frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Astronomers' Response to Reflect Orbital

https://mastodon.social/@sundogplanets/115345346648445621
1•ano-ther•1m ago•0 comments

The Day I Hacked XCTrack

https://blog.syrac.org/posts/xctrack-hack/
1•vpmadd52huq•3m ago•0 comments

The Farmer Was Replaced – v1.0

https://store.steampowered.com/news/app/2060160/view/521978797993492536
1•ortusdux•4m ago•0 comments

SnapKeeps – Temporary photo/screenshot storage with auto-deletion (iOS)

https://apps.apple.com/jp/app/snapkeeps/id6753777082SnapKeeps
1•tsuyoshi_k•4m ago•1 comments

Healthy habits can make your brain age more slowly, study finds

https://medicalxpress.com/news/2025-09-healthy-habits-brain-age-slowly.html
1•PaulHoule•4m ago•0 comments

Revival Among the Techies

https://comment.org/revival-among-the-techies/
1•culturalgeology•5m ago•1 comments

Ask HN: Why does this trip GPT5 up?

1•darajava•6m ago•0 comments

Computable Babylonian Diaries Project

https://christopherwolfram.com/babylonian-astronomy/
1•jxmorris12•9m ago•0 comments

Show HN: BookSmarts – An app to remember what you read using active recall

https://www.google.com/search?q=https://booksmarts.app
1•HarryBullman•9m ago•0 comments

Miralis RISC-V Virtual Firmware Monitor

https://miralis-firmware.github.io/
1•fork-bomber•10m ago•0 comments

Show HN: Collaborate on Documents with Claude Code

https://github.com/Ch00k/claude-review
1•Ch00k•12m ago•0 comments

Lost all my sites overnight: Vercel terminated my account without notice

1•hikerell•13m ago•0 comments

MIT Response to the "Compact"

https://encompass.alum.mit.edu/s/1314/bp19/interior.aspx?sid=1314&gid=1&pgid=60&cid=169&referer=&...
1•jonahbenton•13m ago•1 comments

A game where you program a lander to lander on the moon

https://moonlander.rocks
1•daives•14m ago•0 comments

Meet Neurosymbolic AI, Amazon's Method for Enhancing Neural Networks

https://www.wsj.com/articles/meet-neurosymbolic-ai-amazons-method-for-enhancing-neural-networks-6...
1•teleforce•14m ago•0 comments

Amazon's giant ads have ruined the Echo Show

https://www.theverge.com/report/797672/amazon-echo-show-ads-alexa-plus
1•terminalbraid•15m ago•1 comments

Command and Conquer: Generals in C++20 with D3D12, x64, widescreen fixes

https://github.com/jmarshall2323/CnC_Generals_Zero_Hour
1•klaussilveira•18m ago•0 comments

HeroRATs

https://apopo.org/herorats/?v=0b3b97fa6688
3•thunderbong•18m ago•0 comments

Neuro-Symbolic AI

https://en.wikipedia.org/wiki/Neuro-symbolic_AI
4•teleforce•20m ago•0 comments

Making Slint Desktop-Ready

https://slint.dev/blog/making-slint-desktop-ready
1•weinzierl•20m ago•0 comments

Terraform Fileset Function: Filter and Deploy Specific Files

https://spacelift.io/blog/terraform-fileset
1•unripe_syntax•20m ago•0 comments

CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code

https://www.legitsecurity.com/blog/camoleak-critical-github-copilot-vulnerability-leaks-private-s...
1•nopurpose•21m ago•0 comments

RemoteIp trusts link-local IP ranges, has_secure_token expiration gets config

https://world.hey.com/this.week.in.rails/remoteip-trusts-link-local-ip-ranges-and-has_secure_toke...
1•amalinovic•21m ago•0 comments

Show HN: I built a tool to help freelancers find better Upwork jobs with AI

https://github.com/daniloedu/UpworkOpportunityMatcher
1•daniloedu•23m ago•0 comments

Build a React App with Bun

https://bun.com/guides/ecosystem/react
2•benzguo•24m ago•0 comments

All-Natural Geoengineering with Frank Herbert's Dune

https://www.governance.fyi/p/all-natural-geoengineering-with-frank
2•toomuchtodo•24m ago•0 comments

Show HN: Static builds of popular open source libraries on npmjs.org

https://github.com/ffilibs/poc
1•sebst•28m ago•0 comments

Flies keep landing on North Sea oil rigs

https://theconversation.com/thousands-of-flies-keep-landing-on-north-sea-oil-rigs-then-taking-off...
2•speckx•28m ago•0 comments

It Begins: An AI Attempted Murder to Avoid Shutdown

https://www.youtube.com/watch?v=f9HwA5IR-sg
1•tux•28m ago•1 comments

Climate goals go up in smoke as US datacenters turn to coal

https://www.theregister.com/2025/10/10/datacenter_coal_power/
3•rntn•29m ago•2 comments
Open in hackernews

A major evolution of Apple Security Bounty

https://security.apple.com/blog/apple-security-bounty-evolved/
11•jacopoj•4h ago

Comments

nwellnhof•3h ago
Paying $1,000 for low-impact issues is a nice move which might make me contribute to their program again.
lapcat•47m ago
Don't bother. They'll find an excuse to pay $0. This is all at Apple's inscrutable discretion.
agos•11m ago
aren't all bug bounty program at the sponsor's inscrutable discretion?
lapcat•23m ago
A "major evolution" would be for Apple to have informative two-way conversations with security researchers and to stop stiffing them for reports.

I submitted a few macOS reports to the program, but Apple just sat on them forever, sometimes years, until I got frustrated enough to just publicly disclose the bugs. Needless to say, Apple never paid me a dime. For that reason, I don't actively look for macOS bugs anymore, and if I happen to find anything by accident, I'll just 0day.

I think that demanding full exploit chains is an excuse to ignore bugs and to discourage researchers from reporting them. What if a full exploit chain exists, but the links of the chain are known by different researchers? The researchers are incentivized to withhold bug reports without the full chain, and meanwhile an attacker who happens to have the full chain won't withhold their attack. Apple is practically making the black market for bugs more valuable.

It's basically the same as Apple demanding a sysdiagnose before they'll even look at a non-security bug report. Typo in the developer documentation? Please attach a sysdiagnose! It's ridiculous.