frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Incident CVE-2026-LGTM

https://nesbitt.io/2026/06/26/incident-report-cve-2026-lgtm.html
76•mooreds•1h ago

Comments

pmarreck•21m ago
This incident report is WILD

    The incident was resolved when the attacker’s autonomous agent read a file it shouldn’t have, which is also how the incident started.
InsideOutSanta•17m ago
Seems perfectly cromulent to me. And thanks to Karen Oyelaran for her work.
jazzypants•11m ago
We can only hope she wins her GitHub rate limit appeal soon.

This was hilarious. I didn't know that I needed AI slop satire in my life.

dcrazy•17m ago
It’s satire.
piazz•16m ago
PSA this is satire ;)

(if you have to say it, that’s how you know it’s good)

jazzypants•9m ago
Poe's law strikes again.

https://en.wikipedia.org/wiki/Poe's_law

bilekas•15m ago
Its LGTM actually! And very much not serious! (yet)
bilekas•20m ago
> Duration: 96 hours (billable: 2.1 trillion tokens)

Now there's a metric that would make my boss nervous.

> Total inference spend across all parties during the incident window was $1.7M, which Marketing has asked us to start describing as “a record investment in autonomous customer assurance.”

This is too funny.

mawadev•5m ago
I think at some point we need a different or split up currency/economy, because these values make no sense. Just consider how this inference cost 1.062.500 tomatoes ($1.6) in the physical world.
Procrastes•16m ago
I actually know a goat rancher who is working to require ag impact studies for data centers in Texas. Sounds like I should give him a call while I can.

(Also CVE-2026-LGTM would be an awesome name for a Culture ship)

windsurfer•16m ago
Perhaps a [Satire] note should be added to the headline.
john_strinlai•14m ago
its tagged as satire at the very top of the page, first thing under the title

(also, CVEs are numeric only, so the "LGTM" (looks good to me) and CVE "YIKES" is also a big giveaway, on top of ~all of the text being outlandish)

hk__2•9m ago
> its tagged as satire at the very top of the page, first thing under the title

Not the first thing, it’s buried in the tags as grey on light grey on white.

unknownfuture•9m ago
It says a lot about the industry today that this post is somehow running afoul of Poe's Law...
piterrro•13m ago
(I know its a satire, but could be seen as an actual post mortem of the future incident) This report made me realize there's no place for humans, as it is right now, in the process of building software systems in the future. Reading this incident made me dizzy after few paragraphs because of the cognitive context overload and I lost track multiple times.
RaSoJo•8m ago
I kinda felt it was satire, but then the below quote threw me off:

> one vendor’s marketing team, cc’d on the cost anomaly alert, issues a press release citing “a 430% YoY increase in adversarial multi-agent security reasoning.” The stock opens up 6%.

That happens! That is not satire. So i had to visit the comments here to be sure :)

unknownfuture•6m ago
You're absolutely right!

(In all seriousness it seems this is the dream of a huge number of AI pilled execs dreaming of infinite velocity at a fraction of the cost... velocity pointed where, you ask? Well stop asking or you'll be next.)

btown•13m ago
If you're wondering what creats.io is - this is satire!
faeyanpiraat•10m ago
You had me in the first half :)
PunchyHamster•7m ago
Well the part about brand-image-incompatible depictions of firefox logo apparently wasn't a satire
NooneAtAll3•4m ago
previously on HN: https://news.ycombinator.com/item?id=48086082 "Incident Report: CVE-2024-YIKES"

Paris police asks major festivals be cancelled due to relentless heatwave

https://www.france24.com/en/paris-police-asks-major-festivals-be-cancelled-due-to-relentless-heat...
1•bookofjoe•1m ago•0 comments

Anatomy of a Failed (Nation-State?) Attack

https://grack.com/blog/2026/06/25/dissecting-a-failed-nation-state-attack/
1•mmastrac•2m ago•0 comments

SQLite improving performance with pre-sort

https://andersmurphy.com/2026/06/07/sqlite-improving-performance-with-pre-sort.html
1•tosh•2m ago•0 comments

Update on Mercor Security Incident

https://www.mercor.com/blog/update-on-mercor-security-incident/
1•chirau•2m ago•0 comments

The Excavator That Digs to a Line It Cannot See – Mobility and Field Robotics

https://atomsfrontier.substack.com/p/the-excavator-that-digs-to-a-line
1•jpatel3•5m ago•0 comments

The Data-Center Divide

https://harpers.org/archive/2026/06/the-data-center-divide-andrew-cockburn-artificial-intelligence/
2•speckx•6m ago•0 comments

Open Source, APIs, and the Rise of Agent-Led Growth

https://theapplied.substack.com/p/from-product-led-to-agent-led-growth
2•hsantana8•6m ago•0 comments

A startup claims it broke through a bottleneck that's holding back LLMs

https://www.technologyreview.com/2026/06/19/1139313/a-startup-claims-it-broke-through-a-bottlenec...
2•zacharyozer•7m ago•1 comments

Control Structures in Programming Languages

https://xavierleroy.org/control-structures/book/index.html
2•birdculture•8m ago•0 comments

Outbreak

https://meltingasphalt.com/interactive/outbreak/
3•surprisetalk•8m ago•0 comments

Perseverance Scratches the Martian Surface, Finds Organic Carbon

https://nautil.us/perseverance-scratches-the-martian-surface-finds-organic-carbon-1282262
3•Brajeshwar•9m ago•0 comments

Airlock – crash isolation for Swift on macOS without fork()

https://github.com/MaximKotliar/Airlock
2•warminvention•10m ago•0 comments

By Humans, for Humans

https://mindfuldesign.xyz/by-humans/
2•eustoria•12m ago•0 comments

Supreme Court ruling blocks lawsuits against maker of Roundup

https://apnews.com/article/supreme-court-roundup-monsanto-a7f054d80919f98bdfc5190013a8f6f1
4•randycupertino•12m ago•2 comments

Vision for the Godot Engine

https://godot.foundation/policies-and-procedures/project-vision-statement
2•0x1ceb00da•12m ago•0 comments

Why Old DSLRs Still Win Wildlife Photography Awards

https://fstoppers.com/originals/why-decade-old-dslr-keeps-winning-awards-and-what-should-teach-90...
2•eustoria•12m ago•0 comments

CNBC Cures

https://www.cnbc.com/cures/
2•kamaraju•13m ago•0 comments

Show HN: ZeroGate – API gateway to scale cloud GPUs to zero when idle

https://github.com/noah-garner/zerogate
2•ngarner•14m ago•0 comments

Intervention No. 1 "Quantum" performed by a cello that's played by two robots [video]

https://www.youtube.com/watch?v=a0Ehoc65MF8
2•speckx•15m ago•0 comments

BrokenClaw Part 7: Opus-4.8 Edition – All Emails Lead to RCE

https://veganmosfet.codeberg.page/posts/2026-06-04-openclaw_opus48/
4•e12e•17m ago•1 comments

Level Design: Readability

https://blendogames.com/news/post/2026-06-xx-leveldesign_readability/
2•eustoria•17m ago•0 comments

Q-Day has begun. Are you ready?

https://www.ibm.com/think/news/q-day-has-already-begun-are-you-ready
2•NickDouglas•17m ago•1 comments

Restoring an Xserve G5

https://www.jeffgeerling.com/blog/2026/restoring-xserve-g5-apple-server/
2•tosh•20m ago•1 comments

Omg.lol membership price increases August 1

https://omglol.news/2026/06/25/omg-lol-membership-price-increases-august-1
2•linsomniac•20m ago•0 comments

I built a trainer for Conway's Doomsday algorithm (mental weekday calculation)

https://whattheday.com/
2•jesperkiledal•20m ago•1 comments

Should This Answer Even Be A Live Generation?

https://webmnem.here.now/dont-use-a-stochastic-engine-for-deterministic-workflows/
2•InfraStack•22m ago•0 comments

Add Animal Crossing events to your digital calendar

https://sethmlarson.dev/animal-crossing-calendar
2•surprisetalk•22m ago•0 comments

Load-Beari.ng – Honest Take

https://load-bear.ing
2•patrikcsak•23m ago•0 comments

Clawd, Claude's Pulse

https://clawd-pulse.vercel.app
4•xsace•23m ago•0 comments

The Mathi Problem

https://blog.xmartlabs.com/blog/the-mathi-problem-ai-generated-code/
2•enrigalmig•23m ago•0 comments