alt Hacker NewsThe featured blog post where one of their senior engineering PMs presented an allegedly "production grade" Matrix implementation, in which authentication was stubbed out as a TODO, says it all really. I'm glad a quarter of the internet is in such responsible hands.
Replies
blibble • yesterday at 8:18 PM
there was also a post here where an engineer was parading around a vibe-coded oauth library he'd made as a demonstration of how great LLMs were
at which point the CVEs started to fly in
dana321 • yesterday at 7:53 PM
Thats a classic claude move, even the new sonnet 4.6 still does this.
➕ show 2 replies
ranger_danger • yesterday at 10:39 PM
Matrix doesn't actually define how one should do authentication though... every homeserver software is free to implement it however they want.
➕ show 1 reply
It's spreading and only going to get worse.
Management thinks AI tools should make everyone 10x as productive, so they're all trying to run lean teams and load up the remaining engineers with all the work. This will end about as well as the great offshoring of the early 2000s.