frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Codex starts encrypting sub-agent prompts

https://github.com/openai/codex/issues/28058
171•embedding-shape•1h ago•109 comments

Codex scraped the ICM website and discovered 2026 Fields Medal winner list

https://phemex.com/news/article/2026-fields-medal-winners-list-leaked-includes-two-peking-univers...
63•zaikunzhang•1h ago•38 comments

The Future Worth Building Is Human – Thinking Machines Lab

https://thinkingmachines.ai/blog/the-future-worth-building-is-human/
54•bilsbie•2h ago•34 comments

The great digital fatigue: How digital burnout is changing social media use

https://blog.incogni.com/digital-fatigue-and-burnout/
57•derbOac•2h ago•39 comments

Beautiful Type Erasure with C++26 Reflection

https://ryanjk5.github.io/posts/rjk-duck/
12•RyanJK5•33m ago•5 comments

Coding agents think ahead of time

https://arxiv.org/abs/2607.05188
16•andre15silva•46m ago•4 comments

Actegories

https://bartoszmilewski.com/2026/06/30/actegories/
23•ibobev•2h ago•3 comments

Japan develops a method to recover up to 90% of lithium from used EV batteries

https://tech.supercarblondie.com/japan-recovers-up-to-90-of-lithium-from-used-ev-batteries/
609•donohoe•10h ago•160 comments

No Spanish Reading Crisis?

https://www.commonreader.co.uk/p/no-spanish-reading-crisis
24•jruohonen•1h ago•22 comments

Show HN: I RL-trained an agent that trains models with RL (for –$1.3k)

https://github.com/Danau5tin/ai-trains-ai
11•Danau5tin•33m ago•0 comments

Alternative(s) to run CUDA on non-Nvidia hardware

https://www.hpcwire.com/2026/07/09/spectral-compute-aims-to-set-cuda-free-will-it-succeed/
83•alok-g•4h ago•39 comments

Your 'App' Could Have Been a Webpage (so I fixed it for you)

https://danq.me/2026/07/09/your-app-could-have-been-a-webpage/
145•MrVandemar•3d ago•99 comments

Australian energy retailers must provide three hours of free daytime electricity

https://lenergy.com.au/free-daytime-electricity-is-coming-heres-how-it-actually-works/
156•i2oc•8h ago•248 comments

The git history command

https://lalitm.com/post/git-history/
353•turbocon•12h ago•226 comments

Germany set to restrict its Freedom of Information Act

https://www.dw.com/en/germany-freedom-of-information-act/a-77939695
66•robtherobber•1h ago•22 comments

Punch Yourself in the Face with Reality

https://adi.bio/reality
39•AdityaAnand1•1h ago•13 comments

Indian scientists produce most detailed 3D atlas of the human brainstem

https://www.bbc.com/news/articles/cg53l737v1qo
104•BaudouinVH•6h ago•10 comments

Notable Knot Index (2016)

https://knots.neocities.org/knotindex
36•surprisetalk•4d ago•6 comments

Just Let Me Write Digits

https://gendx.dev/blog/2026/07/13/input-digits.html
88•brandon_bot•7h ago•31 comments

Building and shipping Mac and iOS apps without opening Xcode

https://scottwillsey.com/building-and-shipping-mac-and-ios-apps-without-ever-opening-xcode/
513•speckx•18h ago•218 comments

YouTrackDB is a general-use object-oriented graph database

https://github.com/JetBrains/youtrackdb
146•gjvc•9h ago•46 comments

Differentiable Fortran with LFortran and Enzyme

https://docs.pasteurlabs.ai/projects/tesseract-core/latest/blog/2026-07-09-enzyme-lfortran-autodi...
3•dionhaefner•52m ago•1 comments

How to build a circular LCD clock

https://blinry.org/lcd-clock/
104•birdculture•2d ago•40 comments

Fundamentals of Wireless Communication (2005)

https://web.stanford.edu/~dntse/wireless_book.html
152•teleforce•11h ago•7 comments

The Economics of Recursive Self-Improvement [pdf]

https://elasticity.institute/rsi-paper.pdf
118•apsec112•11h ago•58 comments

An Englishwoman who sketched India before photography took hold

https://www.bbc.com/news/articles/cm2drrv6q54o
186•1659447091•14h ago•54 comments

SalesPatriot (YC W25) Is Hiring Full Stack Engineers (SF)

https://jobs.ashbyhq.com/SalesPatriot/df223727-5781-433e-bc75-2aa5bf8dc8d7
1•maciejSz•16h ago

Satellite Tracker – Live Map of Starlink and 30k Satellites

https://satellitemap.space/
113•rolph•11h ago•57 comments

Is x86 ready to ACE it?

https://chipsandcheese.com/p/is-x86-ready-to-ace-it
94•mfiguiere•11h ago•19 comments

The infinite scroll may become endangered if controversial Calif. law passes

https://www.sfgate.com/politics/article/meta-social-media-teenagers-22337724.php
203•Stratoscope•18h ago•331 comments
Open in hackernews

Codex scraped the ICM website and discovered 2026 Fields Medal winner list

https://phemex.com/news/article/2026-fields-medal-winners-list-leaked-includes-two-peking-university-alumni-92948
59•zaikunzhang•1h ago

Comments

ashu1461•1h ago
Someone used Codex to scrape the ICM website schedule and discovered that the winners list was simply hidden in the front-end code with a "hidden" tag

This is on the devs and feels like a very basic leak which could have exploited in the non LLM world as well.

ajb•54m ago
Yeah that happens all the time. Anyone/thing with popular public releases has fans/journeys scraping the website looking for unreleased material or scoops.

In the early days one of the high profile soaps in the UK published their "catch up" summaries for the week ahead which you could get just by editing the date in the URL. But back then not so many people were looking, so they were doing it for months...

st_goliath•34m ago
Well, the angle is kind of important here. The company gets their name in the news, they have a reasonable explanation why they were scraping around, and we end up with a story about innovative tech company whiz-kids who made a funny discovery, while it was the webdevs on the other side that goofed up.

Imagine a private individual just scraped the website (or simply clicked 'view source') for no reason in particular and then told people about it... They'd be labeled an uber-haxxor, face a civil lawsuit asking for ridiculous damages while being threatened with a prison sentence over CFAA violations. Hell, that might even drive some people to suicide.

brookst•19m ago
The fact that an egregious case happened once, decades ago, is probably not sufficient grounding to act like every bit of equally trivial “hacking” always results in massively disproportionate law enforcement response.

Sucks it happened. But we all know that is not the typical scenario.

sigmar•6m ago
Most of what an LLM does "could have" been done by a human if you throw enough human hours at it. But the reality in this circumstance is that a new tool helped find this leak. Saying this could have happened in a "non LLM world" is analogous to "someone else could have discovered special relativity, let's not mention Einstein"
rurban•1h ago
It's Wang Hong, my god. Cannot they still don't write proper Chinese names?
bananaflag•1h ago
Wikipedia says Hong Wang while acknowledging that the native form is Wang Hong and that they are using the Western name order.
grommz•37m ago
Nobody says Jinping Xi or Zedong Mao.
bromuro•7m ago
Is Elton John or Jhon Elton?
malfist•15m ago
> Cannot they still don't write

Amusing to see someone complaining about not using their definition of "proper language" when they themselves are not using proper language.

bananaflag•1h ago
This is sad, almost as sad as the Deathly Hallows pre-release leak.
zaikunzhang•59m ago
Related to the earlier discussion:

https://news.ycombinator.com/item?id=48902814

See also

Zhihu (Chinese Reddit): https://www.zhihu.com/question/2060133066643879544/answer/20...

Reddit: https://www.reddit.com/r/math/comments/1urv4id/comment/oxak6...

picafrost•58m ago
> Hong Wang will become the third female mathematician in history to receive the Fields Medal

Interestingly, if true, it will also be the first time an MIT PhD graduate has won the Fields Medal.

edoceo•57m ago
I've been working on a site. It's new, domain is only a few weeks old. It's got SSL, so all the bots know it exists. It's never had any sub-pages exposed, just the placeholder lander, no links.

Somehow in Google search one of the unguessable pages is indexed. We have used Claude and Gemini to assist with some design aspects.

I'm thinking some aggressive data ingestion/indexing is happening by all the bots in the quest for frontier models.

resonious•50m ago
I've also seen Google indexing pages with random values in the path that don't get linked to statically (server asks for the URL then redirects to it immediately). I'm pretty sure they index straight out of the Chrome address bar.
foobarbecue•45m ago
Holy crap I hope that's not true. I've also had unguessable pages indexed, though, and don't have an explanation.
nicce•39m ago
Something worth inspecting further. We know that Chrome stores and sends the browsing history but this is an interesting vector.
DANmode•25m ago
I’d be more surprised if they weren’t capturing this information.

Especially if you have autocomplete-while-searching type of features on.

inigyou•
micromacrofoot•38m ago
ai bots will have more privacy than we do
efficax•37m ago
twist: codex also wrote the code that placed the winners list in a hidden element
tw1984•30m ago
too bad that those winners can no longer bet themselves on polymarket as the winner and make big money.
sixtyj•19m ago
> The leak occurred when four Fields Medal laureate lecture fields, marked "HIDDEN," were discovered in the front-end code of the ICM 2026 official schedule.

So it was easier than I thought. Bot just scraped public page with hidden fields, not a secret page or to-be-published page from database.

4m ago
There's no reason to think it isn't true. It matches every pattern of behavior observed from every tech company.
st_goliath•36m ago
Yep. I remember a similar story as GP described from a friend back in 2008. The site he was working on that wasn't linked to yet was suddenly indexed after he checked out what it looked like in the fancy new "Chrome" browser that Google had just released, causing some moderate panic on his end.
dreambigwrkhard•35m ago
Depending on the CMS, if it's wordpress (15% chance, ha) there is a sitemap function built-in out of the box. The bots don't need to guess.
cynerx•29m ago
Are you using Cloudflare by any chance? I think the Crawler Hints setting [1] exposed some of my "secret" pages in the past.

[1] https://developers.cloudflare.com/cache/advanced-configurati...

pohuing•24m ago
There's a couple avenues besides just stealing what's in your URL bar.

If you don't use wildcard certs all of your subdomains can be scraped from the certificate transparency logs. Additionally, any domain+cert using HSTS with preload enabled end up in a big list at Google to speed up the initial connection from browser to site.

fragmede•22m ago
CT logs just explain how they found the domain. T doesn't explain how they could have found unlinked content on the domain itself. If I put up secret-example.com/asdf-1234567.html, how does that page get found if there are no public links to it?
brookst•21m ago
For hosts, but not pages on the site.

But I think the other explanations take care of pages: cloudflare hints, chrome reporting addresses visited, etc.

f311a•20m ago
Google Chrome used to report visited pages back to Google, not sure if this still the case. Also, Google Analytics can see visited pages and Google uses it.

Finding domains is easy, everybody uses CTL to find them.

VladVladikoff•15m ago
Google uses data from chrome. If you visited it with chrome, google knows it exists.
phoghed•12m ago
You ISP also collects and sells data to companies like Moz, and possibly to Google too.
soblemprolver•10m ago
URL paths over https wouldn't be transparent to the ISP though, would they?
throw10920•5m ago
They would not - it was a wrong guess from the GP.
mirekrusin•12m ago
Isn't leaking browser extension used by one of people on the team (doesn't need to be developer, could be qa or anybody with whom the access was shared) more plausible?