frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

A Python package for verifying PyPI attestations of other Python packages

https://github.com/Halfblood-Prince/trustcheck
2•halfblood1010•5h ago

Comments

halfblood1010•5h ago
I built trustcheck, a Python CLI that evaluates the trust posture of a PyPI release before it is installed, promoted or approved. trustcheck is currently in BETA and I am looking for real-world testing and feedback to help move it toward production-grade stability. If you are working with PyPI packages, supply-chain security or CI pipelines, I would really appreciate you trying it out and sharing your experience.
halfblood1010•5h ago
Due to the limitations of the dependencies used, this package "trustcheck" can work only on standard python environments like Linux, Windows and MacOS. Android-Termux is not supported. When the dependency "cryptography" adds Termux support, trustcheck can work on that environment too.
zahlman•4h ago
Interesting. You might also consider posting about it on the main Python forum in the Packaging section, at https://discuss.python.org/c/packaging/14 .

The Rise of Worse Is Better

https://dreamsongs.com/RiseOfWorseIsBetter.html
1•kaladin-jasnah•5m ago•0 comments

Show HN: Mailtrim – find which senders are silently filling your Gmail

2•chevuru•9m ago•2 comments

Explore union types in C# 15

https://devblogs.microsoft.com/dotnet/csharp-15-union-types/
2•0x00C0FFEE•10m ago•0 comments

AI Whiz Kids Dropped Out of College and Got Investors to Pay Their Bills

https://www.wsj.com/tech/ai/ai-college-dropouts-ecc665b7
2•lxm•12m ago•0 comments

Mlx-VLM: Fast Local VLMs and Omni Models on Apple Silicon with MLX

https://github.com/Blaizzy/mlx-vlm
2•salkahfi•14m ago•0 comments

Towards end-to-end automation of AI research

https://www.nature.com/articles/s41586-026-10265-5
2•hardmaru•15m ago•0 comments

The Perils of Privatized Cyberwarfare

https://www.lawfaremedia.org/article/the-perils-of-privatized-cyberwarfare
2•gnabgib•15m ago•0 comments

Show HN: Simple Local Meme Generator

https://github.com/KyleTryon/Gemini-Meme-Generator
2•TechSquidTV•19m ago•0 comments

Nppexec

https://github.com/d0vgan/nppexec
2•downboots•21m ago•0 comments

Computer for Taxes

https://www.perplexity.ai/hub/blog/introducing-computer-for-taxes
2•wslh•21m ago•0 comments

Conductor – Durable Execution Engine

https://conductor-oss.github.io/conductor/index.html
2•opiniateddev•22m ago•0 comments

Notes for US Performers in Montreal

https://evanp.me/2026/04/04/notes-for-us-performers-in-montreal/
2•decimalenough•23m ago•0 comments

Meta-Harness: End-to-End Optimization of Model Harnesses

https://arxiv.org/abs/2603.28052
2•kstonekuan•28m ago•0 comments

Karpathy's knowledge base matches our Grep-is-All-You-Need paper

https://www.localkin.dev/papers/grep-is-all-you-need
3•localkin•32m ago•0 comments

We Made Technology Easy to Use. That Was a Mistake

https://slate.com/technology/2026/04/usability-complexity-apple-iphone-facebook-donald-norman.html
2•kawera•34m ago•0 comments

The Awake "Sleep" Loop: Why Attention Lapses Occur in ADHD

https://neurosciencenews.com/adhd-attention-sleep-activity-30324/
3•ivewonyoung•35m ago•0 comments

Show HN: Signals – finding the most informative agent traces without LLM judges

https://arxiv.org/abs/2604.00356
2•sparacha•35m ago•0 comments

I built a $19.99 flat-fee EU261 flight compensation letter generator

https://www.sovereign-suite.com/
2•oneprofiledev•38m ago•0 comments

The Crazy Nastyass Honey Badger (2011)

https://www.youtube.com/watch?v=4r7wHMg5Yjg
2•kaycebasques•41m ago•0 comments

Beat Cancer Off

https://beatcanceroff.com/
2•cebert•42m ago•0 comments

ArXiv will establish itself as an independent nonprofit organization

https://tech.cornell.edu/arxiv/
1•mef51•51m ago•1 comments

IntelliJ IDEA's New Kotlin Coroutine Inspections

https://blog.jetbrains.com/idea/2026/03/intellij-idea-s-new-kotlin-coroutine-inspections-explained/
2•TheWiggles•53m ago•0 comments

Writing Lisp Is AI Resistant and I'm Sad

https://blog.djhaskin.com/blog/writing-lisp-is-ai-resistant-and-im-sad/
3•djha-skin•1h ago•1 comments

Budget cuts for US science proposed again by Trump administration

https://www.nature.com/articles/d41586-026-01105-7
5•bhouston•1h ago•0 comments

Introduction to Computer Music [pdf]

https://composerprogrammer.com/introductiontocomputermusic.pdf
33•luu•1h ago•6 comments

IC3PEAK – Marching [video]

https://www.youtube.com/watch?v=xqohApD6Ng8
2•consumer451•1h ago•0 comments

Inferena – benchmarking inference of popular models on consumer hardware

http://inferena.tech/
2•kvark•1h ago•0 comments

Plant Pots, Symbiosis and Ecology

https://bryananthonio.com/blog/shift-from-ml-to-ai-engineering/
2•skyberrys•1h ago•0 comments

Show HN: A LinuxCNC gRPC Server with Clients in Rust, Go, Python, Node

https://github.com/dougcalobrisi/linuxcnc-grpc
2•dougcalobrisi•1h ago•0 comments

The Importance of Accurate Color Values (2019)

https://www.outdoorpainter.com/accurate-color-values/
3•susam•1h ago•0 comments