How I accepted myself into Canada's largest AI hackathon (opens in new tab)

(fastcall.dev)

277 pointsfastcall1y ago94 comments

94 comments

> Passion and interest don't really come across ...

What an oblivious statement made by your actual reviewer!

Actually only the first screenshot is a review of my application, I asked some friends for their credentials to test the information disclosure out. (you would only get 1 review per application)

Sorry if that wasn’t clear in the blog post!

neilv1y ago

Agreed.

Admittedly, "passion and interest don't really come across" might've been a valid impression, since the post after sounds like it wasn't the top priority:

> I decided to apply even though I was pretty busy that weekend, hoping my schedule would clear by the time the hackathon came around.

However, this could be yet another instance of gatekeeping that has sprung up, now that there's tons of money involved, and a whole lot of petty posturing and maneuvering.

When I was a kid, from a non-affluent family, who was fortunate to be able to start programming computers, I could just do things.

I'm not aware of anyone ever being appointed arbiter of whether I had enough "passion and interest" to participate in some activity or venue.

You'd just show up, and other enthusiasts would be reasonably encouraging and supportive.

Too much nowadays in our field has a whiff of being about classism and collusion, to create barriers to joining the clique.

Don't get me started on the obviously frat-pledging interviews that Google popularized, and then way too many newcomers mimicked that gatekeeping baggery, as if it was good and reasonable, rather than bro snobbery.

BoorishBears1y ago

You can still just show up.

A recent highly advertised hackathon rejected my application.

I DM'd an organizer and got told there was no space at the venue.

I showed up anyways and security was checking names before allowing entrants in.

Walk in with a box of "stuff" and shuffle over with a look of friendly inconvenience, and as they're scouring the list for my name: "Oh uh sorry I was a really late application so I might be towards the end or something".

"Ah thanks for letting me know!", and after some half hearted searching security pens in my name, and off I go. My team ended up being finalists.

The room was probably half empty btw. I get fire codes are a thing but as someone who's helped organize hackathons, organizers are notorious for overestimating the conversion rate from "accepted" to "actually shows up"

1 more reply

CalRobert1y ago

A useful reminder of the nature of academia

organsnyder1y ago

Many corporate cultures are no different.

moralestapia1y ago

???

Can't see anything. Was the page edited perhaps?

szszrk1y ago

It's still there on one of the last screenshots:

https://fastcall.dev/reviewed-3.png

Twisol1y ago

It's in one of the screenshots, in the part about how they could fetch their reviewer's full name and comments.

ForTheKidz1y ago

Tbh, if I could go to a conference that guaranteed all signs of passion and interest would be banned, it would be depressing.... but far more useful. Passion is something best saved for happy hour. The best advice I've received is not from passionate people but rather people who have resigned themselves to the work.

Very grateful I'm nowhere near conferences or academia, but equally grateful others are doing the work filtering the bullshit out for me.

accurrent1y ago

Nice catch.

I remember the days when one could just show up to a hackathon and do cool hacks. Now it feels like they only exist for serious reasons.

non-1y ago

You definitely still can just show up and do cool hacks.

Also hackathons are really easy to host if you keep them under 50 people. All you really need at that size is a co-working space and some pizzas.

So if you don't like the vibe at your local hackathons, why not host your own one weekend?

I think the key is really the size of the thing. Giant hackathons with big sponsors and prizes are always going to be more "serious" feeling than your local self-organized hack-days.

pdntspa1y ago

The hackathons I have been forced to participate in always seemed like a cheap shot at labor and ideas from some corporate overlord

And for the record.... PIZZA is not an appropriate compensation. Especially if someone is lactose intolerant!

Twirrim1y ago

They did a great one at Amazon several years ago. Engineers had been loudly complaining about the elevators in one building, and how long it could take at lunchtime to get one. All sorts of crap about how the elevator algorithm sucked, etc.

Amazon eventually arranged a weekend hackathon with someone from the elevator company. Whole bunch of engineers tried their hardest to do a better scheduling job, and failed. Almost like engineers at elevator companies have had decades to experiment and refine things.

It did shut down all the complaints.

jimbob451y ago

It’s always Little Caesars too. At that point, I’d rather just have the $5 that the pizza cost.

1 more reply

paradite1y ago

O-1

paradite1y ago

Ok looks like people are not getting my comment.

Being a judge in a hackathon is one of the criterion for O-1 visa.

https://www.linkedin.com/pulse/getting-o-1-visa-easier-than-...

3 more replies

Etheryte1y ago

The O-1 visa is appealing otherwise, but the fact that it doesn't give your spouse a right to work is an absolute no starter as far as I'm concerned. So it only really makes sense if you're single or if your other half qualifies for a separate visa.

2 more replies

peterarmstrong1y ago

What, hackathons require admission applications these days? Holy crap I'm getting old...

Aurornis1y ago

There are two types of non-corporate hackathons:

1. The kind where you have to advertise all over and work hard to convince people to come to. You're happy with whoever shows up.

2. The kind where you have so many entries that you need to filter out the non-serious people and save your limited space for people with the actual skills and motivation to show up and contribute.

The second kind is usually associated with some big institution or influencer. It might have a history of participation from people who went on to be successful.

In this case, it's associated with universities. Different universities probably encourage their students to apply and compete.

CoolCold1y ago

I'm curios - my naive understanding that instead of using backend which will allow limited subset of actions/validate input, there is some 3rd party DB ( Firebase ?) which works via some sort of per-user API keys to allow fetch directly by frontend devs?

Anduia1y ago

Firestore's quick setup uses "test mode", which is free and unrestricted. The "locked mode" recommended for production blocks all reads and writes until you set up the rules.

So I don't know if they had the site in test mode, or they simply set a rule to allow everything (I've seen that happen) instead handling access based on user permissions.

pfg_1y ago

In this case they had permissiona set up - but your application status was stored in the same object as the rest of the info you could modify, and you were allowed to read and write to it.

ForTheKidz1y ago

Wait, firebase allows full access to http connections accessible from a browser? Wtf? Why would you want to give the user direct access to a database to begin with? Is firebase built around the idea of not running your own servers or something?

3 more replies

pwillia71y ago

+1 Hugo + Papermod -- Same setup I use for my blog! (reticulated.net)

https://decapcms.org/ is a nice front end CMS admin if you're looking for one.

wodenokoto1y ago

So, was he accepted after the bug was fixed?

fastcallOP1y ago

I was lol, my application is actually the 1st one in the information disclosure section.

I didn’t get any feedback or even a reviewer name, oddly enough.

szszrk1y ago

So... what was the full commend of the reviewer? :) You made us curious.

belter1y ago

Netflix cancelled the second season...Not enough interest...

ngruhn1y ago

Ah yes, the four foundational criteria to rate a hackathon application: passionAndInterest, projectAndPracticalExp, techSkillsAndExp, diversity

falcor841y ago

I found that jarring too. Diversity can only really be a criterion of a group, not an individual. Otherwise it's just tokenism.

dmurray1y ago

It could be a measure of each candidate's difference (in diversity points) from the overall cohort, which is an approximation of how much the diversity of the group will change by accepting/rejecting this candidate.

But that seems hard to implement - you'd have to recalculate this for every candidate every time you got a new candidate - so perhaps we can implement an optimization: approximate this by estimating the distribution of the group and measuring differences from some centroid.

HR teams, I'm available for techwashing consultancy.

1 more reply

JackDanMeier1y ago

What would this realistically be rated on? If anything it seems like racial profiling

9dev1y ago

Pretty obvious—"Guys, this year we need a few people of color and especially women on the hackathon, I don't want another white wiener party!"

So they artificially skew the participants by granting bonus points for any minority groups.

1 more reply

kimixa1y ago

Could be diversity of proposal - if they don't want 50 people all trying to solve "the same problem"

1 more reply

cyrillite1y ago

Don’t forget sex and randomly inferred things too!

przemub1y ago

In Stalinist and Maoist countries you’d get extra points for uni when coming from a worker or farmer family. Times change, ideologies change, but some things don’t.

TwoPhonesOneKid1y ago

That actually makes sense from the perspective of a state managing its labor force, though. That's just smart. "Diversity" for its own sake is just meaningless centrist bullshit.

chinabot1y ago

There used to be a local hackathon where I used to live in London. Amazingly talented people used to attend, great social, I really miss going to these events

joshdavham1y ago

Slightly tangential: I'm currently working on a web app that uses Firebase and I'd like to potentially open source it in the future.

Given all these recent articles where people have been finding vulnerabilities in Firebase apps, should I be careful to open source it? The data in my app isn't super sensitive (e.g., social security or bank info), but does contain PII like names, emails, passwords.

henryfjordan1y ago

You should triple-check the configs for your Firebase instance, make sure you understand all the security implications.

If you release the app as open-source make sure you remove references to your specific Firebase instance.

I'll also say that the app being open-source isn't the problem. As you can see from the blog-post, there's a LOT you can do just from looking at the frontend code delivered to your browser.

byyoung31y ago

u should maybe focus on security instead of AI haha

miyuru1y ago

App itself might be AI generated as well.

byyoung31y ago

Impressive stuff nonetheless.

nusl1y ago

Firebase again.

xavdid1y ago

> disclosure timeline (mm/dd/yyyy)

> 09/03/2025 - vulnerability disclosed

a security vulnerability and time travel to go with it!

fastcallOP1y ago

lol fixed :p

koakuma-chan1y ago

Buzz online where? I haven't heard about it, feel like I'm missing out.

appleaday11y ago

cool wanna give me a reference so I can get in, do I have to phyiscally show up?

appleaday11y ago

oh no applications are closed, bummer I was working on some ai stuff last week and on the weekend, its a shame that people that are working on AI stuff are too busy to notice events like this where some publicity or peer review or criticism might come handy

dd_xplore1y ago

The irony !

yzydserd1y ago

Which part was ironic?

gukov1y ago

Hacking a hackathon itself, maybe.

1 more reply

sureglymop1y ago

Your blog seems cool but it doesn't seem to provide an RSS feed... I think that would make it much easier to discover the posts.

jackwilsdon1y ago

RSS feed is here, just doesn't seem to be linked anywhere: https://fastcall.dev/index.xml

fastcallOP1y ago

I just added a icon to the main page, thanks for the feedback!

2 more replies

j / k navigate · click thread line to collapse

94 comments

cbracketdash1y ago

> Passion and interest don't really come across ...

What an oblivious statement made by your actual reviewer!

fastcallOP1y ago

Actually only the first screenshot is a review of my application, I asked some friends for their credentials to test the information disclosure out. (you would only get 1 review per application)

Sorry if that wasn’t clear in the blog post!

neilv1y ago

Agreed.

Admittedly, "passion and interest don't really come across" might've been a valid impression, since the post after sounds like it wasn't the top priority:

> I decided to apply even though I was pretty busy that weekend, hoping my schedule would clear by the time the hackathon came around.

However, this could be yet another instance of gatekeeping that has sprung up, now that there's tons of money involved, and a whole lot of petty posturing and maneuvering.

When I was a kid, from a non-affluent family, who was fortunate to be able to start programming computers, I could just do things.

I'm not aware of anyone ever being appointed arbiter of whether I had enough "passion and interest" to participate in some activity or venue.

You'd just show up, and other enthusiasts would be reasonably encouraging and supportive.

Too much nowadays in our field has a whiff of being about classism and collusion, to create barriers to joining the clique.

BoorishBears1y ago

You can still just show up.

A recent highly advertised hackathon rejected my application.

I DM'd an organizer and got told there was no space at the venue.

I showed up anyways and security was checking names before allowing entrants in.

"Ah thanks for letting me know!", and after some half hearted searching security pens in my name, and off I go. My team ended up being finalists.

1 more reply

CalRobert1y ago

A useful reminder of the nature of academia

organsnyder1y ago

Many corporate cultures are no different.

moralestapia1y ago

???

Can't see anything. Was the page edited perhaps?

szszrk1y ago

It's still there on one of the last screenshots:

https://fastcall.dev/reviewed-3.png

Twisol1y ago

It's in one of the screenshots, in the part about how they could fetch their reviewer's full name and comments.

ForTheKidz1y ago

Very grateful I'm nowhere near conferences or academia, but equally grateful others are doing the work filtering the bullshit out for me.

accurrent1y ago

Nice catch.

I remember the days when one could just show up to a hackathon and do cool hacks. Now it feels like they only exist for serious reasons.

non-1y ago

You definitely still can just show up and do cool hacks.

Also hackathons are really easy to host if you keep them under 50 people. All you really need at that size is a co-working space and some pizzas.

So if you don't like the vibe at your local hackathons, why not host your own one weekend?

I think the key is really the size of the thing. Giant hackathons with big sponsors and prizes are always going to be more "serious" feeling than your local self-organized hack-days.

pdntspa1y ago

The hackathons I have been forced to participate in always seemed like a cheap shot at labor and ideas from some corporate overlord

And for the record.... PIZZA is not an appropriate compensation. Especially if someone is lactose intolerant!

Twirrim1y ago

It did shut down all the complaints.

jimbob451y ago

It’s always Little Caesars too. At that point, I’d rather just have the $5 that the pizza cost.

1 more reply

paradite1y ago

O-1

paradite1y ago

Ok looks like people are not getting my comment.

Being a judge in a hackathon is one of the criterion for O-1 visa.

https://www.linkedin.com/pulse/getting-o-1-visa-easier-than-...

3 more replies

Etheryte1y ago

2 more replies

peterarmstrong1y ago

What, hackathons require admission applications these days? Holy crap I'm getting old...

Aurornis1y ago

There are two types of non-corporate hackathons:

1. The kind where you have to advertise all over and work hard to convince people to come to. You're happy with whoever shows up.

2. The kind where you have so many entries that you need to filter out the non-serious people and save your limited space for people with the actual skills and motivation to show up and contribute.

The second kind is usually associated with some big institution or influencer. It might have a history of participation from people who went on to be successful.

In this case, it's associated with universities. Different universities probably encourage their students to apply and compete.

CoolCold1y ago

Anduia1y ago

Firestore's quick setup uses "test mode", which is free and unrestricted. The "locked mode" recommended for production blocks all reads and writes until you set up the rules.

So I don't know if they had the site in test mode, or they simply set a rule to allow everything (I've seen that happen) instead handling access based on user permissions.

pfg_1y ago

In this case they had permissiona set up - but your application status was stored in the same object as the rest of the info you could modify, and you were allowed to read and write to it.

ForTheKidz1y ago

3 more replies

pwillia71y ago

+1 Hugo + Papermod -- Same setup I use for my blog! (reticulated.net)

https://decapcms.org/ is a nice front end CMS admin if you're looking for one.

wodenokoto1y ago

So, was he accepted after the bug was fixed?

fastcallOP1y ago

I was lol, my application is actually the 1st one in the information disclosure section.

I didn’t get any feedback or even a reviewer name, oddly enough.

szszrk1y ago

So... what was the full commend of the reviewer? :) You made us curious.

belter1y ago

Netflix cancelled the second season...Not enough interest...

ngruhn1y ago

Ah yes, the four foundational criteria to rate a hackathon application: passionAndInterest, projectAndPracticalExp, techSkillsAndExp, diversity

falcor841y ago

I found that jarring too. Diversity can only really be a criterion of a group, not an individual. Otherwise it's just tokenism.

dmurray1y ago

HR teams, I'm available for techwashing consultancy.

1 more reply

JackDanMeier1y ago

What would this realistically be rated on? If anything it seems like racial profiling

9dev1y ago

Pretty obvious—"Guys, this year we need a few people of color and especially women on the hackathon, I don't want another white wiener party!"

So they artificially skew the participants by granting bonus points for any minority groups.

1 more reply

kimixa1y ago

Could be diversity of proposal - if they don't want 50 people all trying to solve "the same problem"

1 more reply

cyrillite1y ago

Don’t forget sex and randomly inferred things too!

przemub1y ago

In Stalinist and Maoist countries you’d get extra points for uni when coming from a worker or farmer family. Times change, ideologies change, but some things don’t.

TwoPhonesOneKid1y ago

That actually makes sense from the perspective of a state managing its labor force, though. That's just smart. "Diversity" for its own sake is just meaningless centrist bullshit.

chinabot1y ago

There used to be a local hackathon where I used to live in London. Amazingly talented people used to attend, great social, I really miss going to these events

joshdavham1y ago

Slightly tangential: I'm currently working on a web app that uses Firebase and I'd like to potentially open source it in the future.

henryfjordan1y ago

You should triple-check the configs for your Firebase instance, make sure you understand all the security implications.

If you release the app as open-source make sure you remove references to your specific Firebase instance.

I'll also say that the app being open-source isn't the problem. As you can see from the blog-post, there's a LOT you can do just from looking at the frontend code delivered to your browser.

byyoung31y ago

u should maybe focus on security instead of AI haha

miyuru1y ago

App itself might be AI generated as well.

byyoung31y ago

Impressive stuff nonetheless.

nusl1y ago

Firebase again.

xavdid1y ago

> disclosure timeline (mm/dd/yyyy)

> 09/03/2025 - vulnerability disclosed

a security vulnerability and time travel to go with it!