frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Supply-chain attacks on open source software are getting out of hand

https://arstechnica.com/security/2025/07/open-source-repositories-are-seeing-a-rash-of-supply-chain-attacks/
8•jnord•13h ago

Comments

bigfatkitten•11h ago
People treating random code they found on the internet as if it came from a “supply chain” is the real problem.

In an actual supply chain, you have a relationship with a supplier who provides goods or services that meet an agreed specification, in exchange for agreed compensation.

The random person who published an npm package you use owes you nothing and you have no reason to trust them, believe that they are who they say they are, or that the code they ostensibly published does as it claims.

How face-like objects and averted gaze faces orient our attention

https://journals.sagepub.com/doi/10.1177/20416695251352129
1•bookofjoe•36s ago•0 comments

Google Flow

https://labs.google/flow/about
1•RyanShook•53s ago•0 comments

Scaling Inference to Billions of Users and AI Agents

https://medium.com/google-cloud/scaling-inference-to-billions-of-users-and-agents-516d5d9f5da7
1•m4r1k•2m ago•0 comments

Mistral's new "environmental audit" shows how much AI is hurting the planet

https://arstechnica.com/ai/2025/07/mistrals-new-environmental-audit-shows-how-much-ai-is-hurting-the-planet/
1•botanical•2m ago•0 comments

Refactoring in the Age of Unlimited Code Generation

https://worksonmymachine.substack.com/p/refactoring-in-the-age-of-unlimited
1•Stwerner•8m ago•0 comments

The Rise of Shippable Microfactories

https://www.thesisdriven.com/p/the-rise-of-shippable-microfactories
2•mhb•9m ago•0 comments

Hybrid AI-human approach is necessary to uphold research integrity

https://www.thehindu.com/education/why-a-hybrid-ai-human-approach-is-necessary-to-uphold-research-integrity/article69826844.ece
1•Bluestein•10m ago•0 comments

LazyVim for Ambitious Developers (Book)

https://lazyvim-ambitious-devs.phillips.codes/
1•AlexeyBrin•11m ago•0 comments

I am a SOTA 0-shot classifier of your slop

https://christopherkrapu.com/blog/2025/i-know-you-didnt-write-that/
2•ckrapu•12m ago•0 comments

Show HN: Support Copilot

https://github.com/maxshlain/support-copilot
1•maxshlain•14m ago•0 comments

Chang'e 5 lavas reveals how top-down heating prolonged lunar magmatism

https://www.science.org/doi/10.1126/sciadv.adr1486
1•PaulHoule•15m ago•0 comments

VPN signups from UK surge 1400% after Online Safety Act goes into effect

https://twitter.com/ProtonVPN/status/1948773319148245334
2•nomilk•16m ago•0 comments

Show HN: WTMF Beta – Your AI bestie that understand

1•ishqdehlvi•23m ago•0 comments

Celebrating 25 Years of Continuous Human Presence Aboard ISS

https://www.nasa.gov/image-article/celebrating-25-years-of-continuous-human-presence-aboard-the-international-space-station/
3•TMEHpodcast•23m ago•2 comments

Show HN: GitHub's built-in repo analytics sucks, so I built a better one

https://repohistory.com
1•m4xshen•25m ago•0 comments

MCP Gateway – Flexible Proxy for Model Context Protocol Servers

https://github.com/matthisholleville/mcp-gateway
3•mholleville•26m ago•2 comments

Conversations 2.19.1 released – open-source Jabber/XMPP client for Android

https://conversations.im/
1•neustradamus•30m ago•0 comments

Should You Migrate Your Documentation System – and Is It AI-Ready?

https://www.nikhilajain.com/post/is-my-documentation-ai-ready
1•taubek•31m ago•0 comments

Key Variables That Determine UBI's Inflationary Impact

https://www.scottsantens.com/17-key-variables-that-determine-ubis-inflationary-impact/
5•2noame•35m ago•1 comments

AI labs' all-or-nothing race leaves no time to fuss about safety

https://www.economist.com/briefing/2025/07/24/ai-labs-all-or-nothing-race-leaves-no-time-to-fuss-about-safety
2•czottmann•38m ago•0 comments

White House to require gov AI models to be truthful and ideologically neutral

https://www.theregister.com/2025/07/24/white_house_wants_no_woke_ai/
2•rntn•38m ago•2 comments

Thais and Cambodians slug it out on social media

https://www.bbc.com/news/articles/cy9x91ewzvxo
1•bryan0•41m ago•0 comments

Milk Sad: Secure private key generation write up

https://milksad.info/disclosure.html
1•kehiy•44m ago•0 comments

Show HN: Simple Jekyll Theme

https://niklasbuschmann.github.io/contrast/
1•niklasbuschmann•48m ago•0 comments

Why Umami Is Open Source

https://umami.is/blog/why-umami-is-open-source
1•mmarian•49m ago•0 comments

Bloom's Digital Taxonomy Verbs

https://pivot.umbc.edu/course-design/blooms-digital-taxonomy-verbs/
2•mooreds•52m ago•0 comments

Find the Coldplay Canoodlers

https://songadaymann.github.io/coldplay-canoodle/
2•avipars•52m ago•0 comments

Some Thoughts on "Agentic DevOps", AIOps, and Vibe Coding

https://redmonk.com/jgovernor/2025/07/25/some-thoughts-on-agentic-devops-aiops-and-vibe-coding-with-gene-kim-and-nicole-forsgren/
1•mooreds•54m ago•0 comments

The natural diamond industry is getting rocked. Thank the lab-grown variety

https://www.cbc.ca/news/business/lab-grown-diamonds-1.7592336
13•geox•56m ago•8 comments

Ethical imperatives in the commercialization of brain-computer interfaces

https://papers.ssrn.com/sol3/papers.cfm?abstract_id=5360547
1•jxntb73•58m ago•0 comments