frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Slightly safer vibecoding by adopting old hacker habits

http://addxorrol.blogspot.com/2026/03/slightly-safer-vibecoding-by-adopting.html
39•transpute•5d ago

Comments

thwarted•1h ago
Generally a good idea, but I'm not sure why you should even want to fork a git repo when a local clone should be sufficient. But this is probably a terminology mixup from the way github presents forks and clones.
ozozozd•1h ago
They mention that as a mechanism for protecting the SSH keys for the repo.

Essentially using a repo that doesn’t matter with the coding agent and then creating a cross-repo PR to the real repo.

dddddaviddddd•1h ago
I believe the author's idea is to do dev work from a Github account that only has access to the fork, but not to the main repo. Then, as a contributor, you'd open PRs from your fork to the main repo. I think this would only work if your Github account doesn't have write access to the main repo, though. I know you can use 'deployment keys' to give read-access to a single repo using an SSH key, but not sure if you can otherwise restrict access to a single repo with write access. Essentially, though, you'd want to find a way to give the remote host the most limited possible privileges to your Github account.
thwarted•54m ago
Oh, a separate GitHub account that has its own forks of the repos the agent is working on. Yeah, that's probably the most secure, isolated, and safest. The merge to the canonical repo then needs to go through a human, or at least separately controlled, process via a GitHub pull request.
throwaway173738•32m ago
You could also just set the development machine up as a remote on the repo on your local host and then pull, diff, and merge locally. Then the llm agent doesn’t have access to any github account at all.
dfedbeef•39m ago
the old hacker trick of using ssh
kstenerud•36m ago
This is what yoloAI does. Automatically.

    # Create a new sandbox copying . as workdir (default container, but you can choose vm)
    yoloai new mybugfix . --isolation vm

    # attach to it (it has tmux already)
    yoloai attach mybugfix

    # Chat with the bot inside...

    # Happy with its work? Diff it to be sure
    yoloai diff mybugfix

    # Happy with the changes? Apply them to your workdir
    yoloai apply mybugfix

    # All done? Destroy the sandbox
    yoloai destroy mybugfix
The agent stays isolated at all times. No access to your secrets (except what you want), no access to your workdir until you apply. You can also easily restrict network access.

https://github.com/kstenerud/yoloai

ori_b•19m ago
Spammy ai-generated self promotion.
kstenerud•16m ago
In what way?

This does the same thing as in the blog post, except that there are a LOT of gotchas and minutiae and some yak shaving involved if you want to keep doing it manually.

trinsic2•30m ago
IM new to Claude code but doesnt auth require a gui browser to authenticate the Claude session first time login?? Do you have to setup a desktop environment just for that?
nwatson•26m ago
If the Claude (or similar) can't open a browser on a headless server, they typically print a URL you can copy to your browser on your local system-with-GUI. From there you authenticate and get back some kind of token, which you copy and paste back into your remote SSH session.
codemog•7m ago
I would guess OpenAI Codex and Claude Code are well into the millions subscriber range at this point. I would venture to guess the majority of them run in yolo mode. I have only seen a few horror stories on reddit. The same way any time you drive a car you can crash and die (many times through no fault of your own).

All that said, no way in hell I’m giving either access to production databases or environments.

Project Glasswing: Securing critical software for the AI era

https://www.anthropic.com/glasswing
1043•Ryan5453•10h ago•480 comments

Lunar Flyby

https://www.nasa.gov/gallery/lunar-flyby/
515•kipi•13h ago•121 comments

Protect Your Shed

https://dylanbutler.dev/blog/protect-your-shed/
46•baely•1h ago•6 comments

Slightly safer vibecoding by adopting old hacker habits

http://addxorrol.blogspot.com/2026/03/slightly-safer-vibecoding-by-adopting.html
41•transpute•5d ago•15 comments

System Card: Claude Mythos Preview [pdf]

https://www-cdn.anthropic.com/53566bf5440a10affd749724787c8913a2ae0841.pdf
604•be7a•10h ago•438 comments

Binary obfuscation used in AAA Games

https://blog.farzon.org/2026/04/binary-obfuscation-that-doesnt-kill-lto.html
48•noztol•2d ago•8 comments

GLM-5.1: Towards Long-Horizon Tasks

https://z.ai/blog/glm-5.1
468•zixuanlimit•12h ago•183 comments

How to get better at guitar

https://www.jakeworth.com/posts/how-to-get-better-at-guitar/
243•jwworth•2d ago•118 comments

S3 Files

https://www.allthingsdistributed.com/2026/04/s3-files-and-the-changing-face-of-s3.html
249•werner•9h ago•69 comments

Cambodia unveils statue to honour famous landmine-sniffing rat

https://www.bbc.com/news/articles/c0rx7xzd10xo
330•speckx•11h ago•68 comments

Native Americans had dice 12,000 years ago

https://www.nbcnews.com/science/science-news/native-americans-dice-games-probability-study-rcna26...
16•delichon•4d ago•4 comments

A truck driver spent 20 years making a scale model of every building in NYC

https://www.smithsonianmag.com/smart-news/a-truck-drive-spent-20-years-making-this-astonishing-sc...
283•1659447091•1d ago•46 comments

US and Iran agree to provisional ceasefire

https://www.theguardian.com/us-news/2026/apr/07/trump-iran-war-ceasefire
341•g-b-r•6h ago•907 comments

Show HN: An interactive map of Tolkien's Middle-earth

https://middle-earth-interactive-map.web.app/
124•frasermarlow•8h ago•27 comments

Show HN: Brutalist Concrete Laptop Stand (2024)

https://sam-burns.com/posts/concrete-laptop-stand/
722•sam-bee•17h ago•220 comments

A database of analog cameras that can be 3D printed

https://printed.analogcamera.space/
64•thomasjb•4d ago•7 comments

The Clock

https://blog.senko.net/the-clock
37•senko•3d ago•6 comments

Xilem – An experimental Rust native UI framework

https://github.com/linebender/xilem
48•Levitating•5h ago•11 comments

Cloudflare targets 2029 for full post-quantum security

https://blog.cloudflare.com/post-quantum-roadmap/
299•ilreb•14h ago•95 comments

JSIR: A High-Level IR for JavaScript

https://discourse.llvm.org/t/rfc-jsir-a-high-level-ir-for-javascript/90456
30•nnx•3h ago•7 comments

A whole boss fight in 256 bytes

https://hellmood.111mb.de//A_whole_boss_fight_in_256_bytes.html
79•HellMood•2d ago•18 comments

Show HN: Gemma 4 Multimodal Fine-Tuner for Apple Silicon

https://github.com/mattmireles/gemma-tuner-multimodal
145•MediaSquirrel•9h ago•22 comments

LLM scraper bots are overloading acme.com's HTTPS server

http://acme.com/updates/archive/229.html
22•mjyut•1h ago•17 comments

Rescuing old printers with an in-browser Linux VM bridged to WebUSB over USB/IP

https://printervention.app/details
170•gmac•12h ago•76 comments

The Image Boards of Hayao Miyazaki

https://animationobsessive.substack.com/p/the-image-boards-of-hayao-miyazaki
135•vinhnx•1d ago•13 comments

Bitcoin and quantum computing

https://nehanarula.org/2026/04/03/bitcoin-and-quantum-computing.html
122•nehan•8h ago•86 comments

Google open-sources experimental agent orchestration testbed Scion

https://www.infoq.com/news/2026/04/google-agent-testbed-scion/
173•timbilt•15h ago•47 comments

Running out of disk space in production

https://alt-romes.github.io/posts/2026-04-01-running-out-of-disk-space-on-launch.html
175•romes•4d ago•88 comments

A blind man made it possible for others with low vision to build Lego sets

https://apnews.com/article/lego-bricks-for-blind-audio-braille-instructions-5a2a27de4354a0b144317...
64•speckx•14h ago•5 comments

Move Detroit

https://www.movedetroit.com/program
53•rmason•7h ago•74 comments