frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Shai-Hulud Themed Malware Found in the PyTorch Lightning AI Training Library

https://semgrep.dev/blog/2026/malicious-dependency-in-pytorch-lightning-used-for-ai-training/
66•j12y•1h ago

Comments

achandra03•17m ago
Bless the Maker and His water.
mkeeter•14m ago
A repository search shows 2.2K repos with the text "A Mini Shai-Hulud has Appeared", all created within the past day:

https://github.com/search?q=A%20Mini%20Shai-Hulud%20has%20Ap...

spate141•13m ago
what's this all about?
progbits•10m ago
Malware uploading the credentials it managed to steal
foo12bar•6m ago
FTFA

> The attack steals credentials, authentication tokens, environment variables, and cloud secrets, while also attempting to poison GitHub repositories.

rhdunn•5m ago
The repository names all look like two terms/words from dune (harkonen, mentat, ornithoptor, etc.) followed by a number. This would indicate that the account (possibly GitHub auth/actions token) has been compromised and then used to create the repository.
spate141•14m ago
ah shit, here we go again
12_throw_away•10m ago
this is fine, we are definitely a perfectly normal industry that knows what it is doing
throwa356262•8m ago
Advisory, fresh from the owen

https://github.com/Lightning-AI/pytorch-lightning/security/a...

rvz•6m ago
Shai-Hulud strikes again and continues to turn innocent packages into zombies.

Think twice before looking at a package and most importantly, always pin your dependencies.

All these smart glasses and nothing to do

https://www.theverge.com/tech/921159/smart-glasses-review-wearable-even-realities-g2-meta-ray-ban...
1•ZeidJ•39s ago•0 comments

Copy Fail CVE-2026-31431: 732 Bytes to Root on All Linux

https://byteiota.com/copy-fail-cve-2026-31431-732-bytes-to-root-on-all-linux/
1•wscott•1m ago•0 comments

China Is America's Equal Now and in Any Future Fight, Marine General Warns

https://www.twz.com/sea/china-is-americas-military-equal-now-and-in-any-future-fight-marine-gener...
2•Teever•2m ago•0 comments

Genome editing can be risky. Meet the epigenome editors

https://www.economist.com/science-and-technology/2026/04/29/genome-editing-can-be-risky-meet-the-...
1•Brajeshwar•4m ago•0 comments

Making The Smallest Possible Linux Distro (x64) (2025) [video]

https://www.youtube.com/watch?v=u2Juz5sQyYQ
1•peter_d_sherman•4m ago•0 comments

Auto Exacto: Adaptive Quality Routing, on by Default

https://openrouter.ai/announcements/auto-exacto
1•pr337h4m•5m ago•0 comments

We need RSS for sharing abundant vibe-coded apps

https://interconnected.org/home/2026/04/29/syndicating-vibes
1•mvdwoord•6m ago•0 comments

Building a tiny Linux from scratch (2025)

https://blinry.org/tiny-linux/
1•peter_d_sherman•7m ago•0 comments

Software is dead, long live Software

https://www.ashpreetbedi.com/articles/dynamic-software
2•ashpreet-bedi•8m ago•0 comments

Meta abandons open-source Llama for proprietary Muse Spark

https://thenewstack.io/meta-abandons-llama-spark/
9•CrankyBear•9m ago•0 comments

Spell-Checking with LLMs

https://revise.io/blog/04-30-2026/spell-checking-with-llms
1•artursapek•9m ago•1 comments

Banksy confirms he's behind statue in central London

https://www.bbc.co.uk/news/articles/c5y9wlnwl85o
2•mellosouls•11m ago•0 comments

Meta Reports First Quarter 2026 Results

https://investor.atmeta.com/investor-news/press-release-details/2026/Meta-Reports-First-Quarter-2...
5•newusertoday•12m ago•0 comments

₹2 Lakh Personal Loan – Apply Online Easily – SMFG India Credit

https://www.smfgindiacredit.com/2-lakh-personal-loan.aspx
1•saumyaraut11•14m ago•0 comments

Samsung warns memory shortage to deepen next year as 2027 orders come in

https://asia.nikkei.com/business/tech/semiconductors/samsung-warns-memory-shortage-to-deepen-next...
2•newusertoday•14m ago•0 comments

The Block Model Behind Warp's Agentic Development Environment

https://www.warp.dev/blog/block-model-behind-warps-agentic-development-environment
3•mellosouls•17m ago•0 comments

Show HN: Coding-Flashcards – Learn Rust, SQLite, or Godot from First Principles

https://github.com/ad-si/Coding-Flashcards
3•adius•17m ago•0 comments

Radio Lockdown Averted

https://fsfe.org/activities/radiodirective/radiodirective.html
4•M95D•19m ago•0 comments

FreeMediaHeckYeah 8-Year Anniversary

https://fmhy.net/posts/anniversary
1•Cider9986•20m ago•0 comments

US track star Abby Steiner sues Puma alleging 'defective' shoes destroyed career

https://nypost.com/2026/04/29/sports/sprinter-abby-steiner-sues-puma-alleging-defective-shoes-des...
1•Tomte•20m ago•0 comments

Migrant Deaths Hit Record High Under Trump 2.0

https://www.techdirt.com/2026/04/30/migrant-deaths-hit-record-high-under-trump-2-0/
3•speckx•20m ago•0 comments

Vulnerability Lets Privilege Escalation to Root on Major Linux Distros Est. 2017

https://www.bleepingcomputer.com/news/security/new-linux-copy-fail-flaw-gives-hackers-root-on-maj...
2•ZeidJ•20m ago•0 comments

Could Eating Your Fruits and Veggies Give You Lung Cancer?

https://www.healthline.com/health-news/pesticides-healthy-foods-lung-cancer-risk-people-under-50
1•paulpauper•24m ago•0 comments

House GOP concedes in DHS funding fight, reopening TSA but blocking ICE funds

https://www.cnn.com/2026/04/30/politics/dhs-shutdown-funding-bill-house-vote
4•Cider9986•24m ago•0 comments

Show HN: Shell-MCP, per-directory shell allowlisting for Claude Desktop

https://github.com/devrelopers/shell-mcp
1•DavidCanHelp•24m ago•0 comments

How Silicon Valley's Brightest Parents Broke Their Own School

https://www.wsj.com/us-news/education/how-silicon-valleys-brightest-parents-broke-their-own-schoo...
2•fortran77•25m ago•1 comments

Environmentalists Aren't Anti-Abundance

https://www.grantmulligan.com/p/environmentalists-arent-anti-abundance
1•paulpauper•25m ago•0 comments

Show HN: Outlit – Customer context infrastructure for agents

https://www.outlit.ai/
1•Joshearle1•25m ago•0 comments

Former Chick-fil-A employee charged in $80K refund scheme using Mac and cheese

https://www.fox4news.com/news/former-texas-chick-fil-a-employee-80k-refund-fraud-mac-and-cheese
1•Vaslo•25m ago•0 comments

The Collapse of Teen Fertility in the Digital Era [pdf]

https://homepages.uc.edu/~moscoshn/Personal_webpage/papers/Smartphone_web.pdf
1•paulpauper•25m ago•0 comments