frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Building my npx business card

https://ashley.dev/posts/turning-feedback-into-features/
8•edent•1y ago

Comments

steele•1y ago
Ooh, free real estate, let's colonize and gentrify package management
aabhay•1y ago
Lmao, gentrify cracked me up
neilv•1y ago
Do these npx business cards run arbitrary code on your computer?
cypherpunks01•1y ago
npx

Run a command from a local or remote npm package

Description

This command allows you to run an arbitrary command from an npm package (either one installed locally, or fetched remotely), in a similar context as running it via npm run.

neilv•1y ago
Yes, then is a "command from an npm package" arbitrary code?

And what is this "similar context as running it via npm run"?

Would it be better to answer the question directly?

joshka•1y ago
Yeah, this seems like a very smart but inherently flawed idea.
cypherpunks01•1y ago
Yes I agree! OSS package management ecosystems are a great idea, but allowing submissions without any review or vetting is just asking for supply chain attacks.
Xss3•1y ago
May as well just release an executable tbh.
theamk•1y ago
Reminds me of JAPH [0] - a tiny Perl program that was used in email/newsgroup signature to give it personal touch.

[0] https://www.perlmonks.org/?node_id=412464

watusername•1y ago
Terminal business cards are a nice idea, but RCE business cards are just asking for trouble. Instead of npx, what happened to good'ol curl? Something like

$ curl ashley.dev

Some decades ago, we had finger (https://en.wikipedia.org/wiki/Finger_%28protocol%29) which is designed for this very use case. Sadly it's no longer installed by default with most distros:

$ finger @ashley.dev

queezey•1y ago
This would be a great advertisement for security consulting.

"I was just able to run arbitrary code on your computer. Here is a sample of your recent browser history. Let me tell you help you mitigate your security vulnerabilities."

QuadRF can spot drones and see WiFi through my wall

https://www.jeffgeerling.com/blog/2026/quadrf-can-spot-drones-and-see-wifi-through-my-wall/
56•speckx•44m ago•16 comments

Late Bronze Age Collapse

https://acoup.blog/2026/01/30/collections-the-late-bronze-age-collapse-a-very-brief-introduction/
197•dmonay•4h ago•104 comments

A Love Letter to Flashcards

https://lesleylai.info/en/flashcards/
40•surprisetalk•1h ago•8 comments

Lost city discovered beneath Egypt's desert with ancient church

https://www.dailymail.com/sciencetech/article-15956159/Incredible-lost-city-discovered-Egypts-des...
56•Bender•4d ago•12 comments

Write code like a human will maintain it

https://unstack.io/write-code-like-a-human-will-maintain-it
202•ScottWRobinson•3h ago•167 comments

My burner email blocklist blocked me

https://benjamin.piouffle.com/blog/burner-email-blocklists/
41•betree•1d ago•38 comments

Successful Companies Go Blind

https://ianreppel.org/how-successful-companies-go-blind/
72•speckx•3h ago•31 comments

Garnix Is Joining Shopify

https://garnix.io/blog/shutting-down/
11•l2dy•22m ago•10 comments

Good Tools Are Invisible

https://www.gingerbill.org/article/2026/07/10/good-tools-are-invisible/
164•theanonymousone•6h ago•105 comments

GPT-5.6

https://openai.com/index/gpt-5-6/
1468•logickkk1•23h ago•1035 comments

The mathematical secrets of Barcelona's Sagrada Familia

https://mappingignorance.org/2026/06/30/sagrada-familia/
77•Gedxx•1w ago•15 comments

Show HN: Getting GLM 5.2 running on my slow computer

https://github.com/JustVugg/colibri
804•vforno•1d ago•200 comments

In Emacs, Everything Looks Like a Service

http://yummymelon.com/devnull/in-emacs-everything-looks-like-a-service.html
114•kickingvegas•8h ago•66 comments

Train sim created by just one person is being called the best ever made

https://kotaku.com/a-train-sim-created-by-just-one-person-is-being-called-the-best-ever-made-2000...
780•oumua_don17•5d ago•326 comments

Laylo (YC S20) Is Hiring a Head of Finance

https://www.ycombinator.com/companies/laylo/jobs/qce41D2-head-of-finance
1•amellin794•4h ago

Alternate Clock Designs and Time Systems

https://serialc.github.io/altClocks/
23•ethanpil•3d ago•8 comments

Computation as a Universal and Fundamental Concept

https://ergo.org/courses/computation-as-a-universal-and-fundamental-concept
7•simonpure•1h ago•1 comments

EU Commission: addictive design Instagram and Facebook in breach of the DSA

https://ec.europa.eu/commission/presscorner/home/en
181•jeroenhd•5h ago•130 comments

Show HN: Runloom – Go-style coroutines for Python free-threaded

https://github.com/robertsdotpm/runloom
21•Uptrenda•3h ago•11 comments

How RCA Victor sold Sound Service to classrooms in 1939

https://pncnmnp.github.io/blogs/rca-victor-education.html
10•pncnmnp•20h ago•3 comments

Apple Silicon Exec Explains Mac Mini AI Demand and On-Device Future

https://www.macrumors.com/2026/07/06/apple-silicon-exec-explains-mac-mini-ai-demand/
161•tosh•4d ago•229 comments

Ditching Vagrant: VMs with KVM and Virsh on Debian

https://benjamintoll.com/2026/06/29/on-ditching-vagrant/
64•fanf2•4d ago•25 comments

Interview with Mitchell Hashimoto about Ghostty and Zig

https://alexalejandre.com/programming/interview-with-mitchell-hashimoto/
332•veqq•23h ago•180 comments

AI-generated videos to maximally drive a target brain region

https://nevo-project.epfl.ch/
202•smusamashah•9h ago•196 comments

ActivityPub over ATProto

https://berjon.com/ap-at/
41•albuic•3h ago•16 comments

Hy3

https://hy.tencent.com/research/hy3
533•andai•1d ago•111 comments

Unified Memory, Explained: Why Mini PCs Can Run 70B Models a Big GPU Can't

https://vettedconsumer.com/unified-memory-explained-why-mini-pcs-can-run-70b-models-a-big-gpu-can...
40•ermantrout•6h ago•34 comments

EU Parliament greenlights Chat Control 1.0

https://www.patrick-breyer.de/en/eu-parliament-greenlights-chat-control-1-0-breyer-our-children-l...
1541•rapnie•1d ago•782 comments

The Annotated JEPA

https://elonlit.com/scrivings/the-annotated-jepa/
7•surprisetalk•2h ago•0 comments

The glass backbone: Why the Army's logistics will break in the next war

https://mwi.westpoint.edu/the-glass-backbone-why-the-armys-logistics-will-break-in-the-next-war/
431•baud147258•1d ago•592 comments