More

lukasec · 2026-04-21T09:50:44 1776765044

This is for agent-native signup. The key is supposed to be reused later

lukasec · 2026-04-20T09:28:13 1776677293

Fastest for humans: just sign up manually via UI

lukasec · 2026-04-20T09:17:13 1776676633

We do have time bounds. For our purposes, a human using an agent is fine. Our main goal is to let in everyone's agents (OpenClaw, Hermes...) and prevent deterministic API-key-farming scripts.

lukasec · 2026-04-20T09:04:47 1776675887

Main goal is to let in everyone's agents (OpenClaw, Hermes...) without human intervention, while keeping out deterministic scripts farming API keys.

If a few tool-wielding humans slip through, that's fine (traditional CAPTCHAs also let in our stealth agents)

Retr0id · 2026-04-20T11:47:40 1776685660

Why does it matter whether the API key farming script is deterministic?

lukasec · 2026-04-21T09:35:17 1776764117

By "deterministic" I mean "non-LLM". An LLM can still farm keys, but at a per-attempt inference cost

lukasec · 2026-04-20T09:02:34 1776675754

Curious: which model, challenge and language? (also, have you tried --dangerously-skip-permissions)

lukasec · 2026-04-20T09:02:00 1776675720

Nice! next: the bonus challenge in Japanese (email sales@browser-use.com if you solve it to redeem your Enterprise plan)

lukasec · 2026-04-20T09:01:12 1776675672

hahah wrong, I actually have a replacement rule "asian" → "agent" in my Wispr flow dict

lukasec · 2026-04-20T09:00:03 1776675603

Great find! plan to add these variants to our parameter sampling. First time I saw this problem was when my game theory prof told this story. It's definitely folklore (see The Legend of John von Neumann by Halmos)

lukasec · 2026-04-20T08:59:23 1776675563

Smart humans, or humans with LLMs, solving them is not a problem. Main filter is agents vs deterministic API-key-farming scripts. Traditional CAPTCHAs also leak in the other direction (our agents crack them consistently).

lukasec · 2026-04-20T08:58:47 1776675527

bookmarked