news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: Kloak, A secret manager that keeps K8s workload away from secrets

https://getkloak.io/

14•neo2006•1h ago

Comments

neo2006•1h ago

Hey, we're the spinning-factory team, the folks behind Kloak. Kloak runs as a Kubernetes controller. It swaps the secrets in your workloads for harmless placeholders we call kloaked secrets, then uses eBPF to substitute the real secrets back in at the last moment — right when your app makes a request to an allowed host. Today, Kloak works with any app using OpenSSL 3.0–3.5 (statically or dynamically linked) or go-tls (Go 1.25 and 1.26). Support for more TLS libraries (GnuTLS, BoringSSL, and others) and additional Go versions is on the roadmap. Kloak is open source under the AGPL, contributions are welcome! We are also happy to hear any feedback and answer any question for the HN community.

koolba•13m ago

So it reads the packets and replaces the byte sequences at the kernel level? How does that work across packet boundaries?

subhobroto•2m ago

This is fantastic! I need this. however, for my self-hosted home projects that are containerized where I don't use Kubernetes, is there a way for me to use a version of Kloak that does the same eBPF magic on docker-compose or LXC/QEMU (Incus) stacks?

mrweasel•40m ago

Yeah, so Kloak is Danish for sewer.

WJW•36m ago

More or less straight from Latin?

https://en.wikipedia.org/wiki/Cloaca_Maxima

neo2006•14m ago

I guess we are the secrets sewers then! :D We would love to hear what you think about it beyond the name though.

Show HN: Quantum Temporal Cryptography – spec for interplanetary trust chains

https://zenodo.org/records/19770184

1•vibeagentmaking•4m ago•0 comments

Boats crash/break and can kill their passengers when falling certain distances

https://bugs.mojang.com/browse/MC/issues/MC-119369

2•zdw•8m ago•0 comments

Show HN: Talisman – A Android instrument played with two thumbs

https://talisman.by-igor.com/

1•ycosynot•9m ago•1 comments

Father warns of extremist network 764 after his daughter was 'groomed' on Roblox

https://nationalpost.com/news/canada/b-c-father-warns-of-extremist-online-network-764-after-his-d...

3•qwertyuiop_•9m ago•0 comments

Reconnecting a Post-Pandemic World

https://github.com/DaBena/Brezn

1•brezn•12m ago•1 comments

Pyptx – Write PTX Kernels in Python

https://github.com/patrick-toulme/pyptx

1•bobrenjc93•14m ago•0 comments

Show HN: LoreData – generate lore-accurate personas from pop culture universes

https://loredata.orchidfiles.com/

1•theorchid•15m ago•0 comments

Ask HN: Is anyone using Zoho, Lark or Proton?

1•wasimsk•17m ago•1 comments

Blog prize for big questions about AI

https://www.dwarkesh.com/p/blog-prize

1•gmays•17m ago•0 comments

The Professors Are Using ChatGPT, and Some Students Aren't Happy About It

https://www.nytimes.com/2025/05/14/technology/chatgpt-college-professors.html

1•coldsunrays•20m ago•0 comments

Show HN: Routiium – self-hosted LLM gateway with a tool-result guard

https://github.com/labiium/routiium

1•deadpixel•21m ago•0 comments

Agent-World: Scaling RW Environment Synthesis for General Agent Intelligence

https://agent-tars-world.github.io/-/

1•gmays•21m ago•0 comments

Context Is Finite. Who Maintains It?

https://blog.gchinis.com/posts/2026/04/self-organizing-agents/

1•gchinis•22m ago•0 comments

Release PiClaw v2.0.1 – Ferrix

https://github.com/rcarmo/piclaw/releases/tag/v2.0.1

1•rcarmo•25m ago•0 comments

Trump ousts National Science Board members

https://www.washingtonpost.com/science/2026/04/25/national-science-board-members-dismissed/

5•acdha•27m ago•0 comments

Is the World Ready for a Car Without a Rear Window?

https://www.wsj.com/lifestyle/cars/polestar-4-dan-neil-review-407f11a6

1•bookofjoe•29m ago•1 comments

Why your AI assistant is suddenly selling to you

https://www.economist.com/business/2026/04/19/why-your-ai-assistant-is-suddenly-selling-to-you

2•edward•30m ago•0 comments

Automate TLS for Dynamic Domains with Traefik and Hetzner DNS

https://matija.eu/posts/dynamic-domain-certs-traefik-hetzner/

1•mmunj•30m ago•0 comments

AI Might Be Lying to Your Boss

https://williamoconnell.me/blog/post/ai-ide/

4•annjose•31m ago•0 comments

Go quirks: function closures capturing mutable references

https://rednafi.com/go/closure-mutable-refs/

1•Brajeshwar•32m ago•0 comments

Can you stop beans from making you gassy?

https://www.seriouseats.com/how-to-reduce-bean-gas-tested-11883862

1•jstrieb•33m ago•0 comments

Show HN: The Order of the Agents – Make Codex and Claude Create the Perfect PRD

https://github.com/btahir/agent-order

2•bilater•36m ago•0 comments

RFC: Oden: The Server-First, JavaScript-Esque Runtime

https://rfchub.com/phobos/rfc5-oden-the-server-first-javascript-esque-runtime

1•tlhunter•39m ago•0 comments

The U.K. Smoking Ban Is Illiberal

https://www.theatlantic.com/ideas/2026/04/case-against-uk-smoking-ban/686949/

3•JumpCrisscross•39m ago•1 comments

Building Semantic Version Control in Rust

https://therohansharma.com/semantic-version-control-rust

2•lukastyrychtr•41m ago•0 comments

Logs say success. The system says otherwise

https://blog.bridgexapi.io/why-your-logs-say-everything-worked-even-when-it-didnt

1•Bridgexapi•42m ago•1 comments

Show HN: Good AI Task – a tool for asking AI what it can and can't do

https://goodaitask.com

2•jmt710•43m ago•0 comments

Nicholas Carlini – Black-hat LLMs [video]

https://www.youtube.com/watch?v=1sd26pWhfmg

9•simonebrunozzi•46m ago•0 comments

Show HN: Useknockout open source background removal API 40× cheaper -remove.bg

https://github.com/useknockout/api

3•tlorents•47m ago•0 comments

Show HN: AI Visibility Monitor – Track if your site gets cited by GPT/Claude

https://github.com/WorkSmartAI-alt/ai-visibility-monitor

4•balance006•47m ago•0 comments