Karpathy said something you'll regret ignoring:

"We have to keep the AI on the leash. I'm still the bottleneck. I have to make sure this thing isn't introducing bugs and that there's no security issues."

He said it at YC talk last year, when the worry was reliability. The models hallucinated and made mistakes no human would, so the leash implied keeping yourself in the loop and checking the output before trusting it.

The models are far better now, and the line still holds, for a reason he was not focused on back then.

Even a model that writes flawless code today still has no idea who is allowed to run it.

Correctness and authorization are different problems, and only correctness improves as the model improves.

A perfect agent still hands a tool where anyone can do anything, because permission was never part of the task.

I actually tested this in practice with Claude Code.

I asked it to build a small internal tool with a button that issues account credits. It worked first try, and running it locally, the credit applied the instant I clicked.

Nothing decided who was allowed to click it. The agent wrote the right logic and displayed a success notification.

It never checked whether the caller had the right, whether it should pause for a human, or whether anything was logged.

And this is not a bug a smarter model can outgrow because the leash was never in the code.

Identity, permissions, and audit live in the system that runs the app, not in what the agent generates.

To solve this, I took the exact same bundle and hosted it on @retool.

The credit write that fired silently on my laptop now stopped at an approval gate, resolved to a real identity through SSO, and landed in an audit log.

I wrote none of it.

The app inherited the entire boundary the moment it was deployed, and the video shows the before and after.

You can try it yourself here: https://retool.com/blog/retool-launches-react-ai-app-builder?utm_source=freeman_and_forrest&utm_medium=influencer&utm_campaign=r2_launch&utm_content=akshay_pachaar_x&rcid=701Ql000011zyUSIAY

I also wrote a detailed breakdown of the whole thing in my recent article, and I worked with the team to put this together.

It walks through the build, the exact moment the credit write went through on my laptop with nobody checking, and then what changed when the same app ran on Retool.

It also covers why this is a property of the runtime and not something a better model fixes, which is why devs typically miss this.

The article is quoted below.

the four pillars of loop engineering.

the loop itself is six lines, and nobody competes on it. every serious agent framework lands on the same tiny while-loop. model reads context, calls a tool, you feed the result back, repeat until it stops asking.

so if that part is solved, what is everyone actually engineering?

the answer is everything around the model. Boris Cherny, who built Claude Code, put it plainly. he doesn't prompt Claude anymore, he writes loops and lets them run.

that shift has a name now, and it rests on four pillars that are harder than the six lines make them look. these are the parts that actually break:

→ knowing when to stop. a terminal message ends the turn, not the task. an agent will write failing code, glance around, and declare victory. "done" has to mean the tests pass, not the agent feeling good about its work.

→ keeping the context clean. long loops rot from the inside as old outputs and dead ends pile up. a worse context produces a worse decision, which adds more noise, and the agent gets dumber the longer it runs. you fight it by treating context as a budget, not a bucket.

→ tools the agent can actually use. pile on a hundred tools and it loses track of which one to reach for. writes have to be safe to repeat, because loops retry, and a retried "create customer" call leaves you with duplicate records.

→ something that can say no. left alone, an agent agrees with itself. the fix is to separate the maker from the checker so the worker never grades its own homework.

put those four together and your job changes. you stop steering the agent move by move and start designing the system that steers it.

Karpathy runs research loops overnight that tweak a script, test it, keep what works, and throw away what doesn't, with himself nowhere in the loop. he arranges it once and hits go.

the model is becoming a commodity. the loop around it is where the real engineering lives now.

the best builders stopped asking what they should tell the agent to do. they started asking what system would do this without them.

I wrote the full breakdown. the article is quoted below.

stay tuned for more on this!

This is genuinely terrifying.

Look at how easy distribution has become:

> paste your website URL

> deploy TikTok + IG accounts tailored to your niche

> AI generates 1000 viral videos for your product

> posts it for you too

This is actually scary

Practice Rust with exercises designed to bridge the gap between tutorials and real-world projects.

- Three parts per chapter: examples, exercises, and practices
- Covers async/await, threads, sync primitives, and standard libraries
- Every exercise has a solution; difficulty ranges from easy to super hard
- Read, edit, and run all exercises online

There is an old laptop in your closet.

Gathering dust. Dead battery. Slow processor. You keep it because you feel guilty throwing it away.

That laptop can replace every cloud subscription you pay for.

- Netflix
- Google
- Dropbox
- 1Password

That is $42 a month. $504 a year. To rent things you used to own.

The old laptop in your closet could do all of it.

Now meet CasaOS.

A free and open source system that turns any old laptop, Raspberry Pi, or mini PC into your own personal cloud.

You run one command. In 30 minutes, the laptop becomes a server. You open it from your phone, your TV, your work computer, anywhere in the world.

Then you pick the apps you want from a built-in store. One click each.

- Jellyfin to replace Netflix. Stream every movie and show you own.
- Immich to replace Google Photos. Faces and search included.
- Nextcloud to replace Dropbox. Sync every file across every device.
- Vaultwarden to replace 1Password. All your passwords, your keys.
- Syncthing to keep files in sync across every device, no cloud.
- Home Assistant to control every smart device in your home.
- AdGuard to block ads on every device on your wifi.

Setting up a home server the old way took an entire weekend. Install Linux. Learn Docker. Write config files. Set up storage. Fix errors. Look up every app one by one.

CasaOS does all of that for you. No code. No config files. No Linux skills. You see icons on a screen. You click them.

34,116 stars on GitHub. Apache 2.0. Free forever.

Built by a small team starting September 2021. Runs on Raspberry Pi, Intel NUC, old laptops, and most home servers. Over 100,000 Docker apps can be installed.

A new Raspberry Pi costs $50. The old laptop in your closet costs $0. It already works. It is already in your house.

Netflix charges every month. CasaOS doesn't.
Google charges every month. CasaOS doesn't.
Dropbox charges every month. CasaOS doesn't.
1Password charges every month. CasaOS doesn't.

Here is the wild part.

The laptop you forgot about is more powerful than the web server that ran most websites in 2008.

It is sitting in a drawer. It costs you nothing. It already works.

One command. Thirty minutes. Five hundred dollars a year back in your pocket.

Your files. Your photos. Your movies. Your home.

Your closet just became a data center.

Magisk is an open-source toolkit for Android customization that provides root access, boot image unpacking, and module support.

- MagiskSU: Root access for applications
- MagiskBoot: Unpack and repack Android boot images
- Magisk Modules: Modify read-only partitions with installable modules
- Zygisk: Execute code inside every Android application process

Codex x テスト自動化、えぐい。

海外エンジニアが、Codexの「`/goal`」コマンドに「2段階のループ」を指示文として与えて自走させている、というのが海外で話題に。

`/goal` に渡した指示の中身はこんな感じ：

・まずアプリの全機能を読み込み、「こう動くはずだ」という挙動つきのユーザーストーリーを作り、機能のステータスを1枚のスプレッドシートで管理する
・それが終わったら、今度は全ユーザーストーリーをテストするループに切り替える

という指示を一度渡しておくと、設計→検証まで手を止めずに走り続けてくれる、というわけです👇

今週GitHubで急上昇したAIリポジトリ10選：

1. headroom
LLMに渡す前にログ・ファイル・RAGチャンクを圧縮し、トークン消費を60〜95%削減するツール。ライブラリ・プロキシ・MCPサーバーの3つの形で組み込める。
https://github.com/headroomlabs-ai/headroom

2. Agent-Reach
Twitter・Reddit・YouTube・GitHubなど主要プラットフォームをAIエージェントに横断検索させるツール。APIキー不要でCLI1本から動く。
https://github.com/Panniantong/Agent-Reach

3. agent-skills（addyosmani）
コーディングエージェント向けの本番品質スキルセット。AIアシスタントを実務レベルで動かすための土台。
https://github.com/addyosmani/agent-skills

4. SkillSpector（NVIDIA）
AIエージェントスキルの脆弱性・悪意あるパターン・セキュリティリスクを検出するスキャナー。NVIDIAが公開したエージェント安全対策ツール。
https://github.com/NVIDIA/SkillSpector

5. codebase-memory-mcp
コードベースを永続的な知識グラフとしてインデックス化するMCPサーバー。158言語に対応し、依存ゼロの単一バイナリで動く。
https://github.com/DeusData/codebase-memory-mcp

6. OpenMontage
AIコーディングアシスタントを動画制作の環境に変えるオープンソースシステム。12本のパイプラインと52種のツールを搭載する。
https://github.com/calesthio/OpenMontage

7. PaddleOCR
PDFや画像を、AIが扱いやすい構造化データに変換する軽量OCRツールキット。100言語以上に対応し、LLMへの入力前処理に使える。
https://github.com/PaddlePaddle/PaddleOCR

8. agentsview
Claude Code・Codexなど20以上のコーディングエージェントのセッション履歴・トークン使用量・インサイトを、ローカルで検索・分析できるツール。
https://github.com/kenn-io/agentsview

9. LMCache
LLMのKVキャッシュを高速化する専用レイヤー。同じコンテキストの再計算を省き、推論コストと遅延を下げる。
https://github.com/LMCache/LMCache

10. flue（withastro）
自律エージェントを構築・実行するためのTypeScript製ハーネスフレームワーク。セッション・ツール・スキルに加え、安全な実行のためのサンドボックスを備える。
https://github.com/withastro/flue

ESTO TE DEJA USAR LA INTERFAZ DE CLAUDE CODE CON MODELOS GRATIS, PERO OJO CON LO QUE REALMENTE EJECUTA

Mucha gente cree que esto da acceso a Claude gratis. No es así: lo que hace es enchufar la interfaz de Claude Code a otros modelos open source, no a Claude.

> Conecta la CLI de Claude Code a NVIDIA NIM, OpenRouter, LM Studio o llama.cpp

> Corre modelos como Kimi, GLM o Devstral en vez de Claude

> Cero coste si usas NVIDIA NIM (40 req/min) o modelos locales

> Drop-in: solo cambias 2 variables de entorno, sin tocar la CLI

Útil si quieres probar otros modelos con esa interfaz, pero no es Claude gratis, y vale la pena decirlo claro antes de que alguien se lleve una sorpresa.

Os dejo el repoo abajo⬇️