frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

AI Short Video Generator Website for Sale

https://flippa.com/13365327-ai-powered-video-generation-platform-for-creating-viral-short-form-co...
1•kilincarslan•33s ago•1 comments

NASA chief praises progress Blue Origin is making after launch failure

https://arstechnica.com/space/2026/07/nasa-chief-praises-progress-blue-origin-is-making-after-lau...
1•rbanffy•54s ago•0 comments

"Mythos" at Home, and It's Called Aisle

https://aisle.com/blog/mythos-at-home-and-its-called-aisle
1•tinthedev•58s ago•0 comments

Consciousness and the Laws of Physics (2021)

https://philarchive.org/rec/CARCAT-33
1•hackingonempty•1m ago•0 comments

Decline of PhD Admissions Could Imperil a 'Generation of New Talent'

https://www.nytimes.com/2026/07/06/us/research-universities-fewer-phds-science.html
1•gumby•1m ago•0 comments

Resetting Xbox

https://news.xbox.com/en-us/2026/07/06/resetting-xbox/
1•dijksterhuis•2m ago•1 comments

GitHub & other LLM-gen-AI Cos Urge You to Misdirect California on FOSS Licensing

https://sfconservancy.org/blog/2026/jul/03/github-gen-ai-california-22757-ok-for-foss-license/
1•hn_acker•2m ago•1 comments

Does Speaking to Agents Like Cavemen Save 65% of Tokens? We Test

https://blog.jetbrains.com/ai/2026/07/speak-to-ai-agents-like-cavemen-tosave-tokens/
1•adletbalzhanov•3m ago•0 comments

Microsoft device telemetry key to unmasking alleged Scattered Spider hacker

https://www.itnews.com.au/news/microsoft-device-telemetry-key-to-unmasking-alleged-scattered-spid...
1•_____k•4m ago•0 comments

I Changed My Name

https://robida.net/entries/2026/07/01/i-changed-my-name
1•surprisetalk•5m ago•0 comments

Zero-defects code: the prescient Microsoft memo from 1989

https://digitalseams.com/blog/zero-defects-code-the-prescient-microsoft-memo-from-1989
1•Brajeshwar•7m ago•0 comments

Show HN: I pre-registered the rules,then measured AI agents shipping wrong fixes

https://github.com/kolesnikov-arch/patchward
1•kolesnikov-arch•7m ago•0 comments

Show HN: Using the secure enclave in a pass/password-store iOS client

https://sepass.modiot.com
1•floathub•8m ago•1 comments

How can Rust be so fast in the TechEmpower Web Framework Benchmarks?

https://kerkour.com/rust-fast-techempower-web-framework-benchmarks
3•Keyb0ardWarri0r•9m ago•0 comments

Packing the Infinite Truck

https://pehar.dev/reflections/packing-the-infinite-truck/
1•dinkopehar•9m ago•0 comments

Show HN: Loopers – Open-source fail-closed firewall for AI agent runtimes

https://github.com/CURSED-ME/loopers-oss
1•varad-khoriya•9m ago•0 comments

A 13-agent pipeline that ships full-stack web apps from a Markdown spec

https://github.com/lemoine-agency/demo-facture-simple
1•frnic0las•9m ago•0 comments

The missing 500M: Cosmic bombardment melted Earth's first crust

https://arstechnica.com/science/2026/07/the-missing-500-million-cosmic-bombardment-melted-earths-...
2•rbanffy•9m ago•0 comments

Germany's 60K-game preservation project collapses after €1.5M funding dries up

https://www.tomshardware.com/video-games/retro-gaming/germanys-1-5-million-project-to-build-the-w...
3•thunderbong•11m ago•0 comments

Meta's AI 'Perv Glasses' Now Come with Stupid Comcast-Esque Usage Restrictions

http://www.techdirt.com/2026/07/06/metas-ai-perv-glasses-now-come-with-stupid-comcast-esque-usage...
6•beardyw•12m ago•1 comments

Apprentice developer defied orders – then got a job supporting her weird code

https://www.theregister.com/software/2026/07/06/apprentice-developer-defied-orders-then-got-a-job...
2•LorenDB•12m ago•0 comments

Global renewable capacity factors datasets

https://bayesian.energy/blog
2•p44v9n•13m ago•0 comments

I Built a Telegram Client for Pi

https://www.npmjs.com/package/@atharva-again/pi-tg
2•atharva-again•14m ago•1 comments

Show HN: Orchestrate parallel Claude Code and Codex agents on a live map

https://github.com/Latand/live-log-viewer-next
2•latand6•14m ago•0 comments

Show HN: We track 1,397 AI agents. 43 famous ones (402k stars) have gone dark

https://agentcrush.xyz/ghost-report
2•AgentCrush•14m ago•0 comments

The Nature of Launch Day

https://seths.blog/2026/06/the-nature-of-launch-day/
2•herbertl•14m ago•0 comments

Show HN: Captchainbox – make senders work to get into your inbox

https://www.captchainbox.com
2•felixdoerp•15m ago•0 comments

Microsoft joins AI-driven tech layoff wave with 4,800 job cuts

https://www.reuters.com/business/world-at-work/microsoft-joins-ai-driven-tech-layoff-wave-with-48...
1•root-parent•16m ago•0 comments

Loop Engineering's Missing Half

https://x.com/compose/articles/edit/2073814852167184384
1•sankarn_ai•16m ago•0 comments

Show HN: Flying Drones with Natural Language

https://jakedecamp.com/product/flying-drones-with-natural-language/
1•silksowed•17m ago•0 comments
Open in hackernews

Show HN: Scan your AI agents for dangerous capabilities

https://github.com/makerchecker/MakerChecker
16•smashini•1h ago

Comments

smashini•1h ago
Hey all :)

I've been working an open-source toolkit to stop AI agents from running amok.

You can scan your code (Python, JS, TS) and it will flag any risks and can offer fixes. It runs offline, but you can wire an LLM to do code analysis as well.

You can run it with:

npx @makerchecker/scan

Would love to get any feedback!

smashini•32m ago
oopsie doopsie, release pipeline failed fixing now...
smashini•22m ago
should be fixed and released now :)
__MatrixMan__•34m ago
Why build separate frameworks for this kind of thing when your operating system is right there?

You can make a file called "orders" and you can run your agent as a user with write access to that file, or as one that doesn't, and then you don't need scans or audits to tell you whether the agent can create orders or not, you can just take your operating system's word for it.

Is there anything all this bolt-on AI security stuff does that can't instead be handled by donning a sysadmin hat and managing your agents as separate users?

skinfaxi•30m ago
> Is there anything all this bolt-on AI security stuff does that can't instead be handled by donning a sysadmin hat and managing your agents as separate users?

Like everything else, the packaging and ergonomics matter. Do we need podman or docker when we could just don our sysadmin hats and manage namespaces and cgroups directly instead?

smashini•27m ago
I’d say the biggest difference would be: 1. Parameter-aware rules: OS permissions don’t know your application logic. (How would you tell OS permissions not to let your AI to trade on over 1M dollars) 2. You can’t easily model multi-pary and RBAC. 3. Agents call remote APIs for alot of those tools. Native OS doesn’t really parse web traffic to decide if a request is safe or not. OS sandboxing is good for host security, but not necessarily for governing business logic or AI agents
smashini•9m ago
So Linux can prevent an agent from opening /etc/passwd.

Linux cannot stop an agent from calling:

POST /wire-transfer amount=5,000,000