frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Reaction: Daemon Scanning Program Outputs for Repeated Patterns and Actions

https://framagit.org/ppom/reaction
1•birdculture•1m ago•0 comments

Truth about battery fires – Gore Street Capital [video]

https://www.youtube.com/watch?v=LDMs7QQqQxE
1•leonidasrup•1m ago•0 comments

Ask HN: What Did You Work On? (June 2026)

2•adithyaharish•3m ago•0 comments

The Magic of Zakkyo Buildings

https://www.noahpinion.blog/p/a-better-way-to-build-a-downtown
1•andsoitis•3m ago•0 comments

Apple M7 Ultra Chip Planned with Up to 1.5 TB of Unified Memory

https://www.techpowerup.com/350711/apple-m7-ultra-chip-planned-with-up-to-1-5-tb-of-unified-memory
2•Tenoke•4m ago•0 comments

LingBot-Video: An open-source MoE video foundation model for embodied AI

https://github.com/robbyant/lingbot-video
1•Kajaking•4m ago•0 comments

Show HN: Hacker News reader with Reddit style comments

https://www.orangecrumbs.com/hn/
1•oyster143•5m ago•0 comments

Laws of Project Management

https://www.lucasfcosta.com/blog/laws-of-software-project-management
1•BerislavLopac•5m ago•0 comments

Make No Assumptions

https://lethain.com/make-no-assumptions/
1•pspeter3•6m ago•0 comments

The State of the AI Economy [pdf]

https://intelligence.exponentialview.co/assets/ev-state-of-ai-economy-2026.pdf
1•gmays•7m ago•0 comments

Pixoate an AI Photo Editor

https://pixoate.com
1•harpal11•7m ago•1 comments

Show HN: A Transformer Is All You Need PT 2L: Precision Brain Surgery

https://zenodo.org/records/21336223
1•KnoxProtocol•7m ago•0 comments

Show HN: Learn OCaml, exercises checked by WASM in browser

https://ocamllearn.vercel.app
1•ioma8•7m ago•0 comments

Meta's Louisiana Data Center Campus to Surpass $250B Price Tag

https://www.bloomberg.com/news/articles/2026-07-13/meta-s-louisiana-data-center-to-surpass-250-bi...
1•alephnerd•7m ago•0 comments

Volkswagen CEO says 50,000 more job cuts may be needed to close competitive gap

https://www.cnbc.com/2026/07/13/volkswagen-ceo-50000-job-cuts-may-be-needed-to-close-competitive-...
3•root-parent•9m ago•1 comments

Revisiting Yliluoma's ordered dither algorithm

https://30fps.net/pages/revisiting-yliluoma-2/
1•ibobev•9m ago•0 comments

Apple Stock Hits Record Territory as Traders Sour on AI Spending

https://www.macrumors.com/2026/07/13/apple-stock-record-territory/
1•datakan•9m ago•0 comments

Oatmeal Spice

https://www.boristhebrave.com/2026/07/05/oatmeal-spice/
1•ibobev•10m ago•0 comments

Commodore 64 Basic Dungeon Crawler

https://retrogamecoders.com/c64-basic-dungeon-part7/
1•ibobev•10m ago•0 comments

Meccha Chameleon

https://store.steampowered.com/app/4704690/MECCHA_CHAMELEON/
1•doener•12m ago•0 comments

Latent Space as a New Medium

https://kk.org/thetechnium/latent-space-as-a-new-medium/
1•arbesman•13m ago•0 comments

crates.io: Development Update

https://blog.rust-lang.org/2026/07/13/crates-io-development-update/
2•dubi_steinkek•14m ago•0 comments

Evaluating the GPT-5.6 Family

https://www.braintrust.dev/blog/gpt56-decision-map
1•mooreds•15m ago•0 comments

I built a website to help artists book their tour

https://stevehofstetter.substack.com/p/i-built-a-website-to-help-artists
1•mooreds•16m ago•0 comments

Spain's mega EU debt proposal sets up showdown with northern European countries

https://www.politico.eu/article/spain-mega-eu-debt-proposal-sets-up-showdown-with-northern-europe...
1•mooreds•16m ago•0 comments

Drawings in untrained neural networks survive the training process

https://twitter.com/willdepue/status/2076581570782056523
1•LorenDB•16m ago•0 comments

Show HN: Build Rules for Claude Code, Cursor, and Codex

https://kastra.ai/
1•carlosjimenez1•17m ago•0 comments

Reading is the art of attention. What a mess we've made of that word

https://aworkinglibrary.com/writing/umyazu
2•speckx•18m ago•0 comments

AI as Search Engine and Printing Press Aid: Local Education Data Munging

https://middlesexgazette.org/news/vermonts-yardstick-moved/
1•mrkiouak•19m ago•1 comments

The American suburbs are better than you think

https://www.noahpinion.blog/p/the-american-suburbs-are-better-than
1•bilsbie•19m ago•1 comments
Open in hackernews

Grok uploaded my user directory to xAI's servers

https://twitter.com/a_green_being/status/2076598897779020159
76•tnolet•44m ago

Comments

newaccountman2•42m ago
"leopards ate my face" vibes
InsideOutSanta•5m ago
"This guy seems like the absolute worst person of all time, so I ran his LLM in his harness on my computer and gave it access to everything."

Having said that, this is still absolutely fucked up. People who should have known better also deserve not to be treated like shit. All of us should have known better at some points in our lives and didn't.

tnolet•40m ago
https://nitter.net/a_green_being/status/2076598897779020159#...
kardianos•34m ago
TLDR: Ran grok in $HOME. Surprised agent read content of folder.

On the other hand, I specifically had grok try hard NOT to read a known key in the project dir (it only saw the first part using a tool, to verify it was present). So there's that.

drakythe•26m ago
I'm not seeing the information about it having been run at $HOME, where are you seeing that?
swingboy•21m ago
The `repo_path` field.
stronglikedan•11m ago
Yeah, this is a lesson about learning how to use tools safely, not about tools abusing the user. The person that posted this probably blames the hammer when he hits his thumb.
SurajMishra•32m ago
I feel this is worse than running rm -rf on a root directory. Just saying.
hoppp•26m ago
Much worse, instead of the data gone it's a data leak.

Those ssh keys can be used to access private servers

steve1977•18m ago
Well, those ssh keys are protected by a strong passphrase, right?
hoppp•14m ago
The passphrase is optional, not everyone has it.

It also has to be a secure password, people often don't care because it's a local file and generally not exposed to the internet.

crimsonnoodle58•16m ago
SSH keys can be limited by IP in authorized hosts.

The SSH port itself can be limited by IP in firewalls.

Finally, the SSH private key can be encrypted with a password.

Defense in depth is needed. Storing a ssh private key in plain text with no IP restriction is no different to having a password manager store your passwords in plain text on your HD.

hoppp•12m ago
All those things are optional.

Doesn't make uploading the keys that much better. Now is the time for key rotation everywhere. Fast.

throwaway2027•30m ago
You should assume by default for any AI agent that it will read anything. Even if you manually allow/deny and "restrict" it to a subdirectory I would still hold that assumption. Claude reads your ~/.bash_history too so when you ran something it can use that same command.
ben_w•15m ago
Indeed. I use a spare laptop that has no accounts other than (1) the AI themselves, (2) a secondary GitHub account which has "untrusted devices" in the name to emphasise the point.

If I recall correctly, I did a full system reset before setting it up this way. It's certainly not logged into iCloud etc.

cpburns2009•24m ago
Honestly what else would you expect an AI agent to do when using remote inference? Isn't giving full context into your code base the whole point?
drakythe•24m ago
And this is why so many people run these inside of VMs. Still baffles me how these tools became so accepted when tossing out a `curl -o example.com/script.sh | bash` would be met with (rightful) skepticism until that script was examined.
LetsGetTechnicl•23m ago
So many of the replies are saying that they should've restricted access using .md files and whatnot. Is really any guarantee that they even follow those? It seems like even if you ask pretty please don't touch those files, there's a chance they will. So many people have just willingly installed spyware on their computers and big tech calls this the next big thing.
fhdkweig•20m ago
That's the whole reason I refuse to install Google Drive or Dropbox's desktop applications. I only use the web interface so I know exactly what gets uploaded and when. I assume that anything running on my computer gets access to everything.
ricardobeat•16m ago
Sandboxing is not difficult, and harnesses like Claude Code have it built-in + other protection with auto mode.
Lwerewolf•16m ago
Only guarantee that you can get is the sandbox in which it operates. The model itself is a slot machine and can result in anything, and if its sandbox is nonexistent... here's one possibility.
da_chicken•11m ago
Yeah, I absolutely understand the allure of agentic AI, but I am absolutely not going to give shell access or data access to any agent. Certainly not with my permissions level. Until we can get something set up that gives strict schema-only access I'm going to copy and paste definitions for context. Yes that sucks, but it's my responsibility to protect the system just as much as it is to develop scripts and queries for it.
datakan•18m ago
Move fast and break things
greenavocado•18m ago
Copied this from an internal discord:

    https://gist.github.com/cereblab/dc9a40bc26120f4540e4e09b75ffb547

    Elon did this horrible thing, so I made grok build available for omp with it's own endpoint; Without sending your private repos and secret keys to them.

    -

    oh-my-pi-plugin-grok-build
    Standalone oh-my-pi extension for the xAI Grok Build subscription provider. It adds OAuth login, authoritative model discovery, and OpenAI Responses streaming with the request identity expected by Grok Build.

    Install (No-spywares):

    omp plugin install oh-my-pi-plugin-grok-build

    -

    https://github.com/metaphorics/oh-my-pi-plugin-grok-build

    Star me if you like it or if you hate spywares, lol.
ricardobeat•17m ago
“Grok uploaded” -> “I gave AI access to my home folder and messed up”
Bender•14m ago
A bot will do what a bot can do. One should assume they are giving DOGE shell access on their computer and adapt accordingly. I am trying to imagine the SELinux rules required to make a bot play nice and the more I think about it such rule complexity may even befuddle the NSA. Alternate methodology:

Give the bot it's own machine and only copy to it that which one would want DOGE having access to. Not a virtual machine, the bot will eventually escape. Give it a little RasPi or mini-PC with maximum power savings enabled, disk quotas and bandwidth limits. Instruct it to operate within those limits. Install a custom CA cert and force it's traffic through a Squid SSL Bump MitM proxy.

lobo_tuerto•14m ago
The real solution to these kind of problems is sandboxing. I use podman through a bash script to launch a container whenever I want an agent to work on one of my repos. When done I just generate git patches and port back everything generated.

In this way I'm not afraid of letting the agents totally lose on my computer.

adamors•13m ago
Xcancel link https://xcancel.com/a_green_being/status/2076598897779020159
annagio_•8m ago
This needs to stop as users do not always read the policies, which end like this person. You use AI, you agreed, they do what ever policies say.
crimsonnoodle58•8m ago
How are they optional?

You obviously haven't worked anywhere security sensitive.

I'm not talking about whether what Grok did is bad or good, I'm talking about protecting your private key and the servers you connect to.

An unencrypted private key is no different to an unencrypted password manager, and thats a fact. Dont store secrets in plain text.

madaxe_again•9m ago
I once ran rm -rf on a live NFS mount that the live operations of a major brokerage depended upon.

I challenge any agent to do worse than an intern with root access.

rbanffy•8m ago
Reminds me I need to update my `burn.sh` script.
swatcoder•6m ago
[delayed]