frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Resurrecting flip phone typing as a Linux driver

https://github.com/FoxMoss/libt9
28•foxmoss•57m ago•8 comments

Backyard Coffee and Jazz in Kyoto

https://thedeletedscenes.substack.com/p/backyard-coffee-and-jazz-in-kyoto
292•wyclif•5h ago•128 comments

Minimal Boolean Formulas

https://research.swtch.com/boolean
52•mcyc•3d ago•4 comments

Ocarina of Time Randomizer

https://ootrandomizer.com/
46•nickswalker•2d ago•14 comments

Vera C. Rubin Observatory first images

https://rubinobservatory.org/news/rubin-first-look/cosmic-treasure-chest
10•phsilva•4h ago•9 comments

Launch HN: Reducto Studio (YC W24) – Build accurate document pipelines, fast

42•adit_a•4h ago•35 comments

uv: An extremely fast Python package and project manager, written in Rust

https://github.com/astral-sh/uv
269•chirau•3h ago•122 comments

Environmental Impacts of Artificial Intelligence

https://www.greenpeace.de/publikationen/environmental-impacts-of-artificial-intelligence
3•doener•25m ago•0 comments

Making TRAMP go Brrrr

https://coredumped.dev/2025/06/18/making-tramp-go-brrrr./
131•celeritascelery•5h ago•73 comments

Rocknix is an immutable Linux distribution for handheld gaming devices

https://rocknix.org/
101•PaulHoule•3d ago•34 comments

Tesla Robotaxi Videos Show Speeding, Driving into Wrong Lane

https://www.bloomberg.com/news/articles/2025-06-23/tesla-robotaxi-videos-show-speeding-driving-into-wrong-lane
44•jmsflknr•34m ago•30 comments

Judge denies creating "mass surveillance program" harming all ChatGPT users

https://arstechnica.com/tech-policy/2025/06/judge-rejects-claim-that-forcing-openai-to-keep-chatgpt-logs-is-mass-surveillance/
72•merksittich•1h ago•28 comments

New Linux udisks flaw lets attackers get root on major Linux distros

https://www.bleepingcomputer.com/news/linux/new-linux-udisks-flaw-lets-attackers-get-root-on-major-linux-distros/
310•smig0•3d ago•200 comments

Transparent Ambition: on translucent user interfaces

https://take.surf/2025/06/19/transparent-ambition
46•goranmoomin•1d ago•26 comments

A deep critique of AI 2027's bad timeline models

https://www.lesswrong.com/posts/PAYfmG2aRbdb74mEp/a-deep-critique-of-ai-2027-s-bad-timeline-models
31•paulpauper•1h ago•6 comments

I Use My Terminal

https://jyn.dev/how-i-use-my-terminal/
133•todsacerdoti•4h ago•77 comments

First methane-powered sea spiders found crawling on the ocean floor

https://www.cnn.com/2025/06/17/science/spiders-deep-sea-methane-new-species
10•bookofjoe•2d ago•2 comments

WhatsApp banned on House staffers' devices

https://www.axios.com/2025/06/23/whatsapp-house-congress-staffers-messaging-app
148•fahd777•4h ago•80 comments

Interesting Bits of Postgres Grammar

https://steve.dignam.xyz/2025/06/20/interesting-bits-of-postgres-grammar/
39•sbdchd•4h ago•1 comments

"The Last of Us Part II" Seattle Locations Tour

https://docs.google.com/document/d/1gfFoe2xVoS9GzmmcbGUjTVVtss1Jwh4Yi-73C6Trn-I/edit?usp=sharing
16•lenocinor•4h ago•1 comments

NASA's Voyager Found a 30k-50k Kelvin "Wall" at the Edge of Solar System

https://www.iflscience.com/nasas-voyager-spacecraft-found-a-30000-50000-kelvin-wall-at-the-edge-of-our-solar-system-79454
120•world2vec•3h ago•86 comments

Python can run Mojo now

https://koaning.io/posts/giving-mojo-a-spin/
291•cantdutchthis•3d ago•134 comments

Cataphract: Medieval-fantasy roleplaying wargame, in the Black-Sea C. 1300

https://samsorensen.blot.im/cataphracts-design-diary-1
135•vidro3•4d ago•28 comments

Show HN: Pickaxe – a TypeScript library for building AI agents

https://github.com/hatchet-dev/pickaxe
14•abelanger•3d ago•9 comments

RaptorCast: Designing a Messaging Layer

https://www.category.xyz/blogs/raptorcast-designing-a-messaging-layer
28•wwolffrec•13h ago•12 comments

Using Home Assistant, adguard home and an $8 smart outlet to avoid brain rot

https://www.romanklasen.com/blog/beating-brainrot-by-button/
347•remuskaos•23h ago•181 comments

Homotopy Equivalences

https://bartoszmilewski.com/2025/06/20/weak-homotopy-equivalences/
58•ibobev•3d ago•12 comments

Ford Will Keep Battery Factory Even If Republicans Ax Tax Break

https://www.nytimes.com/2025/06/23/business/ford-battery-factory-electric-vehicles.html
12•doener•1h ago•7 comments

Klein Bottle Amazon Brand Hijacking (2021)

https://www.kleinbottle.com/Amazon_Brand_Hijacking.html
414•sebg•1d ago•216 comments

Nano-Vllm: lightweight vLLM implementation built from scratch

https://github.com/GeeeekExplorer/nano-vllm
90•simonpure•14h ago•13 comments
Open in hackernews

WhatsApp banned on House staffers' devices

https://www.axios.com/2025/06/23/whatsapp-house-congress-staffers-messaging-app
148•fahd777•4h ago

Comments

sandworm101•4h ago
Good. Another point to be made when my friends push me to install bloated spyware just to plan a pizza party.

Use Signal.

SketchySeaBeast•4h ago
> Use signal.

... but not for planning strikes into other countries.

sandworm101•4h ago
Well, if you just cannot be botherer to drive to the scif, and if you are best buds with the man in charge, do whatever least impacts your workout schedule.
FuriouslyAdrift•3h ago
What, you don't bring your SCIF wherever you go?

https://www.theemcshop.com/benchtop-faraday-tents/select-fab...

game_the0ry•4h ago
That wasn't signal's fault. They accidentally invited a journalist to the chat.
iAMkenough•4h ago
The federal government uses a third-party Signal client that saves their conversations in clear text to a database, which has been breached before. Clearly user error, not Signal's fault.
ben_w•4h ago
While it is correct that this was a PEBKAC error rather than Signal's error, I would like to suggest that, in general, all mobile phone apps are poor choices for anything as sensitive as planning a missile strike.
Zak•1h ago
I think one could design a procedure involving a mobile phone and Signal that would be reasonably secure for that kind of use case. The number one point on that procedure would be that the phone in question isn't used for anything other than secure communication.

Of course, the US government already has approved procedures and devices for secure communication, so senior official making up their own is reckless and unprofessional.

snickerbockers•3h ago
I agree in principle but this was (probably) a result of somebody fat-fingering the wrong contact and I do think there's some culpability on either the app or the phone for making that possible to do by mistake. Touch screens are an inherently clumsy interface, and Android in general has a lot of problems with UI elements suddenly moving around without warning as you're clicking on things. And then there's auto correct, UI hanging for several seconds at a time only to suddenly wake up and replay everything that you tried to do while it was non responsive, phantom button presses caused by the device getting too warm, etc.

None of this is meant to excuse these officials for not authenticating everybody in that group or for using highly informal text messages to plan an airstrike of all things.

Ultimately there's no excuse for leaking information when you're at that level of government; I just feel like the app industry needs to take responsibility and fix several obvious, well-known and common UI issues.

mapmeld•3h ago
I thought the latest on this was that the journalist's number was in an internal email from spokesman Brian Hughes, and software or human error led to his phone number being associated with Hughes in Waltz's phone contact
upofadown•3h ago
>but this was (probably) a result of somebody fat-fingering the wrong contact...

Supposedly, it was the result of a helpful Apple feature getting the wrong phone number for one of the intended group participants. Then Signal cheerfully used that wrong phone number to add the reporter to the group.

* https://www.theguardian.com/us-news/2025/apr/06/signal-group...

bee_rider•3h ago
I don’t think there’s any culpability or responsibility for the app, it doesn’t really bill itself as a good platform to do the high-level planning of military strikes.

If there are UI issues, they should be fixed because they are also annoying when planning somebody a surprise birthday party. (Or all the other stuff an encrypted chat app might be good for).

On the other hand, PGP just calling itself “pretty good” was pretty funny. Maybe that’s the level of active humbleness that everybody should aim for.

upofadown•3h ago
Yeah, but Signal really didn't help them at all with that. As with most of these phone oriented encrypted messengers, Signal is pretty sloppy with identity management. It would be hard to find a better example of this than SignalGate 1.0.

* https://articles.59.ca/doku.php?id=em:sg End to End Encrypted Messaging in the News: An Editorial Usability Case Study (my article)

snickerbockers•3h ago
He did say last year he was going to make this the most open and transparent administration in US history. What other administration would grant a hostile journalist an inside look at the planning and execution of an airstrike? Promises made, promises kept.
femiagbabiaka•3h ago
"hostile"
snickerbockers•3h ago
The article itself commented on how ironic it is that of all the journalists they could have invited to the chat, it was one who has been highly critical of the president and not some sycophant who might have kept it a secret or turned it into a puff piece like what I just did except without the sarcasm.
janice1999•4h ago
> Use Signal.

And preferable not a hacked version of Signal that sends your messages in plain text to another country and its spy agencies.

mikehotel•4h ago
See https://archive.ph/oXYXe for more info about TeleMessage version of Signal approved for use by government offices.
unethical_ban•1h ago
Are "paid for" and "properly approved for classified information" being conflated here? I may have missed something.
seethishat•3h ago
Or just call, email or txt.

Signal is only as secure as the device it runs on. Cell Phones are not secure. They are blackboxes and probably track you and may have built-in backdoors (only to be used to catch 'real' criminals), etc.

The idea that you can turn a device like that into some form of secure communication platform by installing an app is not realistic.

Tijdreiziger•3h ago
Yeah, but the location of your next pizza party probably isn’t a state secret either.
ceejayoz•3h ago
It is if the party's in the Situation Room at 3am.

https://www.fastcompany.com/91352935/pentagon-pizza-index-th...

alephnerd•3h ago
This is due to the addition of Meta AI in WhatsApp [0].

Unsurprisingly, data egress to third parties is a major security vector - especially for mission critical jobs like working in the House. MS apps incorporating Copilot have faced similar blocks as well.

This requirement for data stewardship is called out in HITPOL8 as well [1][2] (the AI tool standards set by the House CAO).

[0] - https://faq.whatsapp.com/203220822537614/?cms_platform=iphon...

[1] - https://cha.house.gov/_cache/files/4/2/42dca19e-194b-481e-b1...

[2] - https://cha.house.gov/_cache/files/0/8/08476380-95c3-4989-ad...

esafak•3h ago
Source for reason?
alephnerd•2h ago
The article as well as HITPOL8 [0][1]. WhatsApp has been blocked for the same reason Deepseek AI (the Deepseek app) is blocked - "Stewardship of Legislative Branch Data".

[0] - https://cha.house.gov/_cache/files/4/2/42dca19e-194b-481e-b1...

[1] - https://cha.house.gov/_cache/files/0/8/08476380-95c3-4989-ad...

v5v3•3h ago
Government: Zuck put a backdoor in WhatsApp or we will put you in a blacksite UFC ring and beat you up.

Also Government: WhatsApp has a backdoor. Don't use it.

kotaKat•3h ago
WhatsApp on TV: “Trust us! It’s encrypted :) :) :)”
scoot•3h ago
And on social media. Maybe I'm being too literal and pedantic, but it bugs me that they say "nobody" can read your messages. What's the point of using it if even the recipient can't read them (or the sender for that matter!).
gruez•3h ago
>Government: Zuck put a backdoor in WhatsApp or we will put you in a blacksite UFC ring and beat you up.

Source?

>Also Government: WhatsApp has a backdoor. Don't use it.

If "zuck" is really in the pocket of the US government, why should they worry about their own backdoors?

kurthr•3h ago
Once it's backdoored you don't know who's watching it.

It's the most hilarious thing about backdoors or collecting extensive covert intel on your own population, that any failure of opsec makes it much easier for all your adversaries to also spy on them in ways they would never otherwise be able to, then compromise them, and flip them.

bix6•3h ago
Why would there be a source for a backdoor of a closed source application?
some_random•3h ago
Usually when you make important claims it's expected you back them up with some sort of evidence.
0x457•2h ago
Sources to back up the claim, not source code of the application.
numair•3h ago
> Source?

https://www.facebook.com/security/advisories/cve-2019-3568

some_random•3h ago
Software frequently has bugs and sometimes they have security implications. In order to claim that a specific bug is a backdoor you need to have evidence beyond the existence of a bug.
latexr•3h ago
> If "zuck" is really in the pocket of the US government, why should they worry about their own backdoors?

Have you ever watched a Saturday morning cartoon? Minions betray their masters all the time. An effective evil overlord doesn’t underestimate their lackey’s capacity for duplicity and betrayal at a pivotal moment.

The most fun may even appreciate the gall: https://memory-alpha.fandom.com/wiki/The_Nagus_(episode)#:~:...

ElevenLathe•2h ago
House (legislative branch) staffers presumably don't want executive branch snoops reading their group chats. Doubly so for Democratic staffers not wanting specifically the Trump executive branch reading them.
nicce•3h ago
Also Government: uses Israel-backdoored custom Signal
immibis•3h ago
Yeah but Israel is Israel, so there's no actual problem there. Now, if it was Iran...
linotype•3h ago
What source do you have for that?
moomin•3h ago
Jeffrey Goldberg.
mattnewton•3h ago
They used it in view of press cameras, many articles about this but here’s the first one from Google for me: https://www.404media.co/mike-waltz-accidentally-reveals-obsc...
some_random•3h ago
The Government is made up of a huge number of organizations with competing goals, budgets, capabilities, and interests.
godelski•3h ago
Also government: installed special version of Signal that includes a backdoor (logs)

People: don't use Signal! It has a back door! Instead, use Telegram, it doesn't have encryption by default and is highly suspect of a foreign adversary

Also people: "I'll just send copies of all my messages to the government because they have my data anyways"

midtake•1h ago
Explains why Zuck has been training Brazilian jiu-jitsu.
baxtr•3h ago
>Andy Stone, a spokesperson for WhatsApp parent company Meta, said in a statement to Axios, "We disagree with the House Chief Administrative Officer's characterization in the strongest possible terms."

(..)

"Messages on WhatsApp are end-to-end encrypted by default, meaning only the recipients and not even WhatsApp can see them. This is a higher level of security than most of the apps on the CAO's approved list that do not offer that protection."

theodric•3h ago
When I was at unnamed major financial institution, we were ordered to stop using WhatsApp, but it had nothing to do with security and everything to do with avoiding even the possibility of the appearance of backroom dealing or production avoidance in the event of subpoena. Maybe the truth has more to do with that, or maybe not, what do I know, who are all you people anyway, and why am I posting here?
Marsymars•3h ago
WhatsApp also feels... tonally weird to use at a serious company, like in the same way it would feel weird to be using snapchat for team meetings.
LgLasagnaModel•3h ago
Totally agree. Now let me go play with this model I got off of Hugging Face
oceansky•2h ago
WhatsApp is already the de facto communication channel in a lot of countries.

In Brazil even subpoenas can be sent via WhatsApp.

GuinansEyebrows•1h ago
i feel the same way about so many government departments switching to X as a primary public communications platform instead of... you know, the open web (with distribution to downstream closed platforms), as they always have. it just reeks of unseriousness.
GuinansEyebrows•1h ago
i heard (anecdotally) that wall street used to run on Yahoo IM - fascinating. do you know if that extended into your previous employer?
axus•3h ago
> "We know members and their staffs regularly use WhatsApp and we look forward to ensuring members of the House can join their Senate counterparts in doing so officially," Stone said.

Go on...

jandrewrogers•3h ago
> "Messages on WhatsApp are end-to-end encrypted by default, meaning only the recipients and not even WhatsApp can see them."

The handling and metadata around encrypted messages is nearly as exploitable as the actual message contents. End-to-end encryption is necessary but not sufficient. The infrastructure has to be designed to minimize risk of other forms of exploitive analysis as well but in the case of WhatsApp that is essentially their business model.

dijit•3h ago
If the network controls the endpoints; then E2EE is meaningless.
benced•1h ago
What implementation of end to end encryption doesn't involve this?
dijit•1h ago
OTR, for IRC/XMPP, PGP for Email and Olm/Megolm provided by Element for Matrix operators.

Essentially the software creating the keys is not controlled by the same entity controlling the transmission method.

In email/matrix you have an additional protection in that you can host your own server; the best protection is the one you never have the possibility of traffic being diverted, and even if it was it would be encrypted so that the server doesn’t leak anyway, security is like an onion after all.

aaroninsf•2h ago
Serious question: who else takes for granted that Zuck gets a daily summary of all high-level federal governmental communications, as harvested via backdoors or simply from non-end-to-end encrypted traffic on any Meta property?

I assume he does. I assume moreover that most people aware of this at Meta consider this due diligence in defending shareholder value. What's that line from Dune 2, a wise hunter climbs the tallest hill? _You need to see._

deadbabe•2h ago
Maybe they should use Meshtastic
benced•1h ago
I'm sorry, it's just flatly wrong to suggest Microsoft Teams is safer than WhatsApp and everyone here bandwagoning on this ridiculous decision should feel bad.
GuB-42•1h ago
It doesn't mean that MS Teams is safer, it means that the government has tighter control on MS Teams.

Or maybe that Microsoft pays more than Meta.

alephnerd•1h ago
MS products allow you to store data locally without any egress, so an IT team has access to it.

This is the sticking point, because WhatsApp has now integrated Meta AI into the app, but (obviously) do not provide an on-prem data store. This is why Deepseek AI (the Deepseek app) and ChatGPT (the OpenAI app) are barred as well.

Data Stewardship and Zero Trust has been an internal initiative in the House for a couple years now.

The fact that almost no one on this thead knows these (imo overused) terms and design patterns highlights one of the various major gaps in Software Dev I've been observing for several years now - especially the North American market (given the hours that this was posted). The inability to incorporate or understand some basic security architectures is a major gap.

Edit: Keep pushing the downvotes. The truth hurts, and plays a role in jobs leaving, and funds like my employer funding cybersecurity startups in Israel, India, and Eastern Europe because the ecosystem doesn't exist in the US anymore. A similar trend happened in data layer related work.

We don't need more SKLearn plumbers calling themselves "ML Engineers" or Angular monkeys calling themselves "Fullstack Engineers" - we need people who truly understand fundamentals (or - shudders - first principles), be they mathematical (optimization), systems (virtualization), or algorithms (efficient data structures)

HWR_14•1h ago
Isn't deepseek 100% open source?
pona-a•1h ago
The model weights themselves are, but there's also the hosted SaaS.
alephnerd•1h ago
Deepseek the model sure. Not Deepseek AI - the app [0] published by Hangzhou DeepSeek (the company that developed DeepSeek)

[0] - https://apps.apple.com/us/app/deepseek-ai-assistant/id673759...

tsumnia•54m ago
> The fact that almost no one on this [thread] knows these

Its not that they aren't known, but rather we just came off a long trend of thin-clients and cloud storage. Some companies merely stay in that ethereal space, while others had concerns about their data. Criticizing people for doing what experts were pushing for the past 20 years doesn't need to devolve into calling their expertise into question.

The downvotes are for that, not because "you're wrong".

swarnie•1h ago
I ban Whatsapp but require Teams on company devices.

Can you explain why the thinking is wrong?

benced•1h ago
This is very reasonable if you have compliance needs or similar. That’s not what this office is saying - it’s saying teams is more secure. This is wrong. The nature of banning private messaging apps is trading security for legibility. If this office is interested in that (which it’s not - it allows Signal), they should say so.
swarnie•48m ago
I do have a compliance need, similar to this office i imagine.

Teams is more secure in my opinion.

I as an admin can control who you can/can't talk to, what you can share with them, when you can share it. Correctly configured MS Teams is a pretty secure setup.

On the flipside im not sure i can make someone else's Whatsapp not auto download anything sent to it.... The two apps aren't really comparable unless I've missed an entire 'Whatapps for government/enterprise' business arm.

egberts1•1h ago
Not wrong.

MS Teams allow for offline/local storage of its video/chat conferencing.

ghc•37m ago
Perhaps you're unaware that there is a special, DoD-certified version of Teams called "Gov Teams", which can be used to share data at multiple impact levels securely. This version of Teams, and the entire Office365 suite, has undergone extensive security certification for use with high IL data.
Angostura•22m ago
Teams doesn’t require access to my entire contacts book on my phone to run smoothly. I can choose the individuals whose contact details I want to give it
Goronmon•10m ago
How is WhatsApp safer to use than Microsoft Teams?
pimlottc•6m ago
They're almost certainly not using the same version as the general public. Most major service providers have a specific version for government with additional controls and restrictions and have undergone certification through FedRAMP, including Microsoft:

https://www.microsoft.com/en-us/microsoft-365/government

Some other examples:

- AWS GovCloud https://aws.amazon.com/govcloud-us/

- Google Workspace for Government https://workspace.google.com/industries/government/

- GovSlack https://slack.com/solutions/govslack

josefritzishere•1h ago
This seems sensible.
williamscales•49m ago
I mean, regardless of any argument about Whatsapp, shouldn't installing any app on a government phone that's not allowed be impossible? Sheesh. This shouldn't even be a discussion in the first place.