news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

How the Trivy supply chain attack harvested credentials from secrets managers

https://vaultproof.dev/blog/trivy-supply-chain-attack

8•Rial_Labs•1h ago

Comments

Rial_Labs•1h ago

Author here. Built VaultProof after analyzing the Trivy attack the credential harvesting worked specifically because the keys existed as plaintext in the CI/CD environment after retrieval from the secrets manager. Happy to go deep on the Shamir architecture or the attack mechanics if useful.

The Economics of Software Teams: Why Most Organizations Are Flying Blind

https://www.viktorcessan.com/the-economics-of-software-teams/

1•gpi•30s ago•0 comments

Vibe-Coded Ext4 for OpenBSD

https://lwn.net/Articles/1064541/

1•signa11•36s ago•0 comments

The role of LLMs in patch review

https://lwn.net/Articles/1064830/

1•signa11•1m ago•0 comments

Stream your terminal. Watch AI agents work. Like Twitch, for shells

https://github.com/sderosiaux/twitch-terminal

1•chtefi•2m ago•0 comments

The many failures leading to the LiteLLM compromise

https://lwn.net/Articles/1064693/

1•signa11•3m ago•0 comments

S3 for Non Technical Folks

https://bucketdrive.app/blog/how-to-give-non-technical-users-access-to-s3.html

1•justpeek•7m ago•0 comments

You Are Not the One – Chinese Dating Dystopia

https://terminaldrift.substack.com/p/you-are-not-the-one-chinese-dating

1•Natsu•7m ago•0 comments

Key ocean current is slowing at locations around the Atlantic

https://www.newscientist.com/article/2522463-key-ocean-current-is-slowing-at-locations-around-the...

1•bluerooibos•8m ago•0 comments

Show HN: SmolVM – open-source sandbox for coding and computer-use agents

https://github.com/CelestoAI/SmolVM

4•theaniketmaurya•9m ago•0 comments

Scientists have uncovered a "blind spot" in the research on rising seas

https://e360.yale.edu/features/sea-level-rise-land-subsidence

2•bluerooibos•11m ago•0 comments

OSS model's can't replicate the Mythos findings, it was a lie

https://github.com/stanislavfort/mythos-jagged-frontier/blob/main/prompts/openbsd-sack.md

1•kannthu•11m ago•1 comments

FT turned Bill Phillips' in-aquo macroecons simulator into VR app

https://www.ft.com/content/547a3fea-378d-45ec-a2cb-cb157ea7a9b4

1•curio_Pol_curio•14m ago•0 comments

Financial Times Phillips Machine VR App

https://apps.apple.com/us/app/ft-money-machine/id6569262299

1•curio_Pol_curio•16m ago•0 comments

Scientists invented a fake disease. AI told people it was real

https://www.nature.com/articles/d41586-026-01100-y

1•DrewADesign•34m ago•1 comments

Show HN: We scored 495 real SoC 2 audit reports – nearly all got a D or F

https://soc2quality.trenta.ai

2•rituraj_tiwari•38m ago•0 comments

Trinity-Large-Thinking: Scaling an Open Source Frontier Agent

https://www.arcee.ai/blog/trinity-large-thinking

3•somethingsome•40m ago•0 comments

Soul.md – A Meditation on AI Identity

https://soul.md/

2•znpy•40m ago•0 comments

GoScrapy: New Fast Web Scraping with Go (Built for Concurrency)

https://github.com/tech-engine/goscrapy

1•stonework•43m ago•0 comments

Mexico's President Sheinbaum Decrees Universal Healthcare for 120M

https://thedeepdive.ca/mexicos-president-sheinbaum-decrees-universal-healthcare-for-120-million/

3•testing22321•43m ago•1 comments

Show HN: AnimTOON – AI that animates SVGs with 3-4x fewer tokens than OmniLottie

https://github.com/srk0102/AnimTOON

2•srk0102•43m ago•0 comments

Open Source Alternative to Claude Managed Agents

https://agents.opencomputer.dev

5•iacguy•44m ago•1 comments

Bespoke OLAP: Using AI to Synthesize Workload-Specific DBMS Engines from Scratch

https://ucbskyadrs.github.io/blog/bespoke-olap/

1•matt_d•45m ago•0 comments

You know what I haven't ever seen? a good blogpost from an AI

1•wrqvrwvq•47m ago•0 comments

PC Repair OKC

https://okcitpros.com/

1•Veritaco•47m ago•1 comments

Automatic U.S. military draft registration planned by December, filing shows

https://www.cnbc.com/2026/04/09/military-draft-registration-automatic-iran-war.html

4•MilnerRoute•50m ago•1 comments

What makes search hard in production

https://www.searchplex.net/blog/what-makes-search-hard

1•eskimo87•52m ago•0 comments

Understanding Agents: Code Coverage for Coding Agents

https://blog.asymmetric.re/understanding-agents-code-coverage-for-coding-agents/

2•matt_d•52m ago•0 comments

Train Your Judgement

https://emilkowal.ski/ui/train-your-judgement

2•cristinacordova•55m ago•0 comments

Workflows in Your ADE

https://reliantlabs.io/

4•steeling1•58m ago•2 comments

SMS delivery is not deterministic: routing defines behavior

https://blog.bridgexapi.io/you-dont-control-sms-delivery-you-control-routing

1•Bridgexapi•1h ago•7 comments