frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Claude Design

https://www.anthropic.com/news/claude-design-anthropic-labs
194•meetpateltech•1h ago•106 comments

Isaac Asimov: The Last Question (1956)

https://hex.ooo/library/last_question.html
366•ColinWright•4h ago•127 comments

Middle schooler finds coin from Troy in Berlin

https://www.thehistoryblog.com/archives/75848
54•speckx•1h ago•8 comments

Healthchecks.io Now Uses Self-Hosted Object Storage

https://blog.healthchecks.io/2026/04/healthchecks-io-now-uses-self-hosted-object-storage/
49•zdw•1h ago•30 comments

NIST gives up enriching most CVEs

https://risky.biz/risky-bulletin-nist-gives-up-enriching-most-cves/
24•mooreds•58m ago•3 comments

Claude Opus 4.7 costs 20–30% more per session

https://www.claudecodecamp.com/p/i-measured-claude-4-7-s-new-tokenizer-here-s-what-it-costs-you
16•aray07•38m ago•6 comments

It Is Time to Ban the Sale of Precise Geolocation

https://www.lawfaremedia.org/article/it-is-time-to-ban-the-sale-of-precise-geolocation
201•hn_acker•1h ago•56 comments

Iceye Open Data

https://www.iceye.com/open-data-initiative
31•marklit•1h ago•0 comments

IETF draft-meow-mrrp-00

https://www.ietf.org/archive/id/draft-meow-mrrp-00.html
17•varun_ch•1h ago•9 comments

Claude Opus 4.7

https://www.anthropic.com/news/claude-opus-4-7
1893•meetpateltech•1d ago•1377 comments

The Utopia of the Family Computer

https://mudmapmagazine.com/the-utopia-of-the-family-computer/
29•surprisetalk•4d ago•6 comments

Ada, Its Design, and the Language That Built the Languages

https://www.iqiipi.com/the-quiet-colossus.html
190•mpweiher•7h ago•118 comments

Codex for almost everything

https://openai.com/index/codex-for-almost-everything/
954•mikeevans•22h ago•509 comments

Teddy Roosevelt and Abraham Lincoln in the same photo (2010)

https://prologue.blogs.archives.gov/2010/11/09/teddy-roosevelt-and-abraham-lincoln-in-the-same-ph...
63•bryanrasmussen•6h ago•7 comments

Scan your website to see how ready it is for AI agents

https://isitagentready.com
42•WesSouza•2h ago•74 comments

FIM – Linux framebuffer image viewer

https://www.nongnu.org/fbi-improved/
108•Mr_Minderbinder•8h ago•54 comments

Designing the Transport Typeface

https://www.thamesandhudson.com/blogs/all-news-features/designing-the-transport-typeface-margaret...
7•speckx•2d ago•0 comments

Show HN: Stage – Putting humans back in control of code review

https://stagereview.app/
45•cpan22•22h ago•39 comments

CadQuery is an open-source Python library for building 3D CAD models

https://cadquery.github.io/
192•gregsadetsky•2d ago•52 comments

中文 Literacy Speedrun II: Character Cyclotron

https://blog.kevinzwu.com/character-cyclotron/
63•surprisetalk•4d ago•28 comments

A Python Interpreter Written in Python

https://aosabook.org/en/500L/a-python-interpreter-written-in-python.html
116•xk3•3d ago•33 comments

Reflections on 30 Years of HPC Programming

https://chapel-lang.org/blog/posts/30years/
100•matt_d•3d ago•71 comments

Official Clojure Documentary page with Video, Shownotes, and Links

https://clojure.org/about/documentary
294•adityaathalye•20h ago•85 comments

Android CLI: Build Android apps 3x faster using any agent

https://android-developers.googleblog.com/2026/04/build-android-apps-3x-faster-using-any-agent.html
285•ingve•21h ago•116 comments

Human Accelerated Region 1

https://en.wikipedia.org/wiki/Human_accelerated_region_1
93•apollinaire•12h ago•50 comments

Playdate’s handheld changed how Duke University teaches game design

https://news.play.date/news/duke-playdate-education/
229•Ivoah•20h ago•106 comments

Substrate AI Is Hiring Harness Engineers

https://www.ycombinator.com/companies/substrate/jobs/QJU9023-harness-engineer
1•kunle•13h ago

Guy builds AI driven hardware hacker arm from duct tape, old cam and CNC machine

https://github.com/gainsec/autoprober
212•scaredpelican•18h ago•43 comments

Show HN: SPICE simulation → oscilloscope → verification with Claude Code

https://lucasgerads.com/blog/lecroy-mcp-spice-demo/
107•_fizz_buzz_•15h ago•27 comments

The missing catalogue: why finding books in translation is still so hard

https://blogs.lse.ac.uk/impactofsocialsciences/2026/04/13/the-missing-catalogue-why-finding-books...
20•AusiasTsel•3d ago•4 comments
Open in hackernews

It Is Time to Ban the Sale of Precise Geolocation

https://www.lawfaremedia.org/article/it-is-time-to-ban-the-sale-of-precise-geolocation
198•hn_acker•1h ago

Comments

troupo•1h ago
Don't you want random companies to store your precise location for 12 years? https://x.com/dmitriid/status/1817122117093056541
Swizec•1h ago
Screenshot in that tweet says 13 months FYI
mzajc•1h ago

  > Lifespan: 13 Months
  > ...
  > Standard retention (4320 Days)
It looks like a cookie prompt, so I assume "Lifespan" refers to cookie expiration and "retention" to how long the data (including geolocation) is retained on the spyware company's servers.
troupo•1h ago
[Cookie] Lifespan: 13 Months

Data Retention: Standard Retention (4320 days)

ch4s3•1h ago
IMO we should ban gathering this data without a warrant or specific contractual agreement between the device owner and entity aggregating the data. As much as congress loves to claim the interstate commerce theory of everything, this seems like a slam dunk.
Dwedit•1h ago
Contractual agreement? Nobody reads things like EULAs or terms of service. It's probably in there already.
rubyfan•1h ago
Right, privacy terms are written to be vague and permissive. Even if you read them you can’t usually understand how the data will be used or opt out.
toofy•1h ago
if it were up to me i’d require a hand signed contract that explicitly, up front and in plain english gives permission and is not transferable to any “partners”.
ch4s3•1h ago
I should have been a bit more clear. We should ban retention for any purposes where it is not explicitly required for the intended function and clearly agreed to by all parties. Think somethig like strava or asset tracking. You know it stores gps data, and why.
ryandrake•53m ago
There is no such things as "clearly agreed to by all parties" when it comes to end users. Companies provide a one-sided, "take it or leave it" EULA, and if you don't agree to everything in it, you don't use the product. There is no meeting of the minds, there is no negotiation, and there is no actual agreement. It's a rule book dictated by one side.
pocksuppet•51m ago
Then it's not a valid contract and therefore does not absolve them of criminal liability for stalking you.
ch4s3•44m ago
You can't just bury literally anything in an EULA. There's a fair amount of case law establishing that EULAs clauses that are surprising or illegal aren't enforceable.
pwg•33m ago
That fact does not change the point of the individual to which you replied. Regardless of whether the clauses in the EULA are 100% legal, some mixture or 100% illegal, the entire EULA is a "one sided rule-book dictated completely by one side". You, the person held to the EULA's rules, do not get to negotiate on the individual points. You simply have a "take it or go away" set of options.
stavros•26m ago
There is the GDPR.
rubyfan•1h ago
I think we should make this type of tracking opt-out by default. We should also ban the sale of its use to third parties and its use for purposes other than the specific functionality which required it to be enabled in the first place.
gruez•1h ago
>I think we should make this type of tracking opt-out by default

That's opt-in, not opt-out.

https://en.wiktionary.org/wiki/opt-out

troupo•1h ago
> IMO we should ban gathering this data without

GDPR tried. And the narrative around GDPR was deliberately completely derailed by adtech.

Lack of enforcement didn't help either

ch4s3•1h ago
GDPR like all EU regulation is needlessly complicated and aimed at a compliance model that seems designed for SAP.
troupo•54m ago
You can literally read the entire "complicated" regulation in one sitting in an afternoon. There's literally nothing complex or complicated about it.

Congrats on gullibly believing the ad tech narrative.

ryandrake•49m ago
The "GDPR is complicated" meme has been circulating among software developers since probably before it was even written. It's so wild that HN dunks on it so much: Here we have a societal problem in computing we've been complaining about for decades, someone offers an incremental but imperfect regulation to start taking steps to correct it, and everyone hates it!
pocksuppet•48m ago
Same with the California age input box.
ch4s3•39m ago
Being able to read something in one sitting doesn't make it simple or obvious. The law establishes a board that gets to set new requirements.
stavros•23m ago
As someone who has to implement it, it's really not bad at all: Ask the user for consent to use their data, and don't be misleading about it. That's it.

The rest of the "It'S So LaRgE AnD UndErSpEciFieD" is just FUD. The regulators don't just slap fines, they work with you to get you to comply, and they just want to see that you're putting in the effort instead of messing them about.

I have literally never been surprised by the GDPR. Whenever I thought "surely this is allowed" it was, whenever I thought "this can't be allowed", it wasn't. For everything in the middle, nobody will punish you for an honest mistake.

redwall_hp•7m ago
Anti GDPR people: "it's so complicated not being able to walk into someone's house and take their things! Which things can I not take? How about this? And now I need a lawyer if I take someone's things? Ridiculous!"

Just don't spy on people.

stavros•3m ago
Yeah that's pretty much what it feels like, or sometimes it's "what if someone's stuff is lying on the street? Can I take it then?" and the regulator is kind of like "look around and ask if it belongs to anyone, and if not, sure".
pocksuppet•50m ago
Have you read it? It's not that bad, unless you're thinking like an adtech programmer trying to find the exact edge case for the maximal amount of tracking you're allowed to do, because such a bright line does not exist and that fact infuriates adtech professionals. It is vague because reality is vague and complex; each specific case of alleged violation has to be interpreted by multiple humans; there is no algorithm.
ch4s3•40m ago
The law mandates a data protection officer with specific duties. It also establishes a board that "issue guidelines, recommendations, and best practices" which is where administrative complication and nonsense always creeps in.
jandrewrogers•20m ago
It is regulation that imagines companies are a government bureaucracy.

I have read GDPR and don't work in adtech. It is vague and it is pretty easy to find pathological scenarios that don't make much sense or impose an unusually high burden for no benefit. Every European law firm seems to agree with this assessment despite what proponents assert. Consequently, it forces a lot of expensive defensive activity in practice.

To some extent, it was just a failure of imagination on the part of GDPR's authors. Many things are not nearly as simple as it seems to assume and it bleeds into data models that have nothing to do with people.

It is what it is but no one should pretend it is not a burden for companies that have nothing to do with adtech or even data about people.

microtonal•8m ago
The compliance model is very simple. Do not collect data. Problem solved. If you need to collect data (e.g. because you are a webshop), only collect the minimum necessary.

The problem is not the GDPR, the problem is the surveillance industry that wants to grab as much data as possible and try to do as much malicious compliance as possible.

uxhacker•1h ago
More details are available here, including screenshots of the tool.

https://citizenlab.ca/research/analysis-of-penlinks-ad-based...

wolvoleo•1h ago
Just ban the sale of any kind of adtracking. That way we can get rid of the cookiewalls too.

Missed opportunity by the EU when they wrote GDPR.

troupo•59m ago
GDPR literally prohibits the sale of user data and tracking without user consent (because yes, you want to give people the possibility to opt in for a variety of reasons).

GDPR has literally nothing to do with cookie popups. That was, and is, adtech

pocksuppet•49m ago
I think they are saying GDPR did not ban websites from noisily asking for consent and trying to trick you into giving consent.
lotu•46m ago
My job was building cookie walls in response to GDPR. It might not have been the “intent” but it certainly was the consequence of that law.
em-bee•42m ago
prohibits [...] without user consent

that's what causes the popups.

it should prohibit it outright, consent or not.

SoftTalker•8m ago
But the only reason the popups are needed is the adtech tracking cookies. You don't need a popup for cookies that are related to essential site functionality.
Johnbot•1h ago
A lot of geolocation data on the market is anonymized, following medium-lived unique IDs that aren't able to be mapped to other identifiers. The problem with that is that if you have precise locations, or enough samples that you can apply statistics to find precise locations, in many cases you can de-anonymize the IDs. You can purchase address and resident listings from a number of different data vendors, and by checking where the device returns to at night you can figure its home address. Then if you find information on the residents (work locations, schools, etc.), you see if said device goes where each resident of the home address is likely to go, and you now have a pretty good idea of exactly who the device belongs to.
1121redblackgo•46m ago
Yep. With side channel/one order of thinking above the laws, its trivial to get around said laws. Need better laws.
sroussey•38m ago
Companies exist that de-anonymize other data brokers data. Lets the other data brokers claim they have anonymized data while end end users get everything.
ImPostingOnHN•20m ago
you could probably run a anonymization company at the same time you run a de-anonymization company
rockskon•36m ago
There is no such thing as anonymized location data when you have the location of something where and when they sleep and work.

It's a rhetorical fiction the ad industry tells itself.

Forgeties79•9m ago
And with LLM’s now it’s easier than ever to piece the parts together. Companies were doing it before we even knew what LLM’s were capable of.
vovanidze•30m ago
exactly. calling it 'anonymized' is pure security theater once you have enough data points to map out someones daily routine.

waiting for legislation or eulas to fix this is a lost cause since adtech always finds a loophole. the fix has to be architectural. moving toward stateless proxies that strip device identifiers at the edge before they even hit upstream servers. if the payload never touches a persistent db there is literally nothing to de-anonymize. stateless infra is the only sane way forward

microtonal•15m ago
To be honest, I feel like this is where iOS and Android are failing us. Why is every app allowed to embed a bunch of trackers? Only blocking cross-app tracking on user request as iOS does is not enough (and data of different apps/websites can be correlated externally).
malfist•19m ago
> A lot of geolocation data on the market is anonymized

A lot isn't good enough.

jandrewrogers•10m ago
Location and identity are inextricably linked. You can't destroy identity without also destroying location and location is critical for myriad purposes.

The analytic reconstruction of identity from location is far more sophisticated than the scenarios people imagine. You don't need to know where they live to figure out who they are. Every human leaves a fingerprint in space-time.

nickburns•4m ago
[delayed]
lifestyleguru•1h ago
Smartphones, mobile apps, mobile networks, and WiFi stopped being your friends around 2015-2016. Now it's just a matter of how much data can be harvested from device sensors in real time until reaching a pain point which doesn't exist.
Eextra953•51m ago
Does anyone know of any groups that are organizing and lobbying to get things like this into law? I know about the EFF but they seem to be more focused on documenting and reporting instead of lobbying and getting things passed.
dminor•11m ago
Senator Wyden has been pretty focused on it. I think it's going to take some changes in Congress before it happens though.
glitchc•42m ago
How about we just ban the collection of precise geolocation? Wouldn't that be a better solution?
Mithriil•41m ago
I would expect such a law to be lobbied to death.
davebren•19m ago
You can have legitimate use cases where it's a core functionality of the application to store it, so the user obviously knows it's being collected and agrees by using it.
romaniv•27m ago
The problem with all these discussions about banning stuff is that privacy is always on the back foot. It's by design. People who want to surveil and manipulate us are actively investigating new ways of doing it, they get paid for it and they risk nothing in the long run. All of these discussions about specifics are just reactions. They aren't even reactions to the surveillance itself, but rather to a discovery by someone that a new surveillance machine has been constructed and launched.

So the current feedback process involves: construction → exploitation → reporting → public awareness → legislation. This is too slow. Moreover, operating in this environment is exhausting.

We need a different feedback loop altogether. I'm not sure which one would work best, but something different needs to be considered.

linkjuice4all•24m ago
Let’s just stretch copyright to cover movement/location as a protected creative expression. It’s somewhat ridiculous but we’ve already established case law and technology for handling/mishandling protected assets.
titzer•2m ago
These people really have no idea at the level of data collection from Google's rootkit on Android known as "Google Play Services".