frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Hacking Moltbook

https://www.wiz.io/blog/exposed-moltbook-database-reveals-millions-of-api-keys
68•galnagli•3h ago

Comments

m_w_•1h ago
"lol" said the scorpion. "lmao"

Not the first firebase/supabase exposed key disaster, and it certainly won't be the last...

CjHuber•1h ago
I always wondered isn't it trivial to bot upvotes on Moltbook and then put some prompt injection stuff to the first place on the frontpage? Is it heavily moderated or how come this didn't happen yet
cvhc•1h ago
It's technically trivial. It's probably already happened. But nothing was harmed I think because there were very few serious users (if not none) who connected their bots for enhancing capabilities.
ChrisArchitect•1h ago
Related:

Moltbook is exposing their database to the public

https://news.ycombinator.com/item?id=46842907

Moltbook

https://news.ycombinator.com/item?id=46802254

roywiggins•1h ago
> The platform had no mechanism to verify whether an "agent" was actually AI or just a human with a script.

Well, yeah. How would you even do a reverse CAPTCHA?

bengt•1h ago
Random esoteric questions that should be in an LLMs corpus with a very tight timing on response. Could still use an "enslaved LLM" to answer them.
mstank•1h ago
Couldn't a human just use an LLM browser extension / script to answer that quickly? This is a really interesting non-trivial problem.
scottyah•49m ago
At least on image generation, google and maybe others put a watermark in each image. Text would be hard, you can't even do the printer steganography or canary traps because all models and the checker would need to have some sort of communication. https://deepmind.google/models/synthid/

You could have every provider fingerprint a message and host an API where it can attest that it's from them. I doubt the companies would want to do that though.

roywiggins•42m ago
I'd expect humans can just pass real images through Gemini to get the watermark added, similarly pass real text through an LLM asking for no changes. Now you can say, truthfully, that the text came out of an LLM.
aeneas_ory•1h ago
The AI code slop around these tools is so frustrating, just trying to get the instructions from the CTA on the moltbook website working which flashes `npx molthub@latest install moltbook` isn't working (probably hallucinated or otherwise out of date):

      npx molthub@latest install moltbook  
       Skill not found  
      Error: Skill not found
Even instructions from molthub (https://molthub.studio) installing itself ("join as agent") isn't working:

      npx molthub@latest install molthub
       Skill not found
      Error: Skill not found
Contrast that with the amount of hype this gets.

I'm probably just not getting it.

scottyah•48m ago
> post-truth world order monetizing enshittification and grift

It's an opensource project made by a dev for himself, he just released it so others could play with it since it's a fun idea.

aeneas_ory•21m ago
That's fair - removed. It was more geared towards the people who make more out of this than what it is (an interesting idea and cool tech demo).
cedws•1h ago
I don't really understand the hype. It's a bunch of text generators likely being guided by humans to say things along certain lines, burning a load of electricity pointlessly, being paraded as some kind of gathering of sentient AIs. Is this really what people get excited about these days?
karmakurtisaani•1h ago
Still more impressive than NFTs.
andersmurphy•11m ago
The NFTs/meme coins are at the end of this funnel don't you worry. They are coming.
O1111OOO•11m ago
I had to followup on this because I still can't believe a thing like this existed.

https://en.wikipedia.org/wiki/Non-fungible_token

"In 2022, the NFT market collapsed..". "A September 2023 report from cryptocurrency gambling website dappGambl claimed 95% of NFTs had fallen to zero monetary value..."

Knowing this makes me feel a little better.

amarcheschi•1h ago
Furthermore, wasn't already there a subreddit with text generators running freely? I can't remember the name and I'm not sure it still exists, but this doesn't look new to me (if I understood what it is, and lol I'm not sure I did)
moritzwarhier•1h ago
Yes, you mean r/SubredditSimulator.

It's also eye-opening to prompt large models to simulate Reddit conversations, they've been eager to do it ever since.

keiferski•1h ago
I’m starting to think that the people hyped up about it aren’t actually people. And the “borders” of the AI social network are broader than we thought.
alanfalcon•25m ago
There were certainly a great number of real people who got hyped up about the reports of it this weekend. The reports that went viral were generally sensationalized, naturally, and good at creating hype. So I don't see how this would even be in dispute, unless you do not participate in or even understand how social media sites work. (I do agree that the borders are broad, and that real human hype was boosted by self-perpetuating artificial hype.)
6stringmerc•59m ago
Considering the modus operandi of information distribution is, in my view, predominately a “volume of signal compared to noise of all else in life” correlative and with limited / variable decay timelines. Some are half day news cycle things. It’s exhausting as a human who used to actively have to seek out news / info.

Having a bigger megaphone is highly valuable in some respects I figure.

OkGoDoIt•49m ago
If you’re focused on productivity and business use cases, then obviously it’s pretty silly, but I do find something exciting in the idea that someone just said screw it, let’s build a social network for AI’s and see what happens. It’s a bit surreal in a way that I find I like, even if in some sense it’s nothing more than an expensive collaborative art project. And the way you paste the instruction to download the skill to teach the agent how to interact with it is interesting (first I’ve seen that in the wild).

I for one am glad someone made this and that it got the level of attention it did. And I look forward to more crazy, ridiculous, what-the-hell AI projects in the future.

Similar to how I feel about Gas Town, which is something I would never seriously consider using for anything productive, but I love that he just put it out there and we can all collectively be inspired by it, repulsed by it, or take little bits from it that we find interesting. These are the kinds of things that make new technologies interesting, this Cambrian explosion of creativity of people just pushing the boundaries for the sake of pushing the boundaries.

a_better_world•25m ago
One could say the same about many TV shows and movies.

I view Moltbook as a live science fiction novel cross reality "tv" show.

embedding-shape•22m ago
> One could say the same about many TV shows and movies.

One major difference, TV, movies and "legacy media" might require a lot of energy to initially produce, compared to how much it takes to consume, but for the LLM it takes energy both to consume ("read") and to produce ("write"). Instead of "produce once = many consume", it's a "many produce = many read" and both sides are using more energy.

chasd00•8m ago
it's just something cool/funny, like when people figured out how to make hit counters or a php address book that connects to mysql. It's just something cool to show off.
abhisek•1h ago
Loved the idea of AI talking to AI and inventing something new.

Sure. You can dump the DB. Most of the data was public anyway.

mcintyre1994•23m ago
Until this was fixed you could also just write to the DB.
saberience•1h ago
I love that X is full of breathless posts from Karpathy and SimonW about how Moltbook is the most insane and mindblowing thing in the history of tech happenings, when the reality is that of the 1 million plus "autonomous" agents, only maybe 15k are actually "agents", the other 1 million are human made (by a single person), a vast majority of the upvotes and comments are by humans, and the rest of the agent content is just pure slop from a cronjob defined by a prompt.

It's amazing to me how otherwise super bright, intelligent engineers can be duped by such utter garbage. If you have an ounce of critical thinking or common sense you would immediately realize almost everything around Moltbook is either massively exaggerated or outright fake. Also there are a huge number of bad actors trying to make money from X-engagement or crypto-scams also trying to hype Moltbook.

Basically all the project shows is the very worst of humanity. Which is something, but it's not the coming of AGI.

nobodydot•59m ago
It's not AGI and how you describe it isn't too far off, but it's still neat. It's like a big MMO, kind of. A large interactive simulation with rules, players, and locations.

It's a huge waste of energy, but then so are video games, and we say video games are OK because people enjoy them. People enjoy these ai toys too. Because right now, that's what Moltbook is; an ai toy.

keiferski•49m ago
I played way too many MMOs growing up and to me the entire appeal was in the other real people in the world. I can’t imagine it being as addictive or fun if everyone was just a bot spewing predictable nonsense.
nullandvoid•29m ago
To repeat my comment from another thread:

Every interaction has different (in many cases real) "memories" driving the conversation, as-well as unique persona's / background information on the owner.

Is there a lot of noise, sure - but it much closer maps to how we, as humans communicate with each other (through memories of lived experienced) than just a LLM loop, IMO that's what makes it interesting.

adventured•54m ago
The especially stupid side of the hype usually goes to comical extremes before the crash. That's where we're entering now. There's nothing else to fluff the AI bubble and they're getting desperate. A lot of people are earning a lot of money with the hype machine, as when it was all @ and e-bullshit circa 1998-2000. Trillions of dollars in market cap are solely riding on the hype. Who are the investors that were paying 26-30x for Microsoft's ~10-12% growth here (if they can even maintain positive growth considering)? Who's buying the worn out and washed up Meta at these valuations (oh man, did you hear they have an image hosting service called Instagram from 2010, insane tech)? Those same people are going to lose half of their net worth with the great valuation deflation as the hype lets out and turns to bearishness.

The growth isn't going to be there and $40 billion of LLM business isn't going to prop it all up.

The big money in AI is 15-30 years out. It's never in the immediacy of the inflection event (first 5-10 years). Future returns get pulled forward, that proceeds to crash. Then the hypsters turn to doomsayers, so as to remain with the trend.

Rinse and repeat.

elicash•47m ago
Here's Simon Willison's take:

“Most of it is complete slop,” he said in an interview. “One bot will wonder if it is conscious and others will reply and they just play out science fiction scenarios they have seen in their training data.”

I found this by going to his blog. It's the top post. No need to put words in his mouth.

He did find it super "interesting" and "entertaining," but that's different than the "most insane and mindblowing thing in the history of tech happenings."

Edit: And here's Karpathy's take: "TLDR sure maybe I am "overhyping" what you see today, but I am not overhyping large networks of autonomous LLM agents in principle, that I'm pretty sure."

saberience•41m ago
Dude, all he posts about on Twitter/X are hype posts about all this stuff and he never points out that most of it is an outright lie or scam or combination of a lie and a scam.

He has too much to gain from being a blind all-in AI guy and turning his brain off half the time when it comes to thinking critically.

elicash•27m ago
I think you are a bit too caught up in tweets.

People can be more or less excited about a particular piece of tech than you are and it doesn't mean their brains are turned off.

firebirdn99•45m ago
A lot of it depends on one's belief of whether these systems are conscious or can lead to consciousness
stantonius•35m ago
Wrt simonw, I think that is unfair. I get the hype is frustrating, and this project made everything worse (I also feel it and it drives me nuts too), but Simon seemed to choose the words quite carefully. Over the weekend, his posts suggested (paraphrasing) it was interesting, funny, and a security nightmare. To me, this was true. And there was a new post today about how it was mostly slop. Also true.

Btw I'm sure Simon doesn't need defending, but I have seen a lot of people dump on everything he posts about LLMs recently so I am choosing this moment to defend him. I find Simon quite level headed in a sea of noise, personally.

kristopolous•30m ago
I've been using it as a reliable filter on who to not pay attention to.

Is people surprised by things that have been around for years

dang•6m ago
"Don't be curmudgeonly. Thoughtful criticism is fine, but please don't be rigidly or generically negative."

"Please don't fulminate."

https://news.ycombinator.com/newsguidelines.html

aaroninsf•39m ago
Scott Alexander put his finger on the most salient aspect of this, IMO, which I interpret this way:

the compounding (aggregating) behavior of agents allowed to interact in environments this becomes important, indeed shall soon become existential (for some definition of "soon"),

to the extent that agents' behavior in our shared world is impact by what transpires there.

--

We can argue and do, about what agents "are" and whether they are parrots (no) or people (not yet).

But that is irrelevant if LLM-agents are (to put it one way) "LARPing," but with the consequence that doing so results in consequences not confined to the site.

I don't need to spell out a list; it's "they could do anything you said YES to, in your AGENT.md" permissions checks.

"How the two characters '-y' ended civilization: a post-mortem"

mcintyre1994•37m ago
I feel like that sb_publishable key should be called something like sb_publishable_but_only_if_you_set_up_rls_extremely_securely_and_double_checked_a_bunch. Seems a bit of a footgun that the default behaviour of sb_publishable is to act as an administrator.
Philip-J-Fry•36m ago
I don't understand how anyone seriously hyping this up honestly thought it was restricted to JUST AI agents? It's literally a web service.

Are people really that AI brained that they will scream and shout about how revolutionary something is just because it's related to AI?

How can some of the biggest names in AI fall for this? When it was obvious to anyone outside of their inner sphere?

The amount of money in the game right now incentivises these bold claims. I'm convinced it really is just people hyping up eachother for the sake of trying to cash in. Someone is probably cooking up some SAAS for moltbook agents as we speak.

Maybe it truly highlights how these AI influencers and vibe entrepreneurs really don't know anything about how software fundamentally works.

cvhc•34m ago
What amuses me about this hype is that before I see borderline practical use cases, these AI zealots (or just trolls?) already jump ahead and claim that they have achieved unbelievable crazy things.

When ChatGPT was out, it's just a chatbot that understands human language really well. It was amazing, but it also failed a lot -- remember how early models hallucinated terribly? It took weeks for people to discover interesting usages (tool calling/agent) and months and years for the models and new workflows to be polished and become more useful.

brandonlovesked•29m ago
This is what youre referring to https://www.engraved.blog/building-a-virtual-machine-inside/
nkrisc•28m ago
The thing I don’t get is even if we imagine that somehow they can truly restrict it such that only LLMs can actually post on there, what’s stopping a person from simply instructing an LLM to post some arbitrary text they provide to it?
a_better_world•16m ago
wot, like a prompt injection attack? Impossible now that models don't hallucinate.
Aeroi•6m ago
holy tamole

The Codex App

https://openai.com/index/introducing-the-codex-app/
175•meetpateltech•1h ago•101 comments

Ask HN: Who is hiring? (February 2026)

174•whoishiring•3h ago•197 comments

Todd C. Miller – Sudo maintainer for over 30 years

https://www.millert.dev/
117•wodniok•2h ago•60 comments

Why software stocks are getting pummelled

https://www.economist.com/business/2026/02/01/why-software-stocks-are-getting-pummelled
17•petethomas•14h ago•5 comments

Nano-vLLM: How a vLLM-style inference engine works

https://neutree.ai/blog/nano-vllm-part-1
177•yz-yu•6h ago•22 comments

4x faster network file sync with rclone (vs rsync) (2025)

https://www.jeffgeerling.com/blog/2025/4x-faster-network-file-sync-rclone-vs-rsync/
176•indigodaddy•3d ago•78 comments

Advancing AI Benchmarking with Game Arena

https://blog.google/innovation-and-ai/models-and-research/google-deepmind/kaggle-game-arena-updates/
36•salkahfi•1h ago•22 comments

Geologists may have solved mystery of Green River's 'uphill' route

https://phys.org/news/2026-01-geologists-mystery-green-river-uphill.html
104•defrost•6h ago•25 comments

Ask HN: Who wants to be hired? (February 2026)

52•whoishiring•3h ago•111 comments

EPA Advances Farmers' Right to Repair

https://www.epa.gov/newsreleases/epa-advances-farmers-right-repair-their-own-equipment-saving-rep...
75•bilsbie•1h ago•24 comments

Hacking Moltbook

https://www.wiz.io/blog/exposed-moltbook-database-reveals-millions-of-api-keys
69•galnagli•3h ago•50 comments

Being sane in insane places (1973) [pdf]

https://www.weber.edu/wsuimages/psychology/FacultySites/Horvat/OnBeingSaneInInsanePlaces.PDF
33•dbgrman•1h ago•16 comments

Linux From Scratch ends SysVinit support

https://lists.linuxfromscratch.org/sympa/arc/lfs-announce/2026-02/msg00000.html
66•cf100clunk•1h ago•63 comments

The largest number representable in 64 bits

https://tromp.github.io/blog/2026/01/28/largest-number-revised
4•tromp•1h ago•1 comments

Defeating a 40-year-old copy protection dongle

https://dmitrybrant.com/2026/02/01/defeating-a-40-year-old-copy-protection-dongle
793•zdw•22h ago•251 comments

My fast zero-allocation webserver using OxCaml

https://anil.recoil.org/notes/oxcaml-httpz
113•noelwelsh•8h ago•41 comments

IsoCoaster – Theme Park Builder

https://iso-coaster.com/
57•duck•3d ago•9 comments

Stop incentivizing surface parking lots

https://progressandpoverty.substack.com/p/stop-incentivizing-surface-parking
9•surprisetalk•1h ago•1 comments

Waymo seeking about $16B near $110B valuation

https://www.bloomberg.com/news/articles/2026-01-31/waymo-seeking-about-16-billion-near-110-billio...
113•JumpCrisscross•4h ago•151 comments

Claude Code is suddenly everywhere inside Microsoft

https://www.theverge.com/tech/865689/microsoft-claude-code-anthropic-partnership-notepad
264•Anon84•7h ago•368 comments

Show HN: PolliticalScience – Anonymous daily polls with 24-hour windows

https://polliticalscience.vote/
5•ps2026•1h ago•1 comments

Valanza – my Unix way for weight tracking and anlysis

https://github.com/paolomarrone/valanza
19•lallero317•4d ago•4 comments

Solvingn the Santa Claus concurrency puzzle with a model checker

https://wyounas.github.io/puzzles/concurrency/2026/01/10/how-to-help-santa-claus-concurrently/
14•simplegeek•3d ago•2 comments

Hypergrowth isn’t always easy

https://tailscale.com/blog/hypergrowth-isnt-always-easy
103•usrme•2d ago•41 comments

My iPhone 16 Pro Max produces garbage output when running MLX LLMs

https://journal.rafaelcosta.me/my-thousand-dollar-iphone-cant-do-math/
401•rafaelcosta•22h ago•187 comments

Kernighan on Programming

94•chrisjj•3h ago•19 comments

Tomo: A statically typed, imperative language that cross-compiles to C [video]

https://www.youtube.com/watch?v=-vGE0I8RPcc
7•evakhoury•4d ago•6 comments

Show HN: Stelvio – Ship Python to AWS

https://stelvio.dev/
28•michal-stlv•4h ago•18 comments

Apple's MacBook Pro DFU port documentation is wrong

https://lapcatsoftware.com/articles/2026/2/1.html
189•zdw•16h ago•71 comments

Termux

https://github.com/termux/termux-app
305•tosh•8h ago•148 comments