frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: Safe-install – safer NPM installs with trusted build dependencies

https://www.npmjs.com/package/@gkiely/safe-install
6•gkiely•2h ago
In light of the ongoing npm supply chain compromises, I built safe-install:

https://www.npmjs.com/package/@gkiely/safe-install

It brings a couple of protections I wanted from npm but are not built in.

Similar to Bun’s trusted dependencies, it lets you disable install scripts by default and define a list of dependencies that are allowed to run build/install scripts:

https://bun.com/docs/guides/install/trusted

It also supports blocking exotic sub-dependencies, similar to pnpm’s `blockExoticSubdeps` setting:

https://gajus.com/blog/3-pnpm-settings-to-protect-yourself-f...

I was hoping npm would eventually add something like this, but it does not seem to be happening soon, so I made a small package for it.

Postmortem: TanStack npm supply-chain compromise

https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
586•varunsharma07•6h ago•219 comments

Claude Platform on AWS

https://claude.com/blog/claude-platform-on-aws
34•matrixhelix•1h ago•17 comments

If AI writes your code, why use Python?

https://medium.com/@NMitchem/if-ai-writes-your-code-why-use-python-bf8c4ba1a055
221•indigodaddy•6h ago•241 comments

UCLA discovers first stroke rehabilitation drug to repair brain damage (2025)

https://stemcell.ucla.edu/news/ucla-discovers-first-stroke-rehabilitation-drug-repair-brain-damage
258•bookofjoe•9h ago•51 comments

Show HN: A modern Music Player Daemon based on Rockbox firmware

https://github.com/tsirysndr/rockbox-zig
28•tsiry•2d ago•2 comments

I let AI build a tool to help me figure out what was waking me up at night

https://martin.sh/i-let-ai-build-a-tool-to-help-me-figure-out-what-was-waking-me-up-at-night/
86•showmypost•6h ago•97 comments

They Live (1988) inspired Adblocker

https://github.com/davmlaw/they_live_adblocker
17•tokenburner•2h ago•1 comments

Library for fast mapping of Java records to native memory

https://github.com/mamba-studio/TypedMemory
115•joe_mwangi•7h ago•25 comments

Nullsoft, 1997-2004 (2004)

https://slate.com/technology/2004/11/the-death-of-the-last-maverick-tech-company.html
236•downbad_•3d ago•71 comments

GitLab announces workforce reduction and end of their CREDIT values

https://about.gitlab.com/blog/gitlab-act-2/
355•AnonGitLabEmpl•6h ago•357 comments

Griffin PowerMate driver for modern macOS

https://github.com/jameslockman/Griffin-PowerMate-Driver
51•classichasclass•5h ago•19 comments

Software Internals Book Club

https://eatonphil.com/bookclub.html
3•aragonite•49m ago•0 comments

Google says criminal hackers used AI to find a major software flaw

https://www.nytimes.com/2026/05/11/us/politics/google-hackers-attack-ai.html
127•donohoe•13h ago•101 comments

A lost ancient script reveals how writing as we know it began

https://www.newscientist.com/article/2524042-a-lost-ancient-script-reveals-how-writing-as-we-know...
10•emot•4d ago•1 comments

Fake building: Claude wrote 3k lines instead of import pywikibot

https://fireflysentinel.github.io/posts/fake-building-claude-3000-lines/
19•firef1y1203•55m ago•8 comments

Interaction Models

https://thinkingmachines.ai/blog/interaction-models/
112•smhx•6h ago•10 comments

Silverback Imfura took a chance, and ended up alone

https://gorillafund.org/mountain-gorillas/silverback-imfura-took-a-chance-and-ended-up-alone/
40•alex000kim•2d ago•12 comments

Training an LLM in Swift, Part 1: Taking matrix mult from Gflop/s to Tflop/s

https://www.cocoawithlove.com/blog/matrix-multiplications-swift.html
221•zdw•1d ago•11 comments

Interfaze: A new model architecture built for high accuracy at scale

https://interfaze.ai/blog/interfaze-a-new-model-architecture-built-for-high-accuracy-at-scale
117•yoeven•10h ago•30 comments

The rise and fall of snake oil

https://www.historytoday.com/archive/history-matters/rise-and-fall-snake-oil
36•samizdis•4d ago•20 comments

Show HN: Safe-install – safer NPM installs with trusted build dependencies

https://www.npmjs.com/package/@gkiely/safe-install
6•gkiely•2h ago•0 comments

Show HN: OpenGravity – A zero-install, BYOK vanilla JS clone of Antigravity

https://github.com/ab-613/opengravity
59•ab613•6h ago•18 comments

AMÁLIA and the future of European Portuguese LLMs

https://duarteocarmo.com/blog/amalia-and-the-future-of-european-portuguese-llms
120•johnbarron•3d ago•57 comments

CUDA-oxide: Nvidia's official Rust to CUDA compiler

https://nvlabs.github.io/cuda-oxide/index.html
370•adamnemecek•11h ago•108 comments

Bild AI (YC W25) Is Hiring Founding Product Engineers

https://bild.ai/jobs
1•rooppal•9h ago

Abstract Machines for Logic Programs

https://chrisistyping.bearblog.dev/abstract-machines-for-logic-programs/
19•surprisetalk•2d ago•1 comments

Building a web server in aarch64 assembly to give my life (a lack of) meaning

https://imtomt.github.io/ymawky/
109•theanonymousone•3d ago•34 comments

The Boston library where you still can borrow a giant puppet

https://binj.news/2026/05/06/the-boston-library-where-you-still-can-borrow-a-giant-puppet/
55•gnabgib•3d ago•8 comments

Ratty – A terminal emulator with inline 3D graphics

https://ratty-term.org/
620•orhunp_•17h ago•204 comments

Hardware Attestation as Monopoly Enabler

https://grapheneos.social/@GrapheneOS/116550899908879585
2089•ChuckMcM•1d ago•706 comments