news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Reduce software supply-chain risks with coordinated agentic review

https://thirdpass.dev/

1•rndhouse•1h ago

Comments

rndhouse•1h ago

Hello,

The goal of Thirdpass as a service is to coordinate the collaborative review effort necessary to lower software supply-chain risks.

Multi-ecosystem support: crates.io, pypi.org, npmjs.com, and galaxy.ansible.com.

Thirdpass should enable anyone to review by pointing their spare AI capacity at dependencies.

Some thoughts over the years whilst working on this off and on:

* A coordination node can add a lot of value.

* It's difficult to motivate human reviewers.

* A review which adds partial coverage is still valuable.

* The supply-chain risk is not unique to JavaScript.

This project started in 2021 and was recently revived. I've honestly had a lot of fun working on this. I'm looking for contributors to help build and review.

I hope the community finds this valuable!

https://github.com/thirdpass-org/thirdpass

https://thirdpass.dev/

Why this 26-year-old software engineer doesn't want a promotion

https://www.reuters.com/markets/on-the-money/why-this-26-year-old-software-engineer-doesnt-want-p...

1•tartoran•1m ago•0 comments

Can Bloom Energy build them?

https://theloadgrowth.substack.com/p/can-bloom-energy-build-them

1•agordhandas•4m ago•0 comments

WHO declares Ebola outbreak in Congo, Uganda emergency of international concern

https://www.reuters.com/business/healthcare-pharmaceuticals/who-declares-ebola-outbreak-congo-uga...

2•tartoran•4m ago•0 comments

F.03 Livestream – Watch a team of humanoid robots running a full 8-HR shift [video]

https://www.youtube.com/watch?v=luU57hMhkak

1•Teever•4m ago•0 comments

A bad blog post led to GamerGate and the rise of the alt-right

https://www.dontbeasucker.blog/p/you-are-what-you-beat

1•betterthanever•4m ago•0 comments

Curated list of 736 verified remote tech companies hiring (May 2026)

https://dj5333111-ux.github.io/traction-data/

2•tractiondata•5m ago•1 comments

Dontsurveil.me

https://opencivics-labs.github.io/dontsurveil.me/c22.html

1•laurex•6m ago•1 comments

The clean-up cost of AI-generated code is what the velocity narrative leaves out

https://webflow.com/blog/cleanup-cost-ai-generated-code

1•Brajeshwar•7m ago•0 comments

AI can fix the fragmented online public transport space

https://simianwords.bearblog.dev/ai-can-fix-the-fragmented-online-public-transport-space/

1•simianwords•11m ago•0 comments

He Federal Data Field Guide

https://www.federaldatafieldguide.us/

1•firexcy•13m ago•0 comments

Pokemon NPCs Powered by Local LLMs

https://www.owenmc.dev/posts/local-inference-npcs

1•owenmccadden•15m ago•0 comments

Mistral's CEO: Europe has 2 years to stop becoming America's AI 'vassal state'

https://www.businessinsider.com/mistral-ceo-warns-europe-2-years-avoid-us-ai-dependence-2026-5

2•LelouBil•17m ago•0 comments

Mudflat Hiking

https://en.wikipedia.org/wiki/Mudflat_hiking

1•debarshri•17m ago•0 comments

Don't Outsource the Learning

https://addyosmani.com/blog/dont-outsource-learning/

1•korecodes•17m ago•0 comments

In 1979 engineer Hugh Padgham discovered "gated reverb" – by accident

https://producelikeapro.com/blog/how-one-recording-mistake-created-a-musical-phenomenon-in-the-80s/

1•bookofjoe•20m ago•0 comments

I want to try S.Y's GasTown to create code from a Spec without spending any $

https://github.com/stevef1uk/freeride

1•apiemotion•22m ago•1 comments

JSON logging isn't enough anymore: A deep dive into OTel Logs

https://www.dash0.com/knowledge/opentelemetry-logging-explained

1•ayoisaiah•24m ago•0 comments

Poll: Do you customize the TCP/IP settings of your OS, Router or Firewall?

1•Bender•24m ago•0 comments

Ask HN: Reading AI Assisted Essays

1•parentheses•26m ago•0 comments

Students noticing their AI‑smoothed writing sounds strong – and not like them

https://theconversation.com/college-students-are-noticing-their-ai-smoothed-writing-sounds-strong...

1•paulpauper•28m ago•0 comments

Something Big Is Happening on Campus

https://www.theatlantic.com/ideas/2026/05/david-brooks-something-is-going-right-at-universities/6...

1•paulpauper•29m ago•0 comments

Intro to TLA+ for the LLM Era: Prompt Your Way to Victory

https://emptysqua.re/blog/intro-to-tla-plus-for-the-llm-era/

1•zdw•29m ago•0 comments

Lawsuit Blames ChatGPT Maker OpenAI for Helping Plan a School Shooting

https://www.mississippifreepress.org/lawsuit-blames-chatgpt-maker-openai-for-helping-plan-a-schoo...

1•droidjj•30m ago•1 comments

La Machine

https://la-machine.fr/en?market=us&_redirected=1

2•jgrahamc•31m ago•0 comments

What are we getting out of code review?

https://sociable-mosquito.static2.website/posts/code-review-costs.html

1•ur_tech_friend•33m ago•0 comments

Is AI putting graduates out of work already?

https://www.economist.com/finance-and-economics/2026/05/13/is-ai-putting-graduates-out-of-work-al...

1•paulpauper•34m ago•1 comments

Memory trees and Taylor expansion of the lambda|-calculus (2012) [pdf]

https://www.irif.fr/_media/users/saurin/ohana-trees.pdf

1•sargstuff•35m ago•0 comments

Learning on the Shop Floor

https://twitter.com/tobi/status/2053121182044451016

1•cmbailey•39m ago•0 comments

Show HN: A freehand drawing guestbook for my portfolio

https://paco.fyi/guestbook

1•leoverdura•39m ago•0 comments

Pixie, a local-first workbench for your tools and models

https://github.com/AlexKapadia/Pixie

1•alexkapadia1•40m ago•0 comments