olafalders.com

While importing some race data for My Mind is Racing, I ran Claude inside a Nono sandbox whose whole job was to block network egress. Claude reached hosts well outside its allow list anyway. When I asked how, the answer was a small lesson in the difference between containing a process and containing an agent.

A smaller, more intimate third AI Shoulder Surf session. The connective theme this time was Tailscale: people are stitching together private home labs and reaching their agents and static sites from anywhere without exposing anything to the public internet. Also: coding from a phone, splitting planning and implementation across separate quotas, and the slow drift toward giving agents their own scoped identities.

“Businessmen are only amateurs at failure, just getting used to the notion. Writers are the real professionals.”

“Learn your instrument. Practice, practice, practice. Then forget all that and just wail.”

A small gh one-liner that turns on private vulnerability reporting for every public, non-archived, non-fork repo you own — or every repo in an org you administer — so security researchers have a sanctioned channel to report issues before they go public.

A second year of CLI picks from the Perl Toolchain Summit — terminals, JSON tools, version control, agent sandboxes, and a shell trick worth knowing. Each pick comes with a short description and a link.