frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Stop Paywalling SSO: It Is a Basic Right, Not an Enterprise Perk

https://oneuptime.com/blog/post/2025-08-19-sso-is-a-security-basic-not-an-enterprise-perk/view
6•ndhandala•1h ago

Comments

bitpush•1h ago
"Basic Right"? Have words lost meaning? At best, this is an opinion or a wish.
esseph•38m ago
It's critical for national security for underfunded sectors.

It's not really an "ask", FedGov through NIST / CISA is requiring it.

BalinKing•1h ago
There's very little content here—it's basically just an ad.
codegeek•54m ago
I will add the obligatory https://sso.tax
bitpush•36m ago
> If companies claim to “take your security seriously”, then SSO should be available as a feature that is either:

>> - part of the core product, or

>> - an optional paid extra for a reasonable delta, or attached to a price tier, but with a reasonably small gap between the non-SSO tier and SSO tiers.

>> - Many vendors charge 2x, 3x, or 4x the base product pricing for access to SSO, which disincentivizes its use and encourages poor security practices.

----

I dont follow the logic. Food and shelter are a human rights, but that doesnt mean you can walk into a restaurant and insist that food be served at $dream price, or walk into Home Depot and take premium plywood and pay basic/entry level price.

rufus_foreman•14m ago
We hold these truths to be self-evident, that all men are created equal, that they are endowed by their Creator with certain unalienable Rights, that among these are Life, Liberty and (checks notes) Single Sign On.
jasonmclaren•11m ago
Strangely, their Pricing page shows they don't offer SSO until the third pricing tier, at $99/user-month.

How we exploited CodeRabbit: From simple PR to RCE and write access on 1M repos

https://research.kudelskisecurity.com/2025/08/19/how-we-exploited-coderabbit-from-a-simple-pr-to-rce-and-write-access-on-1m-repositories/
430•spiridow•6h ago•141 comments

D2 (text to diagram tool) now supports ASCII renders

https://d2lang.com/blog/ascii/
142•alixanderwang•4h ago•19 comments

Emacs as your video-trimming tool

https://xenodium.com/emacs-as-your-video-trimming-tool
156•xenodium•6h ago•75 comments

CRDT: Text Buffer

https://madebyevan.com/algos/crdt-text-buffer/
29•skadamat•2h ago•0 comments

Show HN: OpenAI/reflect – Physical AI Assistant that illuminates your life

https://github.com/openai/openai-reflect
29•Sean-Der•2h ago•13 comments

Without the futex, it's futile

https://h4x0r.org/futex/
215•eatonphil•8h ago•99 comments

The new geography of stolen goods

https://www.economist.com/interactive/britain/2025/08/17/the-new-geography-of-stolen-goods
74•tlb•1d ago•49 comments

Drunken Bishop (2023)

https://re.factorcode.org/2023/08/drunken-bishop.html
6•todsacerdoti•41m ago•0 comments

Candle Flame Oscillations as a Clock

https://cpldcpu.com/2025/08/13/candle-flame-oscillations-as-a-clock/
213•cpldcpu•3d ago•42 comments

How Figma’s multiplayer technology works (2019)

https://www.figma.com/blog/how-figmas-multiplayer-technology-works/
83•redbell•3d ago•34 comments

Perfect Freehand – Draw perfect pressure-sensitive freehand lines

https://www.perfectfreehand.com/
74•NikxDa•2h ago•7 comments

Why Semantic Layers Matter (and how to build one with DuckDB)

https://motherduck.com/blog/semantic-layer-duckdb-tutorial/
56•secondrow•5h ago•8 comments

AnduinOS

https://www.anduinos.com/
54•TheFreim•3h ago•72 comments

Vendors that treat single sign-on as a luxury feature

https://sso.tax/
174•vinnyglennon•2h ago•103 comments

Notion releases offline mode

https://www.notion.com/help/guides/working-offline-in-notion-everything-you-need-to-know
139•ericzawo•4h ago•98 comments

Passive Microwave Repeaters

https://computer.rip/2025-08-16-passive-microwave-repeaters.html
62•BallsInIt•2d ago•10 comments

Custom telescope mount using harmonic drives and ESP32

https://www.svendewaerhert.com/blog/telescope-mount/
246•waerhert•12h ago•91 comments

Launch HN: Uplift (YC S25) – Voice models for under-served languages

78•zaidqureshi•10h ago•37 comments

A renovation project in Turkey led to the discovery of a lost city (2023)

https://www.atlasobscura.com/articles/derinkuyu-turkey-underground-city-strange-maps
55•areoform•6h ago•18 comments

How to Build a Medieval Castle

https://archaeology.org/issues/september-october-2025/features/how-to-build-a-medieval-castle/
215•benbreen•17h ago•66 comments

Show HN: Chroma Cloud – serverless search database for AI

https://trychroma.com/cloud
74•jeffchuber•1d ago•24 comments

Geotoy – Shadertoy for 3D Geometry

https://3d.ameo.design/geotoy
91•Ameo•1d ago•16 comments

The joy of recursion, immutable data, & pure functions: Making mazes with JS

https://jrsinclair.com/articles/2025/joy-of-immutable-data-recursion-pure-functions-javascript-mazes/
24•jrsinclair•1d ago•3 comments

Branch prediction: Why CPUs can't wait?

https://namvdo.ai/cpu-branch-prediction/
19•signa11•3d ago•26 comments

CRLite: Certificate Revocation Checking in Firefox

https://hacks.mozilla.org/2025/08/crlite-fast-private-and-comprehensive-certificate-revocation-checking-in-firefox/
39•TangerineDream•6h ago•2 comments

Medical cannabis patient data exposed by unsecured database

https://www.wired.com/story/highly-sensitive-medical-cannabis-patient-data-exposed-by-unsecured-database/
43•hacker_yacker•3h ago•20 comments

Positron, a New Data Science IDE

https://posit.co/blog/positron-product-announcement-aug-2025/
116•kgwgk•8h ago•38 comments

Launch HN: Parachute (YC S25) – Guardrails for Clinical AI

50•ariavikram•7h ago•21 comments

Critical Cache Poisoning Vulnerability in Dnsmasq

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2025q3/018288.html
108•westurner•9h ago•73 comments

Prime Number Grid

https://susam.net/primegrid.html
261•todsacerdoti•14h ago•90 comments