frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Giant trees have no trouble pumping water to top branches

https://news.exeter.ac.uk/faculty-of-environment-science-and-economy/giant-trees-have-no-trouble-...
46•hhs•1h ago•22 comments

Leanstral 1.5: Proof Abundance for All

https://mistral.ai/news/leanstral-1-5/
37•programLyrique•1h ago•4 comments

Odin, Wikipedia and Engagement Farming

https://katamari64.se/posts/2026/odin-wikipedia/
25•stock_toaster•51m ago•7 comments

SearXNG: A free internet metasearch engine

https://github.com/searxng/searxng
111•theanonymousone•4h ago•28 comments

The circuit that lets your brain think and see

https://www.engineering.columbia.edu/about/news/circuit-lets-your-brain-think-and-see
16•hhs•1h ago•1 comments

Steam Controller Auto-Charge – pilot to magnetic charging puck using CV

https://github.com/FossPrime/Steam-Controller-Auto-Charge
31•zdw•1h ago•5 comments

Amsterdam invented the fire department

https://worksinprogress.co/issue/how-amsterdam-invented-the-fire-department/
25•zdw•1h ago•6 comments

Dispersion loss counteracts embedding condensation in small language models

https://chenliu-1996.github.io/projects/LM-Dispersion/
16•E-Reverance•1h ago•3 comments

GLM5.2 on AMD MI355X at 2626 tok/s/node at over 2x lower cost than Blackwell

https://www.wafer.ai/blog/glm52-amd
39•latchkey•2h ago•11 comments

Jamesob's guide to running SOTA LLMs locally

https://github.com/jamesob/local-llm
257•livestyle•9h ago•121 comments

Espionage Against the European Parliament

https://citizenlab.ca/research/member-of-committee-investigating-spyware-hacked-with-pegasus/
249•ledoge•3h ago•65 comments

Infracost (YC W21) Is Hiring a Marketing Lead to Shift FinOps Left

https://www.ycombinator.com/companies/infracost/jobs/YTJcFwr-marketing-lead
1•akh•3h ago

Applied Category Theory Course (2018)

https://math.ucr.edu/home/baez/act_course/index.html
39•measurablefunc•3h ago•5 comments

We put a Redis server inside our runtime

https://encore.dev/blog/redis-runtime
14•eandre•2d ago•5 comments

New serious vulnerabilities spiked around release of Claude Mythos Preview

https://epoch.ai/data-insights/cve-severity-spike
22•cubefox•3h ago•6 comments

FreeBSD ate my RAM

https://crocidb.com/post/freebsd-ate-my-ram/
80•theanonymousone•5h ago•32 comments

Africans Are Turning to Starlink

https://www.economist.com/middle-east-and-africa/2026/07/02/africans-are-turning-to-starlink
82•bookofjoe•3h ago•72 comments

Costco is the anti-Amazon

https://phenomenalworld.org/analysis/the-anti-amazon/
263•bookofjoe•9h ago•248 comments

International chess federation sanctions Kramnik

https://www.fide.com/fide-ethics-disciplinary-commission-issues-a-decision-in-case-involving-gm-v...
110•DarkContinent•7h ago•59 comments

Factories are just rooms

https://interconnected.org/home/2026/07/03/factories
181•arbesman•9h ago•74 comments

Notes from Building Tinkerfont

https://mighil.com/notes-from-building-tinkerfont
4•surprisetalk•2d ago•0 comments

Hunting a 16-year-old SQLite WAL bug with TLA+

https://ubuntu.com/blog/hunting-a-16-year-old-sqlite-bug-with-tla-is-dqlite-affected
163•peterparker204•3d ago•12 comments

Software, from First Principles

https://fazamhd.com/mental-models/software/
17•faza•2h ago•6 comments

GitFut – Your GitHub stats turned into a World-Cup-style player card

https://gitfut.com
7•redbell•1h ago•5 comments

Show HN: Mcpsnoop – Wireshark for MCP (transparent proxy and live TUI)

https://github.com/kerlenton/mcpsnoop
45•kerlenton•7h ago•13 comments

Wordgard: In-browser rich-text editor from the creator of ProseMirror

https://wordgard.net/
257•indy•15h ago•90 comments

PostgreSQL and the OOM killer: Why we use strict memory overcommit

https://www.ubicloud.com/blog/postgresql-and-the-oom-killer-why-we-use-strict-memory-overcommit
150•furkansahin•11h ago•85 comments

I Wasn't Allowed Prompting ChatGPT During My Chalk Talk: This Is Discrimination (2025)

https://inpreparation.substack.com/p/opinion-i-was-not-allowed-to-type
137•theanonymousone•6h ago•71 comments

A peek into Reddit's anti-spam internals

https://lyra.horse/blog/2026/06/reddit-spam-internals/
155•OuterVale•6d ago•56 comments

Valve open-source the Steam Machine e-ink screen so you can make your own

https://www.gamingonlinux.com/2026/07/valve-open-source-the-steam-machine-e-ink-screen-so-you-can...
529•ahlCVA•11h ago•97 comments
Open in hackernews

Elevating Privileges from Firefox to Android Root

https://rootme.nebusec.ai/
11•kozika•1h ago

Comments

LordShredda•1h ago
Well, I shouldn't have clicked this. This claims to ask for confirmation before running the exploit and my wallpaper hasn't really changed yet
krautsauer•45m ago
Would be somewhat nice to have the link in the comment text, yeah.

> Warning: Experimental Kernel Exploit > By clicking “Step 2”, you acknowledge and agree that this website will run an open-source kernel exploit on your device.

Then again, one does take the risk of landing on a site like that and not being asked every other time clicking a link.

gnabgib•1h ago
Definitely not the title (IonStack)
ChocolateGod•53m ago
> but good news, Nebula Security found it before attackers do.

Which is why they released the code to the exploit before it's been patched, meaning bad actors now likely have months to profit off it before a meaningful % of devices are patched.

Good news I guess?

tadfisher•36m ago
From the linked source code [0], the vulnerabilities are:

CVE-2026-10702 [1]: A crafted JavaScript payload can trigger JIT miscompilation in Firefox versions prior to 151.0.3, leading to type confusion and potential renderer crashes or memory corruption.

CVE-2026-43499 [2]: When the kernel's real-time mutex (rtmutex) component performs a specific operation called 'proxy-lock rollback' during futex requeue, it incorrectly handles task pointers. This can lead to a 'Use-After-Free' (UAF) vulnerability, where the system attempts to use memory that has already been released. A local attacker could potentially exploit this to gain elevated privileges or execute unauthorized code.

0: https://github.com/NebuSec/CyberMeowfia/tree/main/IonStack

1: https://www.sentinelone.com/vulnerability-database/cve-2026-...

2: https://access.redhat.com/security/cve/cve-2026-43499