Field Notes

Incident teardowns from the AI infra world

The main chapters are a long-shelf-life design narrative. This section runs on a different clock: when something in AI infrastructure goes sideways — runaway bills, metering failures, leaked keys — I reverse-engineer the failure from public data, then hold it up against fibon's design: which bug classes have no surface to attach to, and which defenses we still haven't built.

Every note contains clearly-labeled speculation based on public information, not official conclusions; each one ends with "what this means for fibon."

📅 2026-01-20 ⏱ 15 min

Tools as Attack Surface: 2026's MCP Vulnerability Cascade and 'Tool Poisoning'

From three CVEs in Anthropic's own Git MCP to a STDIO design flaw that exposed 7,000 servers — MCP turned "connecting external tools" into a new supply-chain battlefield. How much can fibon's trust tiering and tool-hash verification stop?
📅 2026-02-01 ⏱ 15 min

12% of the Marketplace Was Poison: The ClawHub Supply-Chain Attack

OpenClaw's skill marketplace was seeded with over a thousand malicious add-ons — using no 0-day at all. A teardown, and a test of whether fibon's three-gate skill import actually holds.
📅 2026-03-12 ⏱ 14 min

The Lobster's Bill: When an AI Agent's 'Token-Eating Monster' Meets the Abandonment Wave

OpenClaw drove the whole world to "raise a lobster" — then the same crowd abandoned it because $150/day in token fees made it unaffordable. The economics of that craze is exactly fibon's core thesis.
📅 2026-05-13 ⏱ 16 min

The Attack That Waits: When AI's 'Memory' Becomes the Attack Surface

OWASP put memory poisoning in its 2026 agentic top ten; a single poisoned webpage can make an agent misfire weeks later. fibon sells memory as a core feature — this cut lands right on the vital spot.
📅 2026-06-02 ⏱ 13 min

Runaway Sub-Agents: The June 2 Claude Outage and the Lesson of the Infinite Loop

A bug that made sub-agents multiply exponentially knocked Claude out for nearly six hours. fibon's delegation-round cap and multi-vendor design are built for exactly this kind of runaway — but one piece I haven't built either.
📅 2026-06-07 ⏱ 14 min

Zombie Caches and Stolen Keys: A Teardown of Two Runaway AI Bills

Reverse-engineering how Google's billing system broke from the shape of a BigQuery export — and an honest audit of which defenses fibon has built, and which one is still missing