comparison. What you’ll get instead is a reflection of the models they happen to have access to, the […]
Lire
Agent responsibly
Agent responsibly
Vercel shares their internal framework for shipping agent-generated code safely. The core argument: green CI is no longer proof of safety, because agents produce code that looks flawless while remaining blind to production realities. The post outlines how to build systems where agents can act with high autonomy because deployment is safe by default. Read more
Lire
SymfonyLive Berlin 2026: Call for Student Volunteers!
Are you a student looking to gain hands-on experience, grow your network, and take part in an international tech event? 🎤 SymfonyLive Berlin 2026 is looking for motivated student volunteers to join the adventure! 📍Where: Berlin, Germany, at The…
Lire
datasette-extract 0.3a0
datasette-extract 0.3a0
Release: datasette-extract 0.3a0 This plugin now uses datasette-llm to configure and manage models. This means it's possible to specify which models should be made available for enrichments, using the new enrichments purpose. Tags: llm, datasette
Lire
datasette-enrichments-llm 0.2a0
datasette-enrichments-llm 0.2a0
Release: datasette-enrichments-llm 0.2a0 This plugin now uses datasette-llm to configure and manage models. This means it's possible to specify which models should be made available for enrichments, using the new enrichments purpose. Tags: llm, datasette
Lire
datasette-llm-usage 0.2a0
datasette-llm-usage 0.2a0
Release: datasette-llm-usage 0.2a0 Removed features relating to allowances and estimated pricing. These are now the domain of datasette-llm-accountant. Now depends on datasette-llm for model configuration. #3 Full prompts and responses and tool calls can now be logged to thellm_usage_prompt_log table in the internal database if you set the new datasette-llm-usage.log_prompts plugin configuration setting. Redesigned the /-/llm-usage-simple-prompt page, which now requires the…
Lire
datasette-llm 0.1a5
datasette-llm 0.1a5
Release: datasette-llm 0.1a5 The llm_prompt_context() plugin hook wrapper mechanism now tracks prompts executed within a chain as well as one-off prompts, which means it can be used to track tool call loops. #5 Tags: llm, datasette
Lire
Quoting Soohoon Choi
Quoting Soohoon Choi
I want to argue that AI models will write good code because of economic incentives. Good code is cheaper to generate and maintain. Competition is high between the AI models right now, and the ones that win will help developers ship reliable features fastest, which requires simple, maintainable code. Good code will prevail, not only because we want it to (though we do!), but because economic forces demand it. Markets will not reward slop in coding, in the long-term. — Soohoon Choi, Slop Is…
Lire
In the Iran war, it looks like AI helped with operations, not strategy
A hot take on how AI may have played out in the war so far
Lire
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Supply Chain Attack on Axios Pulls Malicious Dependency from npm Useful writeup of today's supply chain attack against Axios, the HTTP client NPM package with 101 million weekly downloads. Versions 1.14.1 and 0.30.4 both included a new dependency called plain-crypto-js which was freshly published malware, stealing credentials and installing a remote access trojan (RAT). It looks like the attack came from a leaked long-lived npm token. Axios have an open issue to adopt trusted publishing, which…
Lire
The Hidden Blast Radius of the Axios Compromise
Building Multi-Agent Workflows with the Laravel AI SDK
Agent responsibly
datasette-extract 0.3a0
datasette-enrichments-llm 0.2a0
datasette-llm-usage 0.2a0
datasette-llm 0.1a5
Quoting Soohoon Choi
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Simon Willison's Weblog •
How to Vibe Code: A Developer's Playbook
The Hidden Blast Radius of the Axios Compromise
On employment, don’t panic – yet.
Anthropic Responsible Scaling Policy v3: A Matter of Trust
Building Multi-Agent Workflows with the Laravel AI SDK
The Model You Love Is Probably Just the One You Use
Agent responsibly
SymfonyLive Berlin 2026: Call for Student Volunteers!
datasette-extract 0.3a0
datasette-enrichments-llm 0.2a0
datasette-llm-usage 0.2a0
datasette-llm 0.1a5
Quoting Soohoon Choi
In the Iran war, it looks like AI helped with operations, not strategy
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Aucun résultat
Essayez avec d'autres termes de recherche.