news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Malicious packages in NPM evade dependency detection through invisible URL links

https://www.csoonline.com/article/4082195/malicious-packages-in-npm-evade-dependency-detection-through-invisible-url-links-report.html

2•shehackspurple•6h ago

Comments

shehackspurple•6h ago

More terrifying supply chain attacks against developers

mystifyingpoi•6h ago

> To every automated security system, these packages show "0 Dependencies."

With all the faults of npm, I fail to see that as npm fault. That sounds honestly like a security system fault. Why would an audit tool ignore a clearly defined dependency?

Show HN: FTS-Tool – Fast Peer-to-Peer LAN File Transfers and Chat

https://github.com/Terabase-Studios/fts

1•Terabase•34s ago•0 comments

Show HN: I trained an AI to write my YouTube titles

https://joshfonseca.com/blogs/llm-youtube-title-finetuning

1•vuciv•1m ago•0 comments

Why Ups Is Increasingly Turning to Gig Drivers for Deliveries

https://www.wsj.com/business/logistics/why-ups-is-increasingly-turning-to-gig-drivers-for-deliver...

1•bookofjoe•1m ago•1 comments

Fungus: The Befunge CPU(2015)

https://www.bedroomlan.org/hardware/fungus/

2•onestay42•2m ago•0 comments

In a First, AI Models Analyze Language as Well as a Human Expert

https://www.quantamagazine.org/in-a-first-ai-models-analyze-language-as-well-as-a-human-expert-20...

1•pseudolus•6m ago•0 comments

Man with Brain Implant Controls Another Person's Hand–and Feels What She Feels

https://singularityhub.com/2025/10/23/one-mind-two-bodies-man-with-brain-implant-controls-another...

1•westurner•10m ago•1 comments

Top Trump Officials Are Moving onto Military Bases

https://www.theatlantic.com/politics/archive/2025/10/trump-officials-military-housing-stephen-mil...

5•Anon84•13m ago•0 comments

The truth of Ancient Rome hides under its myth of decadence

https://bigthink.com/series/full-interview/myth-truth-ancient-rome/

1•warrenm•14m ago•0 comments

Chimpanzees Are Natural Scientists

https://www.science.org/doi/10.1126/science.aeb7565

1•northlondoner•16m ago•1 comments

Holy Essence (Of Truffles)

https://longreads.com/2025/10/16/truffle-farm-fungi-maria-pinto/

1•mooreds•17m ago•0 comments

Blazeio vs. FastAPI vs. Robyn: Benchmarking Reveals 86x Performance Difference

3•anonyxbiz•18m ago•0 comments

The lost ski area on Chautauqua Mesa, once Boulder's winter playground

https://boulderreportinglab.org/2025/10/27/the-lost-ski-area-on-chautauqua-mesa-once-boulders-win...

2•mooreds•19m ago•0 comments

Book Review: Practical Lakehouse Architecture by Gaurav Thalpati

https://amazonwebshark.com/practical-lakehouse-architecture-by-gaurav-thalpati/

1•teleforce•19m ago•0 comments

Scientists May Have Miscalculated How Many Humans Are on Earth

https://www.popularmechanics.com/science/environment/a69220291/human-population-miscalculation-st...

1•michaelsbradley•20m ago•0 comments

Export Web Games for Desktop in One Click

https://jslegenddev.substack.com/p/export-web-games-for-desktop-in-one

3•JSLegendDev•24m ago•0 comments

The film wouldn't even be made today: the story behind Back to the Future at 40

https://www.theguardian.com/film/2025/jul/03/back-to-the-future-at-40

2•wslh•26m ago•0 comments

Chibi Izumi: Phased dependency injection for TypeScript

https://github.com/7mind/izumi-chibi-ts

1•pshirshov•31m ago•0 comments

America's best ski town is hiding in the New Mexico high desert

https://creators.yahoo.com/lifestyle/story/americas-best-ski-town-is-hiding-in-the-new-mexico-hig...

2•mooreds•31m ago•0 comments

NASA pushes back after Kim Kardashian claims the 1969 moon landing was fake

https://www.cnn.com/2025/10/31/us/video/ac360foremannasakardashian

3•wslh•32m ago•0 comments

Building Machine Learning Systems with a Feature Store: Batch, Real-Time and LLM

https://www.oreilly.com/library/view/building-machine-learning/9781098165222/

1•teleforce•34m ago•0 comments

Ask HN: Did HN just switched to Masonry layout?

1•hnthrowaway0328•35m ago•0 comments

Two Windows vulnerabilities, one a 0-day, are under active exploitation

https://arstechnica.com/security/2025/10/two-windows-vulnerabilities-one-a-0-day-are-under-active...

4•ndsipa_pomu•39m ago•0 comments

Show HN: A desktop app for managing multiple CI/CD pipelines

https://github.com/hcavarsan/pipedash

1•hcavarsan•40m ago•0 comments

Real Estate Is Entering Its AI Slop Era

https://www.wired.com/story/real-estate-is-entering-its-ai-slop-era/

1•donohoe•43m ago•0 comments

Cost Golden Cross in the Content Market

https://haebom.dev/archive?post=91kwev26v4knp2y46jpg&tl=en

1•nnx•47m ago•0 comments

JP Morgan's new Manhattan tower is a monument to the end of remote working

https://observer.co.uk/news/business/article/jp-morgans-new-manhattan-tower-is-a-monument-to-the-...

2•mellosouls•48m ago•0 comments

JWST black hole forms from the collapse of a giant gas cloud

https://astrobites.org/2025/08/13/infinity-galaxy-smbh/

2•anjel•48m ago•0 comments

The U.S. government is divesting from mRNA vaccines

https://www.livescience.com/health/medicine-drugs/one-molecule-could-usher-revolutionary-medicine...

5•geox•52m ago•0 comments

The AI bubble has reached its 'Fried chicken' phase

https://www.ft.com/content/b0038b6f-d83d-4a6a-803a-fa089e2d10ef

2•moose_man•54m ago•1 comments

How GitLab uses Postgres and ClickHouse to build their data stack?

https://clickhouse.com/blog/how-gitlab-uses-clickhouse-to-scale-analytical-workloads

1•saisrirampur•55m ago•0 comments