I will spend my day in the #SaltMine at the world headquarters here in Woburn. I would come in more often, but there aren’t enough hoteling spaces, though. For instance, I can’t get one on Thursday. Because I am going into the classified lab more often these days, I might be able to get my own office—or at least my own desk. The threshold is rather low at only two days a week. But I’m not sure when the next assignment phase will be.

So I came into the #SaltMine for a free lunch and a free slice of pie. I am also beginning my journey into a classified lab. We have a couple of them here at STR world headquarters, and my new project is partially classified. It is completely air gapped. You have to take off everything with connectivity, so that means no watch, no phone, and even no car keys. I’ll have to get a normal watch to wear, since I kept checking my wrist for the time.

So it is back to the #SaltMine today. I should be able to do everything because I can stay focused, thanks to a couple of very clear objectives I need to wrap up. That at least helps with the distractions. I have been gradually improving CVE detection and have a few more ideas. I think it’s better to have a false positive than to miss it entirely, so that’s the way I’m progressing.

I am just about done writing up my report in the #SaltMine. We have only been finding 6 out of a potential 40+ CVEs in the source code, and I have a theory why. I want to toss that out there to the team and see what they think we can do about it. I think there might be an easy fix if we’re willing to be too aggressive instead of too conservative.

As I said, I am back at world headquarters for the #SaltMine. It is for a good reason, though. I am getting another free lunch. And we are going to play some #BoardGames too. I brought Take Five and a couple of Mystery Rummy games. I got access to a secret lab yesterday, and I will go down and try to log in today.

As I said, I am in person at the #SaltMine today. It really is incredible how brazen the Orange Turd and his minions are in using all the levers of the most powerful government in history for every petty little grievance. It's a good thing Congress isn’t alive to see this. His fight against Anthropic actually has a strong effect here, because it is one of our most used AI code agents, and as a government contractor, we won’t be able to use it if he continues his petty tirade.

I meant to put a few hours in at the #SaltMine over the weekend, but I never got around to it. I want to finish up my ground truth task. I need to finalize the script and try to fold it into a GitLab CI job. I was hoping to get some feedback from the team, but I haven’t seen anything yet. Only finding six out of 48 CVE’s in the curl code isn’t great.

I had a pretty good day in the #SaltMine yesterday. It was rather short, so maybe that’s why I enjoyed it. But I got a lot done in a short period, including making real progress on my test suite. I am hoping to have enough pulled together to give another demo tomorrow, showing how we can prove a ground truth for whatever that means, but I need to get my other task review to see how that code looks, too.

Still just grinding it out at the #SaltMine. At my demo the other day, they kept harping on “ground truth“. Which feels to me like one of those phrases people say, even though they’re not sure what it means, so it’s really been bugging me. Basically, I am just trying to put together a test suite for my little task here. I’m also just about ready to show my other task off to the rest of the team.