chrysn on Nostr: Funny how people, in light of the LiteLLM compromise, jump to the conclusion that the ...
Funny how people, in light of the LiteLLM compromise, jump to the conclusion that the solution is to make your supply chain even more intransparent by vendoring in dependencies through an LLM's processing, rather than just using pinned and vetted dependencies by default over tools' defaults "yolo there has been an update and it claims to be semver compatible" attitude.
Published at
2026-03-25 12:54:13 UTCEvent JSON
{
"id": "12992bb2bb7519a014b21ab6eece238ec56bee7968f1987a8a87cde1cdd6091b",
"pubkey": "4baefa4bea277c64bdcde0e27bf8445c15e54a6924f4952bb32e94a760d93eb3",
"created_at": 1774443253,
"kind": 1,
"tags": [
[
"proxy",
"https://chaos.social/users/chrysn/statuses/116289913090434994",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.ditto.pub"
]
],
"content": "Funny how people, in light of the LiteLLM compromise, jump to the conclusion that the solution is to make your supply chain even more intransparent by vendoring in dependencies through an LLM's processing, rather than just using pinned and vetted dependencies by default over tools' defaults \"yolo there has been an update and it claims to be semver compatible\" attitude.",
"sig": "023a3a8c445535e807babf28178df9d8c6fd12b9e35ac16e09e779a0c6551babf4ead0afab3d72be146fb53993092391500538d05c271b06807b412c3be9c4d3"
}
