Eric Mann

@[email protected]
1,089 Followers
159 Following
3.4K Posts
Tekton, programmer, woodworker, cook. Specializing in #PHP, #cryptography, and #security. #fedi22
PayPalhttps://paypal.me/eam
Bloghttps://eric.mann.blog
Gravatarhttps://gravatar.com/ericmann
Keyoxidehttps://keyoxide.org/63F15A9B715376CA
Eric Mann14m ago

You ever get to that point where you're consciously calm but subconsciously so stressed that your sleep suffers, you have no appetite, and you just feel exhausted by even existing?

Yeah, I hit that mark a few days ago ... :-(

Eric Mann1d ago
Custom build of NemoClaw running locally? Yeah, I'll take it :-)
Eric Mann1d ago

I built a cryptography tool with AI agents. They shipped bonus features before the core product existed. Tests passed because they tested the wrong thing.

The agents wrote great code. The harness let them ship it without connecting it.

Lesson: AI agents need completion gates, data contracts, and integration tests — the same things as junior devs.

Full retrospective: https://eric.mann.blog/the-agentic-harness-problem-why-ai-agents-need-better-guardrails-than-code-reviews/

#AI #AgenticDevelopment #SoftwareEngineering #Retrospective

The Agentic Harness Problem: Why AI Agents Need Better Guardrails Than Code Reviews

AI coding agents are prolific. They’re also unsupervised interns who will happily polish a bonus feature while the core product sits unfinished. A real-world retrospective on building tss-cer…

Eric Mann's Blog
Eric Mann5d ago

New open source tool: tss-ceremony

An interactive terminal animation of a DKLS23 threshold ECDSA signing ceremony. Real crypto values, real signatures, verifiable with OpenSSL.

Built with Go + Bubbletea. 20 scenes walking through keygen, signing, verification, and a FROST comparison.

`go install https://github.com/DisplaceTech/tss-ceremony@latest`

Read more => https://eric.mann.blog/watch-cryptography-happen-a-terminal-animation-for-threshold-signatures/

#golang #cryptography #opensource #security #ThresholdSignatures

Eric Mann6d ago
Ben Ramsey6d ago

I’d like to have as many folks vote on this as possible, given the nature of the topic (i.e., copyright). If you keep in touch with any “old timers,” let them know I’d love to have their approval. Spread the word!

https://wiki.php.net/rfc/php_license_update#voting_choices

#PHP

PHP: rfc:php_license_update

Eric Mann6d ago

Private keys are single points of failure. We've all known this, but we treat it as an operational problem — HSMs, rotation schedules, access policies.

Threshold signatures make it a *cryptographic* problem instead. DKLS23 splits a key across parties so no one holds the full secret, and the output is standard ECDSA.

I wrote up a plain-language explainer: https://eric.mann.blog/why-one-key-shouldnt-rule-them-all-threshold-signatures-for-the-rest-of-us/

Part 1 of a 3-part series. #cryptography #security #ECDSA #ThresholdSignatures

Why One Key Shouldn’t Rule Them All: Threshold Signatures for the Rest of Us

Private keys are the backbone of digital security — and a single point of failure. Threshold signatures split that risk across multiple parties, and the DKLS23 protocol does it in just three rounds…

Eric Mann's Blog
Eric MannMar 17

Day job is transitioning to a new org, which would mean at least 4 months of working without pay if I stay the course.

Time to double down on Displace.

Who needs infra consulting? Who wants an MCP server for their API? Who needs PHP dev?

Let's talk...

Eric MannMar 11

The Upfront Investment That Saves 10,000 Hours

There's a pattern in tech where people mock the setup cost of automation without accounting for the return. I spent a day building a Grunt-based WordPress bootstrapper in 2013. Fortune 500 companies are still running code built on that foundation today.

https://eric.mann.blog/the-upfront-investment-that-saves-10000-hours/

The Upfront Investment That Saves 10,000 Hours

There’s a pattern in tech where people mock the setup cost of automation without accounting for the return. I spent a day building a Grunt-based WordPress bootstrapper in 2013. Fortune 500 co…

Eric Mann's Blog
Eric MannMar 8
I spend my weekends orchestrating resilient, multi-agent workflows on vanity projects I build in my free time. How about you?
Eric MannMar 7

Used a swarm of agents to build an Android interface for https://swordfish.displace.tech today. Still needs a round or two of polish before it goes to the Play store but I'm pretty happy so far!

#BuildInPublic