Well, what you can do is notify the card issuer about those cards that went through, so they can mark them as stolen. That surely will make the hacker really happy, and discourage them of doing it again :)

So you mean you are keeping full card numbers somewhere in your logs to... fix some potential security issue...?

>Hey mr processor, the cards for transaction numbers x...y are stolen.

If you are the processor, yes, I guess. If you aren't, then you can provide the transaction ID to the processor and let it handle that part.

I'm assuming there were transaction IDs provided that can be given to the processor. If they can't do anything with the IDs, then that's a pretty broken system.

> Write commit messages as a human developer would — describe only what the code change does.

The undercover mode prompt was generated using AI.

All these companies use AIs for writing these prompts.

But AI aren't actually very good at writing prompts imo. Like they are superficially good in that they seem to produce lots of vaguely accurate and specific text. And you would hope the specificity would mean it's good.

But they sort of don't capture intent very well. Nor do they seem to understand the failure modes of AI. The "-- describe only what the code change does" is a good example. This is specifc but it also distinctly seems like someone who doesn't actually understand what makes AI writing obvious.

If you compare that vs human written prose about what makes AI writing feel AI you would see the difference. https://en.wikipedia.org/wiki/Wikipedia:Signs_of_AI_writing

The above actually feels like text from someone who has read and understands what makes AI writing AI.

Hey LLM, write me a system prompt that will avoid the common AI 'tells' or other idiosyncrasies that make it obvious that text or code output was generated by an AI/LLM. Use the referenced Wikipedia article as a must-avoid list, but do not consider it exhaustive. Add any derivations or modifications to these rules to catch 'likely' signals as well.

There, sorted!

Hey, LLM, take a look at these multiple hundred emails and docs in my docs folder from the last few years, before I started using AI, that I wrote personally. create a list of all of the idiosyncrasies that I have in my writing. Create a file to remember that. And then use that to write any new text that'll be published so it sounds like my authentic voice. Thank you.

All the prompts I've ever written with Claude have always worked fine the first time. Only revised if the actual purpose changes, I left something out, etc. But also I tend to only write prompts as part of a larger session, usually near the end, so there's lots of context available to help with the writing.

AI is better at writing prompts than most humans. It requires work and lots of developers don’t think getting good at prompting actually matters.

At least half of the complaints I see on HN boil down to the person's prompts suck. Or the expectation that AI can read their mind.

As someone who often fails to read subtext, I would estimate that most people expect you to participate in mind reading as a natural part of conversation.

So it is no surprise that many people have difficulty switching gears to literal mode when interacting with these models.

That's not supposed to be surprising. They're dogfooding CC to develop CC. I assume any and every line in this repo is AI generated.

Some of what you're saying is fair. The simulation did have known issues, including glitches with point-defense systems and ships being placed unrealistically close to Red assets due to peacetime constraints on the exercise. The Wikipedia article on MC2002 acknowledges these shortfalls directly.

But you're presenting very specific technical claims (that the boats couldn't physically carry the missiles, that the fleet was "teleported" next to the armada, that the defense simulator was "turned off") as though they're established fact. None of that appears in any sourced material I can find. If you have sources for those claims beyond "interviews from other MC2002 participants," I'd genuinely like to see them.

More importantly, you're glossing over the part that actually matters: what happened after the restart. Red Force was ordered to turn on their anti-aircraft radar so it could be destroyed. They were forbidden from shooting down approaching aircraft during an airborne assault. They were told to reveal the location of their own units. The JFCOM's own postmortem report stated that "the OPFOR free-play was eventually constrained to the point where the end state was scripted."

Even if you accept that the initial result was partly an artifact of simulation quirks, the response wasn't "let's fix the sim and rerun it fairly." It was "let's force a Blue victory and use that to validate the concepts we were supposed to be testing." Van Riper's complaint wasn't just that he won and they took it away. It was that a $250 million exercise was turned into a rubber stamp.

Your chess analogy would be more accurate if, after your opponent crashed the server, the tournament organizers restarted the game but told you which pieces you were allowed to move, then published the result as proof their strategy was sound.

He probably got last minute intel that Iran will begin a retaliatory attack just before the deadline, that's why the truth social post is so rushed.

But, Trump being Trump, he'll probably do a suckerpunch attack today on the deadline.

Unless either Ubuntu has 46 years or is the only distribution, then no, Ubuntu doesn't "ends 46 years of silent sudo passwords".

Linux didn't even exist until the 1990s.

Edit: and the article clearly states, incorrectly, "That behaviour survived — untouched — through nearly half a century of Linux distributions."

Which is equally absurd.

No it isn't? Real example is Amazon, a US company that sells alcohol in the UK, and is required to check age on order & delivery.

Amazon is an international corporation with UK-incorporated entities.

That's true but not relevant to the spirit of the point.

It is relevant. There's a material difference between shipping material overseas and shipping it (and handling it) within the destination country.

If someone mails $ProhibitedItem at a USPS to the UK, then it's the job of local UK police and/or customs to reject the parcel if it is prohibited. It's the UK's problem, de facto if not de jure, because the sender is out of reach.

If someone with a UK subsidiary and local processing center mails $ProhibitedItem to their center and delivers it to someone in the UK, then that's more than the UK's problem.

And on an electronic delivery, is a great firewall the equivalent of customs? And therfore the only way to enforce sovereignty?

Absolutely yes. If a government thinks there is stuff for sale its citizens should not be allowed to buy, they don’t stop county x making it or selling it. They block the thing from entering their country.

If the government thinks there are ones and zeros on the internet it’s citizens should not be allowed to see, they should block them from entering the country.

Practically, yes.

No, real example is a British citizen picking up an American AM radio station that happens to broadcast things forbidden by the UK law, and the UK fining such radio station.

Maybe they interviewed a bunch of clawd bots with a touching soul.md

Withholding the truth is the same as lying. Manipulating survey questions is the same as lying.

Sideloading should be called installing, and installing from the store should be called jailloading.

Jailoading is quite catchy, although it does have a "Micro$oft" and "Microslop" feel. Like more an insult than a word made to be used daily.