frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

ZCode – Harness for GLM-5.2

https://zcode.z.ai/en
171•chvid•3h ago•199 comments

Show HN: Searchable directory of 22k+ products from worker-owned co-ops

https://www.workerowned.info/
195•IESAI_ski•4h ago•33 comments

For first time, a cell built from scratch grows and divides

https://www.quantamagazine.org/for-the-first-time-a-cell-built-from-scratch-grows-and-divides-202...
716•defrost•10h ago•248 comments

Meta Caps Internal AI Token Spending After Costs Approach Billions in 2026

https://mlq.ai/news/meta-caps-internal-ai-token-spending-after-costs-approach-billions-in-2026/
17•typeofhuman•1h ago•4 comments

What to learn to be a graphics programmer

https://blog.demofox.org/2026/07/01/what-to-learn-to-be-a-graphics-programmer/
223•atan2•7h ago•116 comments

The Underhanded C Contest

https://underhanded-c.org/
28•ccabraldev•2h ago•5 comments

The <Usermedia> HTML Element

https://developer.chrome.com/blog/usermedia-html-element
16•twapi•1h ago•8 comments

Physical disc production ending in Jan 2028 for new games on PlayStation

https://blog.playstation.com/2026/07/01/physical-disc-production-ending-in-january-2028-for-new-g...
584•Tiberium•12h ago•613 comments

FFmpeg 9.1's new AAC encoder

https://hydrogenaudio.org/index.php/topic,129691.0.html
275•ledoge•10h ago•90 comments

Chip Off the Old Block

https://www.astralcodexten.com/p/chip-off-the-old-block
34•paulpauper•3h ago•4 comments

Opening up 'Zero-Knowledge Proof' technology to promote privacy in age assurance

https://blog.google/innovation-and-ai/technology/safety-security/opening-up-zero-knowledge-proof-...
35•consumer451•2h ago•20 comments

Qualcomm Linux 2.0

https://www.qualcomm.com/developer/blog/2026/06/qualcomm-linux-2-now-available
44•gilgamesh3•4h ago•9 comments

Billions of doses later: Global review confirms mRNA vaccines safe and effective

https://news.ubc.ca/2026/06/mrna-vaccines-are-safe-effective-and-full-of-promise/
16•coloneltcb•26m ago•5 comments

Proliferate (YC S25) Is Hiring

https://www.ycombinator.com/companies/proliferate/jobs/mMHvKR9-founding-product-engineer
1•pablo24602•4h ago

Why jet engines aren't made in China

https://aakash.substack.com/p/why-jet-engines-arent-made-in-china
64•paulpauper•1d ago•35 comments

Box3D, an open source 3D physics engine

https://box2d.org/posts/2026/06/announcing-box3d/
405•makepanic•12h ago•90 comments

Internal Combustion Engine (2021)

https://ciechanow.ski/internal-combustion-engine/
280•StefanBatory•12h ago•73 comments

Ask HN: Who is hiring? (July 2026)

155•whoishiring•10h ago•171 comments

Healthy but sedentary people show early decline in cellular energy production

https://news.cuanschutz.edu/news-stories/healthy-but-sedentary-individuals-show-early-decline-in-...
50•littlexsparkee•2h ago•37 comments

Monetization Gateway: Charge for any resource behind Cloudflare via x402

https://blog.cloudflare.com/monetization-gateway/
247•soheilpro•11h ago•157 comments

I Left Harry's All-Night Hamburgers

https://escapepod.org/2013/09/14/ep413-why-i-left-harrys-all-night-hamburgers/
64•rbanffy•3h ago•8 comments

Launch HN: Parsewise (YC P25) – Reason Across Documents with an API

45•gergelycsegzi•11h ago•44 comments

How We Made IPFS Content Publishing 10x Faster

https://probelab.io/blog/optimistic-provide/
145•dennis-tra•9h ago•48 comments

The Apple Disk II Controller Card

https://www.bigmessowires.com/2021/11/12/the-amazing-disk-ii-controller-card/
37•stmw•2d ago•6 comments

Fable 5 Is Back

https://twitter.com/claudeai/status/2072402636813607381
308•mfiguiere•5h ago•283 comments

Flavor Graveyard

https://www.benjerry.com/flavors/flavor-graveyard
17•NaOH•3d ago•9 comments

Weave Robotics launches Isaac 1, a $7,999 home robot with Fall 2026 deliveries

https://www.weaverobotics.com/isaac-1
68•ryanmerket•6h ago•117 comments

Show HN: Curvytron 2, I rewrote my browser party game, 10 years later

https://curvytron2.com/
7•tom32i•1d ago•3 comments

How do wombats poop cubes? Scientists get to the bottom of the mystery

https://www.science.org/content/article/how-do-wombats-poop-cubes-scientists-get-bottom-mystery
23•bushwart•1d ago•7 comments

Ask HN: Who wants to be hired? (July 2026)

106•whoishiring•10h ago•244 comments
Open in hackernews

Building my npx business card

https://ashley.dev/posts/turning-feedback-into-features/
8•edent•1y ago

Comments

steele•1y ago
Ooh, free real estate, let's colonize and gentrify package management
aabhay•1y ago
Lmao, gentrify cracked me up
neilv•1y ago
Do these npx business cards run arbitrary code on your computer?
cypherpunks01•1y ago
npx

Run a command from a local or remote npm package

Description

This command allows you to run an arbitrary command from an npm package (either one installed locally, or fetched remotely), in a similar context as running it via npm run.

neilv•1y ago
Yes, then is a "command from an npm package" arbitrary code?

And what is this "similar context as running it via npm run"?

Would it be better to answer the question directly?

joshka•1y ago
Yeah, this seems like a very smart but inherently flawed idea.
cypherpunks01•1y ago
Yes I agree! OSS package management ecosystems are a great idea, but allowing submissions without any review or vetting is just asking for supply chain attacks.
Xss3•1y ago
May as well just release an executable tbh.
theamk•1y ago
Reminds me of JAPH [0] - a tiny Perl program that was used in email/newsgroup signature to give it personal touch.

[0] https://www.perlmonks.org/?node_id=412464

watusername•1y ago
Terminal business cards are a nice idea, but RCE business cards are just asking for trouble. Instead of npx, what happened to good'ol curl? Something like

$ curl ashley.dev

Some decades ago, we had finger (https://en.wikipedia.org/wiki/Finger_%28protocol%29) which is designed for this very use case. Sadly it's no longer installed by default with most distros:

$ finger @ashley.dev

queezey•1y ago
This would be a great advertisement for security consulting.

"I was just able to run arbitrary code on your computer. Here is a sample of your recent browser history. Let me tell you help you mitigate your security vulnerabilities."