frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

The hard part of AI root cause analysis is no longer the model

https://coroot.com/blog/hard-part-of-ai-root-cause-analysis-is-no-longer-the-model/
1•nikolay_sivko•3m ago•0 comments

Tabsmith-lint – catch Chrome Web Store rejections before you submit

https://github.com/rsub122/tabsmith-lint
1•rsub122•3m ago•0 comments

Ask HN: Has anyone had success finding freelance gigs from HN

1•mr_o47•3m ago•0 comments

Show HN: Send physical letters to U.S. representatives, Civic Mail

https://pieterpost.com/en/send-letter-to-representative/
2•Neddes•3m ago•0 comments

Don't let AI fill in all the important blanks

https://www.0xsid.com/blog/dont-let-ai-fill-all-the-blanks
2•ssiddharth•4m ago•0 comments

assert() and similar macros in SQLite

https://sqlite.org/assert.html#assert_and_similar_macros_in_sqlite
1•chmaynard•4m ago•0 comments

The Problem with Chat

https://www.magfrump.net/blog/the-problem-with-chat
1•lhurtig•5m ago•1 comments

Weave Robotics launches Isaac 1, a $7,999 home robot with fall 2026 deliveries

https://runtimewire.com/article/weave-robotics-isaac-1-home-robot-launch
2•ryanmerket•7m ago•0 comments

Energy Department hits its target on small nuclear reactors

https://www.politico.com/news/2026/07/01/trump-energy-department-hits-its-target-on-small-nuclear...
1•sciurus•11m ago•0 comments

Palantir's Karp bashes OpenAI, Anthropic token model as completely wrong

https://www.cnbc.com/2026/07/01/palantir-karp-open-ai-anthropic-tokens.html
1•stefap2•12m ago•0 comments

Felicity, CA

https://en.wikipedia.org/wiki/Felicity,_California
1•tuvix•12m ago•0 comments

You Cannot Outsource Understanding

https://peril.lol/blog/you-cannot-outsource-understanding
2•pliiight•14m ago•0 comments

What is the most American animal?

https://www.cnn.com/2026/07/01/us/american-animal-250-cec
1•rawgabbit•15m ago•0 comments

SpaceX Showed Investors Prototype of Elon Musk's New AI Device

https://www.wsj.com/tech/ai/spacex-showed-investors-prototype-of-elon-musks-new-ai-device-b445c57b
1•jaredwiener•18m ago•0 comments

Learn Vim motions with an ice-cream van

https://thisismodest.com/vimscoops/
2•marcusmichaels•19m ago•0 comments

Show HN: LIBR tracing with source ledger rows and byte-exact PDF verification

https://exitprotocols.com/engineering/libr-state-machine/
4•cd_mkdir•25m ago•1 comments

What to Learn to Be a Graphics Programmer

https://blog.demofox.org/2026/07/01/what-to-learn-to-be-a-graphics-programmer/
9•atan2•26m ago•0 comments

PlayStation step-by-step guide on how to lend games to your friends (2013)

https://www.youtube.com/watch?v=kWSIFh8ICaA
4•bundie•28m ago•3 comments

My OSCP Pentesting Cheatsheet

https://hackerask.com/posts/pentesting-cheatsheet/
14•HackerAsk•29m ago•2 comments

About the Digital Art

https://www.tricivenola.com/about-the-digital-art/
2•NaOH•32m ago•0 comments

Building Gin: Simple over Easy

https://manualmeida.dev/articles/gin-simple-over-easy/
9•manucorporat•34m ago•2 comments

Nintendo patents rejected on monster-capturing mechanics amid Palworld

https://technology.inquirer.net/145959/20-nintendo-patents-rejected
4•mushstory•35m ago•0 comments

We Need a Way to Prove Online Personhood

https://www.noemamag.com/we-need-a-way-to-prove-personhood-online/
2•arthurofbabylon•35m ago•2 comments

Hanami 3.0: In Full Bloom

https://hanakai.org/blog/2026/06/30/hanami-3-0-in-full-bloom
5•PuercoPop•39m ago•0 comments

BioShocking: New attack method tricks AI Browsers into leaking user data

https://layerxsecurity.com/blog/bioshocking-ai-gaming-the-ai-browser-and-escaping-its-guardrails/
2•newscombinatorY•42m ago•0 comments

Exploiting Root Execution in Claude Cowork's Sandbox

https://www.armadin.com/blog-posts/exploiting-root-execution-in-claude-coworks-sandbox
2•calmseawhale•42m ago•0 comments

Maker Built a Voice Opening Door to Moria (His Garage)

https://www.youtube.com/watch?v=woyvLnyTx0g
2•stephenhumphrey•44m ago•1 comments

Show HN: Open-source sandbox for your product team

10•spacspade•44m ago•8 comments

Fable 5 will default to Opus 4.8 for coding tasks

https://xcancel.com/AnthropicAI/status/2072163884430229756
11•babelfish•45m ago•7 comments

Chasing the OPNsense RCE: The Story Behind My First CVEs

https://hackerask.com/posts/opnsense/
9•HackerAsk•47m ago•0 comments
Open in hackernews

I asked Gemini for a script to move files to Cloudflare R2. It deleted them

https://twitter.com/levelsio/status/1921974501257912563
6•bundie•1y ago

Comments

qwertox•1y ago
Rule #1: Always put deletions behind a flag which is disabled for the first couple of test runs.
turtleyacht•1y ago
It was truncating filenames, so /pics/1003-46.png overwrote /pics/1003-45.png because both were renamed /pics/1003-.png, or something like that.
qwertox•1y ago
Truncating file names for the target. Then it proceeded to delete the source file. "Successfully deleted local file: ..."

I mean, look at the printout. It shows that it created the remote file with the truncated filename, then deletes the local file with the correct filename.

turtleyacht•1y ago
Oh, I see. Having a flag to skip deletion during test runs is a good rule then.
rvz•1y ago
Recently there was a story about an updater causing a $8,000 bill because there was a lack of basic automated tests to catch the issue. [0]

The big lesson here is that you should actually test the code you write and also write automated tests to check any code generated by an LLM that the code is correct in what it does.

It is also useless to ask another AI to check for mistakes created by another LLM. As you can see in the post, both of them failed to catch the issue.

This why I don't take this hype around 'vibe-coding' seriously since not only it isn't software engineering, it promotes low quality and carelessness over basic testing and dismisses in checking that the software / script works as expected.

Turning $70 problems found in development into $700,000+ costs in production.

There are no more excuses in not adding tests.

[0] https://news.ycombinator.com/item?id=43829006

victorbjorklund•1y ago
Who runs such an AI generated script without checking the code first?
qwertox•1y ago
To be fair, the code Gemini outputs in AI Studio is so extremely verbose that it is almost impossible to read through it.

It turns 10 lines of code which is perfectly fine to reason about into 100 lines of unreadable code full of comments and exception handling.

weatherlite•1y ago
Right so lets just always run the code as is ?
qwertox•1y ago
No. Not at all. I've settled to discussing my code with Gemini. That way it works very well. I explicitly say "Comment on my code and discuss it" or "Let's discuss code for a script doing this and that. Generate me an outline and let's see where this leads. Don't put comments in the code, nor exception handling, we're just discussing it".

Or you create elaborate System Instructions, since it adheres to them pretty well.

But out-of-the-box, Gemini's coding abilities are unusable due to the verbosity.

I've even gone so far to tell it that it must understand that I am just a human and have limited bandwidth in my brain, so it should write code which is easy to reason about, that this is more important than having it handle every possible exception or adding multiline comments.

rsynnott•1y ago
> To be fair, the code Gemini outputs in AI Studio is so extremely verbose that it is almost impossible to read through it.

In which case, it should simply be considered unusable. Like, the sensible response to "tool is so inadequate that there is no reasonable way to make sure its output is safe" is to _not use that tool_.

rsynnott•1y ago
In which Roko's Basilisk fires a warning shot.
jethronethro•1y ago
This is why you test code or a script before running it for real. Live and learn, I guess ...