frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

The US ambassador had Belgian police stop our reporting

https://europeancorrespondent.com/en/r/the-us-ambassador-had-belgian-police-stop-our-reporting
487•robtherobber•4h ago•175 comments

Words Are a Byproduct of Consciousness. For LLMs, It's Backwards

https://ranpara.net/posts/words-are-a-byproduct-of-consciousness/
24•DevarshRanpara•20m ago•15 comments

Memoirs of Extraordinary Popular Delusions and the Madness of Crowds (1852)

https://www.gutenberg.org/ebooks/24518
41•lstodd•1h ago•7 comments

Building a custom octocopter from scratch with no prior hardware experience

https://karolina.mgdubiel.com/drone/
177•noleary•2d ago•40 comments

European digital ID wallets rely on safety services of Google and Apple

https://waag.org/en/article/european-digital-id-wallets-are-gift-google-and-apple/
470•donohoe•4h ago•200 comments

Open Source Low Tech

https://opensourcelowtech.org/
437•grep_it•4d ago•93 comments

Exercise intensity influences body composition in healthy older adults (2025)

https://www.maturitas.org/article/S0378-5122(25)00571-7/fulltext
107•bookofjoe•4h ago•85 comments

Zluda 6 release (run unmodified CUDA applications on non-Nvidia GPUs)

https://vosen.github.io/ZLUDA/blog/zluda-update-q1q2-2026/
49•Tiberium•4h ago•5 comments

Qwen 3.6 27B is the sweet spot for local development

https://quesma.com/blog/qwen-36-is-awesome/
1025•stared•21h ago•668 comments

Parse, Don't Validate – In a Language That Doesn't Want You To

https://cekrem.github.io/posts/parse-dont-validate-typescript/
79•fagnerbrack•3h ago•60 comments

Looking Ahead to Postgres 19

https://www.snowflake.com/en/blog/engineering/postgresql-19-features-beta/
5•thinkingemote•22m ago•0 comments

.self: A new top-level domain designed to support self-hosting

https://hccf.onmy.cloud/2026/06/21/reclaiming-our-digital-selves-hccfs-vision-for-a-human-centere...
587•HumanCCF•18h ago•335 comments

Free the Icons

https://weblog.rogueamoeba.com/2026/06/26/free-the-icons/
564•zdw•2d ago•204 comments

Have You Restarted Your Computer This Week?

https://taonaw.com/2026/06/27/have-you-restarted-your-computer.html
10•surprisetalk•21m ago•8 comments

Who are the fire-tamers?

https://aeon.co/essays/who-are-the-fire-taming-healers-of-modern-france
18•Caiero•1d ago•8 comments

Memory Safe Context Switching

https://fil-c.org/context_switches
168•modeless•13h ago•26 comments

I'm building a Space Cadet Pinball Machine! [video]

https://www.youtube.com/watch?v=lHQ8c8i42VE
20•skibz•3d ago•6 comments

All Logic, No Bite

https://lcamtuf.substack.com/p/all-logic-no-bite
24•surprisetalk•3d ago•6 comments

LongCat-2.0, a large-scale MoE model with 1.6T total and 48B Active

https://longcat.chat/blog/longcat-2.0/
206•benjiro29•14h ago•55 comments

Rocketlab acquires Iridium

https://investors.rocketlabcorp.com/news-releases/news-release-details/rocket-lab-acquire-iridium...
434•everfrustrated•1d ago•288 comments

Linux for the Sega MegaDrive

https://github.com/LinuxMD/linuxmd
166•HardwareLust•23h ago•38 comments

Knoppix

https://www.knopper.net/knoppix/index-en.html
3•hoangvmpc•1h ago•0 comments

Old Computer Challenge

http://occ.sdf.org/
91•wrxd•2d ago•41 comments

Exploring PDP-1 Lisp (1960)

https://obsolescence.dev/pdp1-lisp-introduction.html
94•ozymandiax•13h ago•23 comments

One million passports leaked online

https://www.theverge.com/tech/947157/passports-data-breach-cannabis-club-systems-nefos-puffpal
361•jruohonen•2d ago•211 comments

Why problem statements aren't enough

https://letters.unchartedpathbreakthroughs.com/posts/why-problem-statements-arent-enough
15•mooreds•4d ago•6 comments

Ornith-1.0: self-improving open-source models for agentic coding

https://github.com/deepreinforce-ai/Ornith-1
235•danboarder•21h ago•44 comments

The operating cost starts after the demo

https://twoheads.net/the-promise-is-unattended-work/
52•hellokfk•4d ago•39 comments

How to corrupt an SQLite database file

https://www.sqlite.org/howtocorrupt.html
126•tosh•3d ago•31 comments

US Supreme Court rules geofence warrants require constitutional protections

https://www.theguardian.com/us-news/2026/jun/29/supreme-court-geofence-warrants-case-decision
568•cdrnsf•22h ago•264 comments
Open in hackernews

Building my npx business card

https://ashley.dev/posts/turning-feedback-into-features/
8•edent•1y ago

Comments

steele•1y ago
Ooh, free real estate, let's colonize and gentrify package management
aabhay•1y ago
Lmao, gentrify cracked me up
neilv•1y ago
Do these npx business cards run arbitrary code on your computer?
cypherpunks01•1y ago
npx

Run a command from a local or remote npm package

Description

This command allows you to run an arbitrary command from an npm package (either one installed locally, or fetched remotely), in a similar context as running it via npm run.

neilv•1y ago
Yes, then is a "command from an npm package" arbitrary code?

And what is this "similar context as running it via npm run"?

Would it be better to answer the question directly?

joshka•1y ago
Yeah, this seems like a very smart but inherently flawed idea.
cypherpunks01•1y ago
Yes I agree! OSS package management ecosystems are a great idea, but allowing submissions without any review or vetting is just asking for supply chain attacks.
Xss3•1y ago
May as well just release an executable tbh.
theamk•1y ago
Reminds me of JAPH [0] - a tiny Perl program that was used in email/newsgroup signature to give it personal touch.

[0] https://www.perlmonks.org/?node_id=412464

watusername•1y ago
Terminal business cards are a nice idea, but RCE business cards are just asking for trouble. Instead of npx, what happened to good'ol curl? Something like

$ curl ashley.dev

Some decades ago, we had finger (https://en.wikipedia.org/wiki/Finger_%28protocol%29) which is designed for this very use case. Sadly it's no longer installed by default with most distros:

$ finger @ashley.dev

queezey•1y ago
This would be a great advertisement for security consulting.

"I was just able to run arbitrary code on your computer. Here is a sample of your recent browser history. Let me tell you help you mitigate your security vulnerabilities."