frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Ask HN: How do you investigate server-side bugs that affect subset of users?

1•jatin-dot-py•1h ago
I’m looking for engineering perspectives on a problem I encountered while disclosing a historical server-side authorization issue.

The behavior: - Only affected a subset of private accounts - Vendor test accounts were not vulnerable - Reproduction depended on account characteristics , unknown internal account flags - The behavior disappeared mid-investigation (likely due to a server-side change)

The report was ultimately closed as “not reproducible,” despite evidence earlier in the investigation.

My question: how do you validate, root-cause, and confidently close authorization bugs that are conditional, subset-only, and vanish during triage?

What does good disclosure handling look like in cases like this?

Docs.surf

https://docs.surf/
1•danabramov•5m ago•0 comments

Korea Issues Strict New AI Rules, Outpacing the West

https://www.wsj.com/tech/ai/south-korea-issues-strict-new-ai-rules-outpacing-the-west-2af7d7eb
1•JumpCrisscross•7m ago•0 comments

Anti-vax sentiment pushes Moderna away from new late-stage infectious diseases

https://www.fiercebiotech.com/biotech/anti-vaccine-sentiment-pushes-moderna-away-new-late-stage-i...
1•dcgudeman•8m ago•0 comments

Use of PQC in SMTP STARTTLS

https://www.netmeister.org/blog/smtp-pqc.html
1•8organicbits•8m ago•0 comments

Face to Face with History's Most Dangerous Painter

https://www.nytimes.com/interactive/2026/01/22/arts/jacques-louis-david-painter-french-revolution...
1•DiscourseFan•8m ago•0 comments

Study shows how earthquake monitors can track space junk through sonic booms

https://apnews.com/article/space-junk-seismic-booms-dadb5f9499fa9b52200baada0fdf1f15
1•JumpCrisscross•12m ago•0 comments

Hollywood Try to Take Pirate Sites Down Globally Through Indian Court

https://torrentfreak.com/disney-netflix-crunchyroll-try-to-take-pirate-sites-down-globally-throug...
1•thisislife2•22m ago•0 comments

Open-source ad infra for LLMs (reverse-engineered from ChatGPT)

https://github.com/system32miro/ai-ads-engine
1•system32miro•24m ago•0 comments

Kauldron: Modular, scalable library to train ML models

https://github.com/google-research/kauldron
1•lairv•25m ago•0 comments

AdaL Web, the local Claude co-work

https://www.youtube.com/watch?v=smfVGCI08Yk
3•meame2010•26m ago•8 comments

Show HN: Agentic Browser Testing Videos in GitHub PRs

https://twitter.com/morphllm/status/2014454667007426752
1•bhaktatejas922•29m ago•0 comments

Five Ways People Are Using Claude Code

https://www.nytimes.com/2026/01/23/technology/claude-code.html
2•hecanjog•30m ago•0 comments

A UX Case Study: How Notion's Billing Flaw Creates Epistemic Injustice

https://twitter.com/JacobRoss117/status/2014852639151079704
2•DocSeraphMercer•30m ago•1 comments

Brex CFO Erica Dorfman's Take on the Capital One Deal

https://www.cfo.com/news/brex-cfo-erica-dorfman-capital-one-deal-acquisition/810415/
1•brandonb•30m ago•0 comments

Scientists solve 66M-year-old mystery of how Earth's greenhouse age ended

https://phys.org/news/2026-01-scientists-million-year-mystery-earth.html
1•bikenaga•32m ago•1 comments

CertiK eyes IPO at $2B valuation

https://www.theblock.co/post/386882/certik-ipo-2-billion-valuation-first-public-web3-cybersecurit...
1•SaaSasaurus•34m ago•0 comments

Smartwatches detect abnormal heart rhythms 4x more often in clinical trial

https://www.usnews.com/news/health-news/articles/2026-01-23/smartwatches-help-detect-hidden-dange...
1•brandonb•37m ago•1 comments

Show HN: Dwm.tmux – a dwm-inspired window manager for tmux

https://github.com/saysjonathan/dwm.tmux
2•saysjonathan•39m ago•0 comments

Show HN: I built a dumb website using AI – Bets by Mitch

https://blog.bymitch.com/posts/bets-by-mitch/
1•mitch292•40m ago•0 comments

OpenHands: AI-Driven Development

https://github.com/OpenHands/OpenHands
1•kristianpaul•40m ago•0 comments

Infinite Pancakes, Anyone?

https://www.nytimes.com/2026/01/20/science/infinite-pancake-math-puzzle.html
1•Hooke•40m ago•0 comments

SSH has no Host header

https://blog.exe.dev/ssh-host-header
3•birdculture•41m ago•0 comments

Show HN: Booklife-MCP – MCP server unifying Libby, Hardcover, and your TBR

https://github.com/andylbrummer/booklife-mcp
1•andybrummer•41m ago•0 comments

PBM profits obscured by mergers and accounting practices: white paper

https://schaeffer.usc.edu/research/pbm-profits-obscured-mergers-rebates-accounting/
2•hhs•42m ago•0 comments

Tech Debt Is Good

https://system32.ai/blogs/tech-debt-is-good
1•debarshri•43m ago•0 comments

Self-boosting code snuck into a voted repo. Democracy overruled the maintainer

https://blog.openchaos.dev/posts/week-3-the-trojan-horse
2•skridlevsky•45m ago•0 comments

Show HN: Shorter: A domain shortener tool, written in Rust

https://shorter.dev
1•aanesn•47m ago•0 comments

Oloid-shaped Mixer

https://old.reddit.com/r/Fusion360/comments/1334xqd/oloid_mixer_inspired_from_a_postquestion_on_t...
1•downboots•47m ago•0 comments

Minnesota activist releases arrest video after manipulated White House version

https://apnews.com/article/minnesota-activist-ice-protest-church-video-49faf3efd54e496388651aac13...
65•petethomas•49m ago•11 comments

Harden-FreeBSD

https://github.com/wravoc/harden-freebsd
4•indigodaddy•49m ago•0 comments