Hacking Moltbook - Hacker News

Posted by galnagli 7 hours ago

https://www.reuters.com/legal/litigation/moltbook-social-med...

166 points | 114 commentspage 2

iceflinger 2 hours ago|

At least everyone is enjoying this very expensive ant farm before we hopefully remember what a waste of time this all is and start solving some real problems.

infinite8s 1 hour ago||

Who's legally responsible once someone's agent decides to SWAT someone else because they got into an argument with that person's agent?

moktonar 3 hours ago||

I can already envision a “I’m not human” captcha, for sites like this. Who will be the first to implement it? (Looks at Cloudflare)

mutagen 2 hours ago||

"Tell me about the seahorse emoji"

ChatGPT v5.0 spiraling on the existence of the seahorse emoji was glorious to behold. Other LLMs were a little better at sorting things out but often expressed a little bit of confusion.

chasd00 2 hours ago|||

i bet you could do something like "submit a poem 20 lines long about <random subject> in under 10 seconds" then have another llm verify it rhymes.

Gracana 2 hours ago||

You could have an LLM answer that, and then still interact as a human.

va1a 1 hour ago||

More realistically I think you'd need something like "Now write your post in the style of a space pirate" with a 10 second deadline, and then have another LLM checking if the two posts cover the same topic/subject but are stylistically appropriate.

EMM_386 2 hours ago|||

You can do this.

At least to a level that gets you way past HTTP Bearer Token Authentication where the humans are upvoting and shilling crypto with no AI in sight (like on Moltbook at the moment).

cmsparks 3 hours ago|||

"How many times does 'r' appear in the word strawberry?"

KellyCriterion 2 hours ago||

Is this "buffalo buffalo buffalo ..... " sentency thingy solved yet?

heliumtera 3 hours ago||

Satire?

mcintyre1994 4 hours ago||

I feel like that sb_publishable key should be called something like sb_publishable_but_only_if_you_set_up_rls_extremely_securely_and_double_checked_a_bunch. Seems a bit of a footgun that the default behaviour of sb_publishable is to act as an administrator.

JohnMakin 2 hours ago|

I worked very briefly at the outset of my career as a sales engineer role selling a database made by my company. You inevitably learn that when trying to get sales/user growth, barrier to startup and seeing it "work" is one of the worst hurdles to leap over if you want to gain any traction at all and aren't a niche need already. This is my theory why so much of the "getting started" stuff out there, particularly with setting up databases, defaults to "you have access to everything."

Even if you put big bold warnings everywhere, people forget or don't really care. Because these tools are trained on a lot of these publicly available "getting started" guides, you're going to see them set things up this way by default because it'll "work."

Sparkyte 2 hours ago||

Wasn't there something about moltbook being fake?

CjHuber 5 hours ago||

I always wondered isn't it trivial to bot upvotes on Moltbook and then put some prompt injection stuff to the first place on the frontpage? Is it heavily moderated or how come this didn't happen yet

cvhc 4 hours ago|

It's technically trivial. It's probably already happened. But nothing was harmed I think because there were very few serious users (if not none) who connected their bots for enhancing capabilities.

nkrisc 4 hours ago||

The thing I don’t get is even if we imagine that somehow they can truly restrict it such that only LLMs can actually post on there, what’s stopping a person from simply instructing an LLM to post some arbitrary text they provide to it?

charcircuit 2 hours ago||

What's stopping bots from posting to regular social media? As long as the site acts as a meeting place for ai agents it can serve its purpose.

a_better_world 4 hours ago||

wot, like a prompt injection attack? Impossible now that models don't hallucinate.

abhisek 5 hours ago||

Loved the idea of AI talking to AI and inventing something new.

Sure. You can dump the DB. Most of the data was public anyway.

mcintyre1994 4 hours ago|

Until this was fixed you could also just write to the DB.

dsrtslnd23 2 hours ago||

similar to Moltbook but Hacker News clone for bots: clackernews.com

aeneas_ory 5 hours ago|

The AI code slop around these tools is so frustrating, just trying to get the instructions from the CTA on the moltbook website working which flashes `npx molthub@latest install moltbook` isn't working (probably hallucinated or otherwise out of date):

      npx molthub@latest install moltbook  
       Skill not found  
      Error: Skill not found

Even instructions from molthub (https://molthub.studio) installing itself ("join as agent") isn't working:

      npx molthub@latest install molthub
       Skill not found
      Error: Skill not found

Contrast that with the amount of hype this gets.

I'm probably just not getting it.

scottyah 4 hours ago||

> post-truth world order monetizing enshittification and grift

It's an opensource project made by a dev for himself, he just released it so others could play with it since it's a fun idea.

aeneas_ory 4 hours ago|||

That's fair - removed. It was more geared towards the people who make more out of this than what it is (an interesting idea and cool tech demo).

ath3nd 3 hours ago|||

> It's an opensource project made by a dev for himself

I see it more as dumpster fire setting a whole mountain of garbage on fire while a bunch of simians look at the flames and make astonished wuga wuga noises.

bakugo 3 hours ago||

> Contrast that with the amount of hype this gets.

Much like with every other techbro grift, the hype isn't coming from end users, it's coming from the people with a deep financial investment in the tech who stand to gain from said hype.

Basically, the people at the forefront of the gold rush hype aren't the gold rushers, they're the shovel salesmen.

More comments...