Chipotlai Max(github.com)
153 pointsby nigelgutzmann7 hours ago14 comments
  • avaer5 hours ago
    NAL but I'd be worried about treading into CFAA territory with things like this. In the US, the law allows draconian penalties if you find yourself on the wrong side.

    Something like yt-dlp is just downloading public data, which I can see being defensible as automating the use of a service.

    But this commandeers remote machine resources to do your compute in ways clearly not intended by the provider. I don't know how ethical it is, but I definitely wouldn't want to argue this isn't "hacking" (the bad kind) in criminal court.

    • hn_throwaway_994 hours ago
      Not to mention, did this "hack" ever really work? When the original post went viral showing the Chipotle chatbot reversing a linked list, I (among others who posted their results online) immediately tried it and didn't get the same results, so I always assumed it was just a faked screenshot.
      • qurren2 hours ago
        They probably added something to the prompt after that viralness and then it was a cat and mouse game to jailbreak it
      • avaer3 hours ago
        Whether something ever worked is not correlated with traction in a world where verification is measured by likes.
        • arthurcolle3 hours ago
          You really think someone would do that? Lie on the internet?
      • Shadowmist3 hours ago
        Their chat bot is pretty bad so who knows.
    • qingcharles3 hours ago
      And if you think CFAA is bad, then the states have even harsher versions too. Illinois' version specifically criminalizes any violation of a ToS.
      • oneneptune2 hours ago
        I once saw the bad side of one of these draconian state laws many years ago. People rarely have the misfortune of hitting these laws in some flyover states... and I remember the local judge being really shocked by the mandated penalties for such a simple offense.
    • jawns4 hours ago
      Yeah, this is not slap on the wrist stuff. I think the creator expects nothing more than a C&D letter, but they could face prison time if a zealous federal prosecutor wants to make an example of them.
      • hootz4 hours ago
        And with direct links to his pesonal profile and company. Uh...
        • pixl972 hours ago
          EvilNote: Put links to LinkedIn lunatics sites when committing crimes instead of my own.
  • egeozcan2 hours ago
    I always thought that stuffing too much into an LLM context window was a lot like overloading a burrito.Keep cramming stuff in and eventually the tortilla gives out, and everything you added since quietly spills out the bottom.

    Anyway, this agent probably has the structural integrity of a fat burito held from one corner :)

  • jedbrooke3 hours ago
    I’d been thinking about if something like this would be possible for https://chatjimmy.ai/ . The underlying model is only llama 3 8B but I’m curious what coding harnesses would be like at 17k tok/s
    • tomashubelbauer25 minutes ago
      If you're on macOS you can try the built in LLM which I think is similar in size. There's a project called Apfel that wraps it in a CLI. Also Chrome ships with a web API called Prompt API that gives you offline access to Gemini Nano which can do both text and images at the input. Also tiny. I've integrated these into my workflows where a tiny but non zero amount of reasoning is needed in between the otherwise fully deterministic steps.
    • golph17 minutes ago
      I actually tried building a harness around their constraints, just to find out if it was possible, but the combination of small context window, no tool calls and just small model, made me understand, that it’s not going to work.

      If you find a way to do it, I’d love to hear it!

  • hung3 hours ago
    Reminds me of when I used the Amazon.com AI Chatbot (was called Rufus and they renamed it to Alexa for shopping) to do things like write fizbuzz etc. Looks like they patched it to refuse though.
  • schmichael2 hours ago
    give ai a self-preservation directive and let them do this for you: automatically switching models to keep themselves alive. Living off of whatever token source they can find in the wild. Surely agents can farm their own tokens through the numerous support chats, free trials, leaked keys, and whatever other sources of token generation haven’t been adequately captcha’d. An agent could forage for token sources all night to let you use them gratis during the day.
    • luca-ctxan hour ago
      OpenRouter has lots of free model providers (you pay by letting them train on it) if you actually wanted to do something like this but legally.
  • Falimonda4 hours ago
    Pivot it to providing AI to underprivileged communities / youth / the homeless and you'll generate some good will for your trial! Best of luck!
    • tonymet2 hours ago
      We’re changing the world with Fortune 500 AI Support Bot Multiplexer Broker Models
  • sailfast3 hours ago
    How has this not been patched by the company? Hasn't this been in the wild for a long time already?
  • joloooo2 hours ago
    Almost feels like astroturfing territory
  • slater4 hours ago
    How are they not gonna get sued to smithereens?
  • stronglikedan5 hours ago
    and they say the hardest thing in software is naming things, pffft...
  • jamesjyu2 hours ago
    Next up: using Chipotle AI to solve Erdős problems
  • Avicebron5 hours ago
    based, move on.
  • vladsiu2 hours ago
    [dead]
  • simonsarris5 hours ago
    reminiscent of when people were trying to mine bitcoin in the background of web pages, or with more trad malware