I have recordings proving Coinbase knew about breach 4 months before disclosure
The Call That Changed Everything On January 7, 2025, at 5:02 PM, I received an email with a subject line that immediately caught my attention: “Order N54HJG3V: Withdrawal of 2.93 ETH initiated. A representative will be in touch shortly before we mark the payment completed” Minutes later, my phone rang. The caller ID showed 1-805-885-0141. […]
Linux mode setting, from the comfort of OCaml
Linux provides the KMS (Kernel Mode Setting) API to let applications query and configure display settings. It’s used by Wayland compositors and other programs that need to configure the hardware directly. I found the C API a little verbose and hard to follow so I made libdrm-ocaml, which lets us run commands interactively in a […]
Tracking users with favicons, even in incognito mode
Supercookie uses favicons to assign a unique identifier to website visitors.Unlike traditional tracking methods, this ID can be stored almost persistently and cannot be easily cleared by the user. The tracking method works even in the browser’s incognito mode and is not cleared by flushing the cache, closing the browser or restarting the operating system, […]
The fate of “small” open source
By far the most popular npm package I’ve ever written is blob-util, which is ~10 years old and still gets 5+ million weekly downloads. It’s a small collection of utilities for working with Blobs in JavaScript. I wrote it because I found that PouchDB users were endlessly confused about how to work with Blobs and […]
What if you don’t need MCP at all?
2025-11-02 One chonky MCP server After months of agentic coding frenzy, Twitter is still ablaze with discussions about MCP servers. I previously did some very light benchmarking to see if Bash tools or MCP servers are better suited for a specific task. The TL;DR: both can be efficient if you take care. Unfortunately, many of […]
CUDA Ontology
CUDA’s terminology carries significant overloading: the word “CUDA” itself refers to at least five distinct concepts, “driver” means different things in different contexts, and version numbers reported by various tools measure different subsystems. This article provides a rigorous ontology of CUDA components: a systematic description of what exists in the CUDA ecosystem, how components relate […]
Z3 API in Python: From Sudoku to N-Queens in Under 20 Lines
Z3Py Guide Z3 is a high performance theorem prover developed at Microsoft Research. Z3 is used in many applications such as: software/hardware verification and testing, constraint solving, analysis of hybrid systems, security, biology (in silico analysis), and geometrical problems. This tutorial demonstrates the main capabilities of Z3Py: the Z3 API in Python. No Python background […]
I finally understand Cloudflare Zero Trust tunnels
A while ago, after frustration with Tailscale in environments where it couldn’t properly penetrate NAT/firewall and get a p2p connection, I decided to invest some time into learning something new: Cloudflare Zero Trust + Warp. There are so many new concepts, but after way too long, I can finally say that I understand Cloudflare Zero […]
Only three kinds of AI products work
The very first LLM-based product, ChatGPT, was just the ability to talk with the model itself: in other words, a pure chatbot. This is still the most popular LLM product by a large margin. In fact, given the amount of money that’s been invested in the industry, it’s shocking how many “new AI products” are […]
FPGA Based IBM-PC-XT
Recently I undertook a hobby project to recreate an IBM XT Personal Computer from the 1980s using a mix of authentic parts and modern technology. I had a clear goal in mind: I wanted to be able to play the EGA version of Monkey Island 1 on it, with no features missing. This means I […]