Apple today announced a transformative update coming to Apple Podcasts this spring that will bring advanced video podcast capabilities to the app.

Although I don't write much about psychology, I've recently become fascinated by a technique I learned, similar to cognitive decentering but with a slight variation. The technique works quite well, though I'm still refining it and understanding it. So this is a brief sketch of the idea. At a future point, I might unpack this in a more researched way, but for now, this is the napkin sketch.

Peter Steinberger joins OpenAI, ZeroClaw is “claw done right”, MimiClaw runs on a $5 chip, Steve Yegge on managing the AI Vampire, and the day the telnet died.

View the newsletter

Join the discussion

Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!

Sponsors:

• Tiger Data – Postgres for Developers, devices, and agents The data platform trusted by hundreds of thousands from IoT to Web3 to AI and more.

Featuring:

• Jerod Santo – Website, GitHub, LinkedIn, Mastodon, X

Download audio: https://op3.dev/e/https://cdn.changelog.com/uploads/news/181/changelog-news-181.mp3

Guest:

• Daniel Lyman, VP of Threat Detection and Response, Fiserv

Topics:

• What is the right way for people to bridge the gap and translate executive dreams and board goals into the reality of life on the ground?
• How do we talk to people who think they have "transformed" their SOC simply by buying a better, shinier product (like a modern SIEM) while leaving their old processes intact?
• What are the specific challenges and advantages you've seen with a federated SOC versus a centralized one? What does a "federated" or "sub-SOC" model actually mean in practice?
• Why is the message that "EDR doesn't cover everything" so hard for some people to hear? Is this obsession with EDR a business decision or technology debt?
• How do you expect AI to change the calculus around data centralization versus data federation?
• What is your favorite example of telemetry that is useful, but usually excluded from a SIEM?
• What are the Detection and Response organizational metrics that you think are most valuable?
• Is the continued use of Excel an issue of tooling, laziness, or just because it is a fundamentally good way to interact with a small database?

Resources:

• Video version
• "In My Time of Dying" book
• EP258 Why Your Security Strategy Needs an Immune System, Not a Fortress with Royal Hansen
• EP197 SIEM (Decoupled or Not), and Security Data Lakes: A Google SecOps Perspective
• The Gravity of Process: Why New Tech Never Fixes Broken Process and Can AI Change It? blog

Download audio: https://traffic.libsyn.com/secure/cloudsecuritypodcast/EP263_not259_CloudSecPodcast.mp3?dest-id=2641814

---

Scott and Wes unpack WebMCP, a new standard that lets AI interact with websites through structured tools instead of slow, bot-style clicking. They demo it, debate imperative vs declarative APIs, and share their hottest take: this might be the web’s real AI moment.

Show Notes

• 00:00 Welcome to Syntax!
• 00:16 Introduction to WebMCP
• 01:07 Understanding WebMCP Functionality.
• 03:06 Interacting with AI through WebMCP.
• 06:49 WebMCP browser integration.
• 08:25 Brought to you by Sentry.io.
• 08:49 Benefits of WebMCP.
• 11:51 Token efficiency.
• 13:02 My biggest questions.
• 14:13 My take on this tech.

Hit us up on Socials!

Syntax: X Instagram Tiktok LinkedIn Threads

Wes: X Instagram Tiktok LinkedIn Threads

Scott: X Instagram Tiktok LinkedIn Threads

Randy: X Instagram YouTube Threads

Download audio: https://traffic.megaphone.fm/FSI4745348711.mp3