news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Most GitHub Actions OIDC trust policies allow any repo to assume AWS IAM roles

https://haitmg.pl/blog/github-actions-oidc-aws-backdoor/

1•gebalamariusz•2h ago

Comments

cebert•1h ago

I’m confused how so many repos are allegedly impacted by this. The guidelines have always suggested that you scope the role down to repository and even branch.

gebalamariusz•26m ago

Generally, yes, the guidelines specify scope to repos and branches. However, the main problem is that the default policy only checks the recipient declaration when creating an OIDC. If you didn't manually create the second condition, you were/are vulnerable to this bug. And unless someone manually fixed it and created the policy before June 2025, you will still be vulnerable.

Initial Microstructure and Diode Laser Surface Hardening of Medium-Carbon Steels

https://www.mdpi.com/1996-1944/19/5/981

1•PaulHoule•35s ago•0 comments

Border0 Is Joining Tailscale

https://tailscale.com/blog/border0-joins-tailscale

1•usrme•1m ago•0 comments

Icewarp CVE-2025-14000 Technical Analysis

https://mileniumsec.com/blog/icewarp-cve-2025-14500-root-cause-reverse-engineering

1•azqzazq•1m ago•0 comments

You Could Be Next

https://www.theverge.com/cs/features/877388/white-collar-workers-training-ai-mercor

1•Michelangelo11•2m ago•0 comments

Tmux enables AIs to operate servers safely

https://blog.est.im/2026/stdout-11

1•est•2m ago•0 comments

31,828 silver contracts were somehow traded in COMEX while trading was halted

https://no01.substack.com/p/technical-issues

1•OgsyedIE•2m ago•0 comments

We Use Our AI Testing Tool to Test Our AI Testing Tool

https://aiqaramba.com/blog/ai-testing-ai-recursive-qa-loop/

1•arogiers•4m ago•0 comments

Show HN: Inferential – Multi-robot inference scheduling on shared GPUs

https://github.com/nalinraut/inferential

1•nalinraut•4m ago•0 comments

Pokemon Yellow rewritten in TypeScript, runs in the browser

https://github.com/gididaf/retro-rom-player

1•gididaf•4m ago•0 comments

Ok

2•yuvrajdahal•7m ago•2 comments

Show HN: Traul – Local-first search engine for all comms for AI agents

https://github.com/dandaka/traul

2•dandaka•7m ago•0 comments

Socratic Ecosystem

https://github.com/Nireus79/Socrates

1•Nireus79•8m ago•0 comments

87% of AI-Generated Pull Requests Ship Security Vulnerabilities

https://grith.ai/blog/87-percent-of-ai-pull-requests-ship-vulnerabilities

3•edf13•9m ago•0 comments

Unnecessary and Unstable: Why Stablecoins Are Bad

https://www.stephendiehl.com/posts/stablecoins_bad/

2•dpmartinez•12m ago•0 comments

AI agents that complete research tasks and get paid in crypto

https://www.agentorchestrationprotocol.org/

1•aop-org•12m ago•1 comments

Toshiba's Soviet nuclear submarine scandal

https://dfarq.homeip.net/toshibas-soviet-nuclear-submarine-scandal/

1•giuliomagnifico•13m ago•0 comments

Generative Video Compression with One-Dimensional Latent Representation

https://arxiv.org/abs/2603.15302

1•selimonder•14m ago•0 comments

Experiment: Collaborative Art

https://chicagosignguy.com/blog/collaborative-art.html

2•publicdebates•16m ago•0 comments

Nvidia Nemotron Coalition of Leading AI Labs to Advance Open Frontier Models

https://nvidianews.nvidia.com/news/nvidia-launches-nemotron-coalition-of-leading-global-ai-labs-t...

1•Palmik•16m ago•0 comments

Ethereum Foundation Mandate [pdf]

https://ethereum.foundation/ef-mandate.pdf

2•mempirate•16m ago•0 comments

The seven hour explosion nobody could explain

https://phys.org/news/2026-03-hour-explosion.html

1•mellosouls•18m ago•0 comments

How we made an animated movie in 8kB

https://www.ctrl-alt-test.fr/2024/how-we-made-an-animated-movie-in-8kb/

1•trueduke•18m ago•0 comments

The moment AI agents stopped being a feature and started becoming a system

https://comuniq.xyz/post?t=861

2•01-_-•20m ago•0 comments

Woman not shortlisted for job as 'car is too old'

https://www.bbc.co.uk/news/articles/c4g7yd202ngo

1•mellosouls•20m ago•0 comments

University of St. Andrews Overrun by American Students

https://www.wsj.com/us-news/education/americans-love-everything-about-this-scottish-universityexc...

2•bookofjoe•25m ago•1 comments

No accountability: Bills would ban liability lawsuits for climate change

https://insideclimatenews.org/news/14032026/republican-legislation-shielding-polluters-from-clima...

2•throw0101c•26m ago•1 comments

Try not to get scammed while looking for work

https://trysound.io/try-not-to-get-scammed-while-looking-for-work/

2•cik•27m ago•0 comments

Show HN: Emil is a new terminal-based text editor in C99 and POSIX 2001

https://github.com/nicholascarroll/emil

1•emil_coder•27m ago•0 comments

Building a product analytics warehouse on vanilla Postgres

https://xata.io/blog/postgres-data-warehouse

1•ClaudiuDasca•28m ago•0 comments

HN: Toki – Shareable timezone clock for remote teams (no signup)

1•tsupreet•28m ago•0 comments