frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

We're Going to Make Out Like Bandits

https://www.rocketpoweredjetpants.com/2026/04/were-going-to-make-out-like-bandits/
1•birdculture•6m ago•0 comments

Passwork Shares Data with State-Certified Russian Firm

https://www.occrp.org/en/investigation/european-password-manager-shares-origins-and-updates-with-...
2•u1hcw9nx•7m ago•0 comments

Isvisible.ai, check if AI crawlers can access your site

https://isvisible.ai
1•alpkorpe•8m ago•0 comments

Show HN: Flick – Swipe Your Email

https://flicked.email/
2•Belkins•11m ago•1 comments

A few thoughts on building a terminal ePub reader with AI

https://github.com/newptcai/repy
2•dawdler-purge•12m ago•1 comments

Show HN: Open-source control engine for agents

https://attestorportal.com/
1•Oxlamarr•13m ago•0 comments

Netflix says around 300 titles used generative AI

https://www.theverge.com/streaming/966633/netflix-ai-titles-q2-2026-earnings
1•JamesAdir•14m ago•0 comments

Tech note: making your own V-I plots at home

https://lcamtuf.substack.com/p/tech-note-making-your-own-v-i-plots
1•surprisetalk•14m ago•0 comments

MongoDB Access Control – Users, Roles, and Permissions

https://visualeaf.com/blog/mongodb-access-control-users-roles-and-permissions/
3•mike_codes•17m ago•0 comments

Yggvault: Mirror Your Dependencies in One Binary

https://hackaday.io/project/206175-yggvault-mirror-your-dependencies-in-one-binary
1•SUNsung•19m ago•0 comments

Databricks is raising funding at $188B valuation

https://www.databricks.com/company/newsroom/press-releases/databricks-raising-strategic-round-fun...
1•shenli3514•22m ago•0 comments

VitaSet LLC's planning to add to LLVM's circt to make a FOSS Vita FPGA Compiler

1•VitaSetLLC•22m ago•0 comments

Show HN: Velora – On-device macOS dictation (Whisper and a local LLM, no cloud)

https://github.com/sushilk1991/velora
1•sushilk1991•22m ago•0 comments

Storm [video]

https://www.youtube.com/watch?v=HhGuXCuDb1U
1•nomilk•22m ago•0 comments

LLM Evaluators are Biased across Languages

https://arxiv.org/abs/2607.14480
1•sbulaev•22m ago•1 comments

Trump to declare emergency around midterms, former White House attorney says

https://www.pbs.org/newshour/show/trump-setting-stage-to-declare-emergency-around-midterms-former...
1•Alien1Being•23m ago•0 comments

The Determinist Fallacy

https://medium.com/luminasticity/the-determinist-fallacy-ae25f8bc50ed
1•bryanrasmussen•24m ago•0 comments

Show HN: I removed the LLM from my French grader – it marked correct words wrong

https://apostrophe-app.fr/en/
1•lienmt•24m ago•0 comments

Ask HN: Best approach to dependency vulnerability scanning in CI?

1•usman_oiu•24m ago•0 comments

Chinese Nvidia alternatives project massive sales as AI chip demand surges

https://www.scmp.com/tech/tech-trends/article/3360908/chinese-nvidia-alternatives-project-massive...
1•departed•26m ago•0 comments

Pluto fly-by mission wakes after long sleep nearly 9.5B kilometres from Earth

https://www.rnz.co.nz/news/science-and-technology/734969/pluto-fly-by-mission-wakes-after-long-sl...
3•billybuckwheat•27m ago•0 comments

Argc and argv in early Research Unix

https://utcc.utoronto.ca/~cks/space/blog/unix/EarlyUnixArgcAndArgv
2•ingve•28m ago•0 comments

The Download: OpenAI unveils GPT-Red and heat pumps rise in the US

https://www.technologyreview.com/2026/07/16/1140600/the-download-openai-unveils-gpt-red-heat-pump...
1•joozio•28m ago•0 comments

Can a Sticky Note Task Manager make me 100x more productive?

https://www.taskloco.com/
1•taskloco_nyc•32m ago•0 comments

Mosquito Killing Micro-Drone

https://tornyol.com/
2•gabriele4me•35m ago•1 comments

European Commission Chooses to Keep EU Users Locked Up Behind Big Tech's Gates

https://www.eff.org/deeplinks/2026/07/european-commission-chooses-keep-eu-users-locked-behind-big...
2•rapnie•37m ago•0 comments

LL Handles Direct Left Recursion

https://btmc.substack.com/p/ll-handles-direct-left-recursion
1•sirwhinesalot•38m ago•0 comments

Strong El Nino could make 2027 the hottest year on record

https://www.theguardian.com/environment/2026/jul/17/record-el-nino-forecast-2027-hottest-year-on-...
1•nreece•41m ago•0 comments

SynthExplorer – Compiler Explorer for RTL

https://synthexplorer.dev/
2•cachanova•43m ago•0 comments

NTP server that traveled back in time caused Aussie mobile outage

https://www.theregister.com/networks/2026/07/17/ntp-server-that-traveled-back-in-time-caused-mass...
3•defrost•43m ago•0 comments
Open in hackernews

Show HN: DeepTeam – Penetration Testing for LLMs

https://github.com/confident-ai/deepteam
3•jeffreyip•1y ago
Hi HN, we’re Jeffrey and Kritin, and we’re building DeepTeam (https://trydeepteam.com), an open-source Python library to scan LLM apps for security vulnerabilities. You can start “penetration testing” by defining a Python callback to your LLM app (e.g. `def model_callback(input: str)`), and DeepTeam will attempt to probe it with prompts designed to elicit unsafe or unintended behavior.

Note that the penetration testing process treats your LLM app as a black-box - which means that DeepTeam will not know whether PII leakage has occurred in a certain tool call or incorporated in the training data of your fine-tuned LLM, but rather just detect that it is present. Internally, we call this process “end-to-end” testing.

Before DeepTeam, we worked on DeepEval, an open-source framework to unit-test LLMs. Some of you might be thinking, well isn’t this kind of similar to unit-testing?

Sort of, but not really. While LLM unit-testing focuses on 1) accurate eval metrics, 2) comprehensive eval datasets, penetration testing focuses on the haphazard simulation of attacks, and the orchestration of it. To users, this was a big and confusing paradigm shift, because it went from “Did this pass?” to “How can this break?”.

So we thought to ourselves, why not just release a new package to orchestrate the simulation of adversarial attacks for this new set of users and teams working specifically on AI safety, and borrow DeepEval’s evals and ecosystem in the process?

Quickstart here: https://www.trydeepteam.com/docs/getting-started#detect-your...

The first thing we did was offer as many attack methods as possible - simple encoding ones like ROT13, leetspeak, to prompt injections, roleplay, and jailbreaking. We then heard folks weren’t happy because the attacks didn’t persist across tests and hence they “lost” their progress every time they tested, and so we added an option to `reuse_simulated_attacks`.

We abstracted everything away to make it as modular as possible - every vulnerability, attack, can be imported in Python as `Bias(type=[“race”])`, `LinearJailbreaking()`, etc. with methods such as `.enhance()` for teams to plug-and-play, build their own test suite, and even to add a few more rounds of attack enhancements to increase the likelihood of breaking your system.

Notably, there are a few limitations. Users might run into compliance errors when attempting to simulate attacks (especially for AzureOpenAI), and so we recommend setting `ignore_errors` to `True` in case that happens. You might also run into bottlenecks where DeepTeam does not cover your custom vulnerability type, and so we shipped a `CustomVulnerability` class as a “catch-all” solution (still in beta).

You might be aware that some packages already exist that do a similar thing, often known as “vulnerability scanning” or “red teaming”. The difference is that DeepTeam is modular, lightweight, and code friendly. Take Nvidia Garak for example, although comprehensive, has so many CLI rules, environments to set up, it is definitely not the easiest to get started, let alone pick the library apart to build your own penetration testing pipeline. In DeepTeam, define a class, wrap it around your own implementations if necessary, and you’re good to go.

We adopted a Apache 2.0 license (for now, and probably in the foreseeable future too), so if you want to get started, `pip install deepteam`, use any LLM for simulation, and you’ll get a full penetration report within 1 minute (assuming you’re running things asynchronously). GitHub: https://github.com/confident-ai/deepteam

Excited to share DeepTeam with everyone here – let us know what you think!