IBM Spins Off the First Pure-Play Quantum Chip Foundry
The article
news
Multi-source RSS ingest, summarized locally by an LLM. Refreshed hourly. Summaries are generated; the gremlin does not fact-check.
Notes about reading messages with the Python email packages
Bytecode VMs in surprising places (2024)
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency organizations. RemotePE, per NCC Group subsidiary Fox-IT, is part of a multi-stage attack chain tha
Magnifica Humanitas (Encyclical Letter)
Show HN: Geomatic – a command-driven geometry studio enabled with autodiff
I love my Bluetooth keyboard
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
A new coordinated cross-ecosystem software supply chain attack campaign has targeted npm, PyPI, and Crates.io to distribute credential-stealing malware. The campaign, codenamed TrapDoor, spans more than 34 malicious packages across over 384 versions.
Didgeridoo playing as alternative treatment for obstructive sleep apnea(2006)
Jira Is Turing-Complete
C constructs that still don't work in C++
The Eternal Sloptember
Bug 1950764: Work Around Crash on Intel Raptor Lake CPU
White Rabbit – sub-nanosecond synchronization for large distributed systems
Selling SaaS in Germany
datasette 1.0a30
Release: datasette 1.0a30 The big new feature in this alpha is a new customizable "Jump to..." menu, described in detail in The extensible "Jump to" menu in Datasette 1.0a30 on the Datasette blog. You can try it out by hitting / on latest.datasette.io - it looks like this: The new jump_item
datasette-agent 0.1a4
Release: datasette-agent 0.1a4 Taking advantage of the new makeJumpSections() JavaScript plugin hook added in Datasette 1.0a30, datasette-agent now presents this "Start a new agent chat" interface as part of the Jump to menu, any time you hit /: You can try this out by signing into agent.da
datasette-fixtures 0.1a0
Release: datasette-fixtures 0.1a0 One of the smaller features in Datasette 1.0a30 is this: New documented datasette.fixtures.populate_fixture_database(conn) helper for creating the fixture database tables used by Datasette's own tests, intended for plugin test suites. This new plugin takes
A fundamental principle of aeronautical engineering has been overturned
Show HN: Audiomass – a free, open-source multitrack audio editor for the web
Defeating Git Rigour Fatigue with Jujutsu
LAN-LOK: The Antarctic DOS Sabotage Game Lost for 34 Years
Australia Four-Day Work Week Study Data Shows Boosted Productivity
CBP Directive 3340-049B: Border Search of Electronic Devices
Don't know where your data is from? Bayesian modeling for unknown coordinates
Mad House — Usborne Creepy Computer Games
Tool: Mad House — Usborne Creepy Computer Games Via Hacker News I learned that UK publisher Usborne published free PDFs of their 1980s Computer Books, some of which I remember working through on my Commodore 64 as a child. These were so great!
Migrating from Go to Rust
Using HTTP/2 Cleartext for a server in Go 1.24
Claude Is Not Your Architect. Stop Letting It Pretend
Noroboto: Lying Fonts and Mitigation in Rust
Quoting Armin Ronacher
The most frustrating failure mode right now is that people submit issues that are not in their own voice. They contain an observed problem somewhere, but it has been thrown into a clanker and the clanker reworded it and made a huge mess of it.
Flick (YC F25) Is Hiring Front End Engineer to Build Figma for AI Filmmaking
The article describes a job opening at Flick
Memory has grown to nearly two-thirds of AI chip component costs
Memory costs in AI chips have surged to nearly two-thirds of total component expenses, driven by increased demand for high-capacity storage. AI chip manufacturers and tech
'AI washing': firms are scrambling to rebrand themselves as tech-focused
Ruby for Good
Usborne 1980s Computer Books
Perceptual Image Codec: What Matters in Practical Learned Image Compression
Constraint Decay: The Fragility of LLM Agents in Back End Code Generation
DeepSeek reasonix, DeepSeek native coding agent with high caching and low cost
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows. [...]
How my minimal, memory-safe Go rsync steers clear of vulnerabilities
I keep bouncing off the Scheme language
Microsoft's 6502 BASIC is now Open Source (2025)
The seed oil panic is hurting my cardiac patients
Artificial egg hatched 26 healthy chickens
Childhood Computing
Mastering Dyalog APL
All Lean Books and Where to Find Them
Debian SE Linux and PinTheft
Greg Brockman: Inside the 72 Hours That Almost Killed OpenAI
I spent 50 hours drawing a line graph
Silk: Open-source cooperative fiber scheduler
A Network Allow-List Won't Stop Exfiltration
Converting an Integer to a Decimal String in Under Two Nanoseconds
The C64 Dead Test Font
Neoclassical C++: segmented iterators revisited
Alexander Grothendieck Revolutionized 20th-Century Mathematics
Amazon Web Services – Four Years and Out
Buildcraft Is a Compiler Problem
Why Is Vivado 2026.1 Dropping Linux Support for Free Tier?
Judson's Last Ride
Microsoft open-sources "the earliest DOS source code discovered to date"
Scammers are abusing an internal Microsoft account to send spam links
Byrne's Euclid
ICE Awards $25M Iris-Scanning Contract to Bi2 Technologies
Pardon MIE?
wake up! 16b
My I3-Emacs Integration
Sales and Dungeons: Thermal printer TTRPG utility
CA declares state of emergency as fire crews race to contain toxic chemical leak
Don't Roll Your Own
New map reveals lost roads of the Roman Empire
.NET (OK, C#) gets union types
Laravel Lang packages hijacked to deploy credential-stealing malware
Attackers compromised Laravel Lang packages by abusing GitHub version tags to distribute credential-stealing malware via Composer, targeting developers
On the
On the <dl> I learned a few new-to-me things about the <dl> element from this article by Ben Meyer: A <dt> can be followed by multiple <dd> You can optionally group the <dt> and <dd> elements in a <div> for styling - but only a <div>. You can label them using ARIA.
It's time to talk about my writerdeck
We made our filesystem 47× faster by deleting it
Green card seekers must leave U.S. to apply, Trump administration says
My two-part desk setup
Texas woman arrested for Facebook post about town water quality
Hengefinder: Finding When the Sun Aligns with Your Street
Italy Cancels Boeing Pegasus Order, Shifting to Airbus A330 MRTT
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to explicitly approve a release prior to the packages becoming publicly available for installation. Called staged publishing, the feature is now generally available on npm.
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a GitHub Releases URL. "Although the affected packages were all Composer packages, the malicious code was not added to composer.json," Sock
Reverse engineering circuitry in a Spacelab computer from 1980
The Art of Money Getting
Lisp in Vim (2019)
PHP's Oddities
z386: An Open-Source 80386 Built Around Original Microcode
Highest Random Weight in Elixir
Italy disrupts CINEMAGOAL piracy app that stole streaming auth codes
Italian authorities have dismantled a piracy ecosystem centered around the CINEMAGOAL app that provided access to various streaming platforms, including Netflix, Disney+, and Spotify. [...]
Oura says it gets government demands for user data. Will it share how many?
On The
Solving the "Zork" Mystery
80386 Microcode Disassembled
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities across some of the most "systemically" important software across the world since the cybersecurity initiative went live last month. Project Glasswing is an effort led b
I Miss Terry Pratchett
Improving C# Memory Safety
Making Deep Learning Go Brrrr from First Principles
US tech firms share Dutch regulator officials' names with Senate
US tech firms disclosed
BambuStudio has been violating PrusaSlicer AGPL license since their fork
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Cybersecurity researchers have flagged a fresh software supply chain attack campaign that has targeted multiple PHP packages belonging to Laravel-Lang to deliver a comprehensive credential-stealing framework. The affected packages include - laravel-lang/lang laravel-lang/http-statuses larav
Rubish: A Unix shell written in pure Ruby
Yeunjoo Choi from Igalia on Chromium
Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
Experience: We found a baby on the subway – now he's our 26-year-old son
Kindle loyalists scramble as Amazon turns page on old e-readers
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts
The Quadratic Sandwich
Microsoft starts canceling Claude Code licenses
Staged publishing and new install-time controls for NPM
What is the history of the ERROR_ARENA_TRASHED error code?
White House ordering agencies to place its new app on all employees' govt phones
"Stick" – A primitive/fun interactive demo of a tiny rig to animate layout
Microsoft reports AI is more expensive than paying human employees
Sp.h is the standard library that C deserves
Is AI Profitable Yet?
Neutron scattering explains why gluten-free pasta falls apart (2025)
Last refreshed: