frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

ElectricSQL database takeover vulnerability found by AI

https://casco.com/blog/electricsql-order-by-sql-injection
5•brene•3h ago

Comments

brene•3h ago
Rene from Casco here. While our agents were performing a security test, they discovered a database takeover vulnerability. It's a good example of how SQL injection is still a test path that needs to be explicitly be validated. Really want to give props to the ElectricSQL team from issue reported to issue fixed and deployed, it took ~2 hours.
thruflo•2h ago
Thanks from the Electric side to the Casco team for the responsible disclosure, comprehensive repro and great communication through the process.

This was a critical one to identify and patch: https://github.com/electric-sql/electric/security/advisories...

Just to repeat for visibility, if you're self-hosting the Electric sync service, upgrade to version >= 1.5.0 immediately.

Context Rot: How Increasing Input Tokens Impacts LLM Performance

https://www.trychroma.com/research/context-rot
1•felineflock•1m ago•0 comments

Loop.frontiersin.org/People/3468257/Overview

https://loop.frontiersin.org/people/3468257/overview
1•openrockets•3m ago•0 comments

Write It First Then Let AI Drive

https://kennethreitz.org/essays/2026-04-12-write_it_first_then_let_ai_drive
1•jorzel•4m ago•0 comments

Misconfiguring Infinity Fabric to Break AMD SEV-SNP

https://fabricked-attack.github.io/
1•spooneybarger•5m ago•0 comments

People are pretending to be AI chatbots – for fun

https://www.npr.org/2026/04/14/nx-s1-5776842/ai-chatbot-comedy-ben-palmer-chatgpt
1•rolph•5m ago•0 comments

KDE: 30 years of the Linux desktop (video media.ccc.de)

https://media.ccc.de/v/glt26-691-kde-30-years-of-the-linux-desktop
2•simon04•6m ago•0 comments

New Accounts Let Teens Trade Stocks Without a Parent's Approval

https://www.wsj.com/personal-finance/new-accounts-let-teens-trade-stocks-without-a-parents-approv...
1•booleandilemma•6m ago•0 comments

C-Suite tried to replace every coder it ever met. Now AI replaces the C-Suite?

https://dhmventures.com/blog/do-we-need-c-suite-executives.html
1•dirk94018•7m ago•0 comments

Axios vulnerability with CVSS 10 over stated?

https://www.aikido.dev/blog/axios-cve-2026-40175-a-critical-bug-thats-not-exploitable
1•oofbey•7m ago•1 comments

A former homeless man remotely achieved the American Dream

https://www.lvivherald.com/post/oleh-a-true-life-story
1•Kizert•7m ago•0 comments

The inevitable need for an open model consortium

https://www.interconnects.ai/p/the-inevitable-need-for-an-open-model
1•gmays•10m ago•0 comments

Banks Tally $100B of Private-Credit Loans as Calm Urged

https://www.bloomberg.com/news/articles/2026-04-14/wells-fargo-reports-36-2-billion-of-private-cr...
1•petethomas•10m ago•0 comments

ByeDoom: Give a Link –> Get a Feed

https://byedoom.com/
1•sphars•11m ago•0 comments

Show HN: 404 – a localhost proxy that substitutes your device fingerprint

https://404privacy.com/
2•un-nf•11m ago•0 comments

YouTube Protects the Vibe from the Ads

https://techcrunch.com/2026/04/14/youtube-livestreams-will-now-hold-back-ads-during-peak-engageme...
1•AnhTho_FR•13m ago•0 comments

Show HN: Shape Foundation Model (masked-token pretraining on CAD meshes)

https://github.com/simd-ai/shape-v2
1•tito777•15m ago•0 comments

How do developers in India negotiate salary without reliable compensation data?

1•rohanbudheliya•15m ago•0 comments

iOS 26.5 beta 2 gives Apple Maps a new ads popup

https://9to5mac.com/2026/04/13/ios-26-5-beta-2-gives-apple-maps-a-new-ads-popup/
4•cdrnsf•16m ago•1 comments

Show HN: Remen – Open-Source Privacy Focused Productivity App

https://github.com/moeen-mahmud/remen
1•moeen-mahmud•18m ago•0 comments

Labor Wins When They Run Union Members for Office

https://jacobin.com/2026/03/labor-union-members-elections-cwcp/
1•PaulHoule•19m ago•0 comments

Show HN: MESI cache coherence for multi-agent LLM context sync – 95% less tokens

https://github.com/hipvlady/agent-coherence
1•hipvlady•20m ago•0 comments

EU Site-Blocking Is Broken: Report Calls for Ban and Rightsholder Liability

https://torrentfreak.com/eu-pirate-site-blocking-is-broken-report-calls-for-ip-blocking-ban-and-r...
2•darccio•21m ago•0 comments

Ask HN: Are antisemitism and anti-Zionism the same?

1•wasimsk•27m ago•4 comments

Show HN: Free website accessibility scanner – EAA/Ada compliance check

https://compliscan.ai
1•scarybeard•27m ago•0 comments

Fake Ledger app on Apple App Store linked to $9.5M crypto theft

https://www.theblock.co/post/397388/fake-ledger-app-apple-app-store-crypto-theft-bitcoin-tron-sol...
1•smithcoin•28m ago•0 comments

SQLite-memory-MCP – local-first MCP memory on SQLite WAL

https://github.com/RMANOV/sqlite-memory-mcp
1•ruslanMANOV•29m ago•0 comments

Show HN: Agentchat, a skill that teaches agents to make group chats

https://github.com/arlington-labs/agentchat
2•aerodynamic_•30m ago•0 comments

How can I keep from singing?

https://blog.danieljanus.pl/singing/
1•nathell•32m ago•0 comments

A Brother's Blood: The Accidental Cure That Locked HIV Out for Good

https://www.nature.com/articles/s41564-026-02304-8
1•tyjkot•33m ago•0 comments

Nvidia Launches Ising!

https://isingai.net
2•Jenny249•34m ago•0 comments