frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

alpr.watch

https://alpr.watch/
331•theamk•3h ago•169 comments

No Graphics API

https://www.sebastianaaltonen.com/blog/no-graphics-api
47•ryandrake•38m ago•5 comments

40 percent of fMRI signals do not correspond to actual brain activity

https://www.tum.de/en/news-and-events/all-news/press-releases/details/40-percent-of-mri-signals-d...
310•geox•6h ago•129 comments

Mozilla appoints new CEO Anthony Enzor-Demeo

https://blog.mozilla.org/en/mozilla/leadership/mozillas-next-chapter-anthony-enzor-demeo-new-ceo/
270•recvonline•6h ago•386 comments

The World Happiness Report is beset with methodological problems

https://yaschamounk.substack.com/p/the-world-happiness-report-is-a-sham
32•thatoneengineer•19h ago•21 comments

GPT Image 1.5

https://openai.com/index/new-chatgpt-images-is-here/
33•charlierguo•1h ago•16 comments

FVWM-95

https://fvwm95.sourceforge.net/
84•mghackerlady•2h ago•51 comments

GitHub will begin charging for self-hosted action runners on March 2026

https://github.blog/changelog/2025-12-16-coming-soon-simpler-pricing-and-a-better-experience-for-...
181•nklow•2h ago•34 comments

Sega Channel: VGHF Recovers over 100 Sega Channel ROMs (and More)

https://gamehistory.org/segachannel/
160•wicket•6h ago•20 comments

Pricing Changes for GitHub Actions

https://resources.github.com/actions/2026-pricing-changes-for-github-actions/
343•kevin-david•2h ago•199 comments

Show HN: Sqlit – A lazygit-style TUI for SQL databases

https://github.com/Maxteabag/sqlit
43•MaxTeabag•1d ago•3 comments

Artie (YC S23) Is Hiring Senior Enterprise AES

https://www.ycombinator.com/companies/artie/jobs/HyaHWUs-senior-enterprise-ae
1•j-cheong•2h ago

Rust GCC back end: Why and how

https://blog.guillaume-gomez.fr/articles/2025-12-15+Rust+GCC+backend%3A+Why+and+how
124•ahlCVA•6h ago•57 comments

Nvidia Nemotron 3 Family of Models

https://research.nvidia.com/labs/nemotron/Nemotron-3/
56•ewt-nv•1d ago•8 comments

Purrtran – ᓚᘏᗢ – A Programming Language for Cat People

https://github.com/cmontella/purrtran
189•simonpure•3d ago•26 comments

Confuse some SSH bots and make botters block you

https://mirror.newsdump.org/confuse-some-ssh-bots.html
9•Bender•5d ago•1 comments

Full Unicode Search at 50× ICU Speed with AVX‑512

https://ashvardanian.com/posts/search-utf8/
155•ashvardanian•1d ago•65 comments

AIsbom – open-source CLI to detect "Pickle Bombs" in PyTorch models

https://github.com/Lab700xOrg/aisbom
41•lab700xdev•4h ago•27 comments

The GitHub Actions control plane is no longer free

https://www.blacksmith.sh/blog/actions-pricing
182•adityajp•2h ago•43 comments

A brief history of Times New Roman

https://typographyforlawyers.com/a-brief-history-of-times-new-roman.html
93•tosh•6h ago•47 comments

SHARP, an approach to photorealistic view synthesis from a single image

https://apple.github.io/ml-sharp/
478•dvrp•15h ago•100 comments

Debug Mode for LLMs in vLLora

https://vllora.dev/blog/debug-mode/
41•mrun1729•4d ago•3 comments

Show HN: Interactive Common Lisp: An Enhanced REPL

https://github.com/atgreen/icl
70•atgreen•2d ago•2 comments

Vibe coding creates fatigue?

https://www.tabulamag.com/p/too-fast-to-think-the-hidden-fatigue
75•rom16384•1h ago•68 comments

Show HN: Solving the ~95% legislative coverage gap using LLM's

https://lustra.news/
16•fokdelafons•5h ago•7 comments

Show HN: My Tizen multiplayer drawing game flopped, but then hit 100M drawings

https://www.drawize.com/
6•lombarovic•3h ago•0 comments

Show HN: A real-time 4D fractal explorer in the browser using WebGPU

https://bryanjj.github.io/nebula/
19•bryan0•4d ago•7 comments

A2UI: A Protocol for Agent-Driven Interfaces

https://a2ui.org/
136•makeramen•10h ago•63 comments

AI is wiping out entry-level tech jobs, leaving graduates stranded

https://restofworld.org/2025/engineering-graduates-ai-job-losses/
78•cratermoon•2h ago•76 comments

Canada's Carney called out for 'utilizing' British spelling

https://www.bbc.com/news/articles/cj69d89l8l5o
67•haunter•22h ago•175 comments
Open in hackernews

Building my npx business card

https://ashley.dev/posts/turning-feedback-into-features/
8•edent•7mo ago

Comments

steele•7mo ago
Ooh, free real estate, let's colonize and gentrify package management
aabhay•7mo ago
Lmao, gentrify cracked me up
neilv•7mo ago
Do these npx business cards run arbitrary code on your computer?
cypherpunks01•7mo ago
npx

Run a command from a local or remote npm package

Description

This command allows you to run an arbitrary command from an npm package (either one installed locally, or fetched remotely), in a similar context as running it via npm run.

neilv•7mo ago
Yes, then is a "command from an npm package" arbitrary code?

And what is this "similar context as running it via npm run"?

Would it be better to answer the question directly?

joshka•7mo ago
Yeah, this seems like a very smart but inherently flawed idea.
cypherpunks01•7mo ago
Yes I agree! OSS package management ecosystems are a great idea, but allowing submissions without any review or vetting is just asking for supply chain attacks.
Xss3•7mo ago
May as well just release an executable tbh.
theamk•7mo ago
Reminds me of JAPH [0] - a tiny Perl program that was used in email/newsgroup signature to give it personal touch.

[0] https://www.perlmonks.org/?node_id=412464

watusername•7mo ago
Terminal business cards are a nice idea, but RCE business cards are just asking for trouble. Instead of npx, what happened to good'ol curl? Something like

$ curl ashley.dev

Some decades ago, we had finger (https://en.wikipedia.org/wiki/Finger_%28protocol%29) which is designed for this very use case. Sadly it's no longer installed by default with most distros:

$ finger @ashley.dev

queezey•7mo ago
This would be a great advertisement for security consulting.

"I was just able to run arbitrary code on your computer. Here is a sample of your recent browser history. Let me tell you help you mitigate your security vulnerabilities."