frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

96% of GitHub repos have high severity issues in their Action workflows

https://pin-gh-actions.kammel.dev/zizmor
2•datosh•1h ago

Comments

datosh•1h ago
In the light of recent supply chain attacks I have conducted a scan of the top 10k repos (by stars) using the GHA security scanner zizmor.

The results are quite sobering. Many of the recent supply chain attacks were preventable, since zizmor is pointing out the exact weaknesses that were used: unpinned dependencies, template injection, ... and many more.

Happy for any input and feedback on the data and presentation, as well as ideas on how we use this to improve the security posture of our open source community!

In case you want to leave an issue or star: https://github.com/datosh/pinned-actions

SpaceX to give Musk 200M shares if 1M colonists on Mars and $7.5B valuation

https://www.investors.com/news/elon-musk-spacex-pay-data-center-starship-tesla-billionaire/
1•delichon•39s ago•0 comments

New Gene Therapy Enables Children with a Rare Form of Deafness to Hear

https://www.nytimes.com/2026/04/23/science/deaf-gene-therapy.html
1•bookofjoe•1m ago•1 comments

Declarative Git repo sync/migration tool and self hosted code search engine

https://github.com/stepbrobd/miroir
1•StepBroBD•1m ago•1 comments

Fidelity Won't Let Fund Holders Donate to Southern Poverty Law Center

https://www.nytimes.com/2026/04/29/business/fidelity-southern-poverty-law-center.html
2•JumpCrisscross•2m ago•0 comments

Barman – Backup and Recovery Manager for PostgreSQL

https://github.com/EnterpriseDB/barman
1•nateb2022•2m ago•0 comments

Ghost-hunter – AI cloud cost investigator that never touches your cloud

https://github.com/avinash-matrixgard/ghosthunter
1•matrixgard•3m ago•0 comments

Digital dead man's switch: how it works and when to use one

https://blog.alcazarsec.com/posts/digital-dead-mans-switch-guide
1•alcazar•3m ago•0 comments

LLM-Audit – Semgrep Rules for OWASP LLM Top in TypeScript

https://github.com/Javierlozo/llm-audit
1•Javierlozo•3m ago•0 comments

When the Bill Comes Due

https://tedium.co/2026/04/28/openai-anthropic-ai-tools-expensive-alternatives/
1•Brajeshwar•3m ago•0 comments

Actual line in the official system prompt for Codex for GPT-5.5

https://bsky.app/profile/emollick.bsky.social/post/3mkjwmbebr22p
1•doener•4m ago•0 comments

Bit: An LLM in the browser that only answers yes or no

https://bit.simone.computer
2•syx•5m ago•1 comments

45800 tech employees laid off in March 2026 alone

https://layoffs.fyi/
3•rachid_O•6m ago•0 comments

The Triumph of the Data Raccoons

https://muddy.jprs.me/posts/2026-04-03-the-triumph-of-the-data-raccoons/
1•jprs•6m ago•0 comments

Social Media Cheet Sheet

https://www.branding5.com/tools/social-media-cheat-sheet
1•mnewme•6m ago•0 comments

Show HN: Apollo Data Auditor – GDPR/CCPA scanner, breach SIM, remediation

https://apollo.aiia-tech.com/en/
1•ggabriel2025•7m ago•0 comments

CodeThis – paste bin with Markdown, password, MCP, and code-to-image

https://codethis.dev/
1•Patrity•7m ago•0 comments

The Edge of Galaxy

https://planetos.substack.com/p/the-edge-of-galaxy-past-all-frontiers
1•deze333•9m ago•0 comments

Show HN: My retired dad and I made a daily, somewhat difficult, quiz

https://kviss.eu/
1•steinvakt2•13m ago•0 comments

AI Agents Know About Supabase. They Don't Always Use It Right

https://supabase.com/blog/supabase-agent-skills
1•andrewstetsenko•13m ago•0 comments

Show HN: Harness – Manage parallel Claude Code agents across Git worktrees

https://github.com/frenchie4111/harness
2•frenchie4111•14m ago•1 comments

Mesa: a versioned filesystem for agents

https://www.mesa.dev/blog/introducing-mesa-filesystem-for-agents
3•Anon84•15m ago•0 comments

Cordouan Lighthouse

https://en.wikipedia.org/wiki/Cordouan_Lighthouse
2•Petiver•17m ago•0 comments

Facebook Has a Health Scam Problem

https://www.nytimes.com/2026/04/27/well/facebook-supplements-health.html
3•cainxinth•17m ago•0 comments

Nvidia exec: 'The cost of compute is far beyond the costs of my employees'

https://fortune.com/2026/04/28/nvidia-executive-cost-of-ai-is-greater-than-cost-of-employees/
4•david-gpu•18m ago•1 comments

Premature Coherence

https://creader.io/publish/timtimtim/article/ten-years-toward-a-better-way-to-create
1•timothyshen123•21m ago•0 comments

Show HN: fixiproject.org – minimalist web tools

https://fixiproject.org
2•recursivedoubts•21m ago•0 comments

For the first time, more Americans are moving to Europe than vice-versa

https://xcancel.com/benbawan/status/2049303326999609846
3•vrganj•21m ago•0 comments

The Bloomberg Terminal Is Getting an AI Makeover

https://www.wired.com/story/the-bloomberg-terminal-is-getting-an-ai-makeover-like-it-or-not/
1•andsoitis•23m ago•0 comments

Photoshopping the Package

https://seths.blog/2026/04/photoshopping-the-package/
1•speckx•23m ago•1 comments

Cybersecurity in the Intelligence Age

https://openai.com/index/cybersecurity-in-the-intelligence-age/
1•Brajeshwar•24m ago•0 comments