HN Reader

Gemini CLI (blog.google)

1373 points by sync 1d ago 751 comments

U.S. bombs Iranian nuclear sites (bbc.co.uk)

1244 points by mattcollins 5d ago 3828 comments

Mechanical Watch: Exploded View (fellerts.no)

1159 points by fellerts 4d ago 134 comments

YouTube's new anti-adblock measures (iter.ca)

984 points by smitop 6d ago 1322 comments

Samsung embeds IronSource spyware app on phones across WANA (smex.org)

842 points by the-anarchist 5d ago 480 comments

Writing toy software is a joy (blog.jsbarretto.com)

793 points by bundie 2d ago 310 comments

uv: An extremely fast Python package and project manager, written in Rust (github.com)

734 points by chirau 3d ago 333 comments

OpenAI charges by the minute, so speed up your audio (george.mand.is)

702 points by georgemandis 1d ago 212 comments

Harper – an open-source alternative to Grammarly (writewithharper.com)

638 points by ReadCarlBarks 6d ago 160 comments

Phoenix.new – Remote AI Runtime for Phoenix (fly.io)

636 points by wut42 6d ago 272 comments

A new PNG spec (programmax.net)

628 points by bluedel 2d ago 577 comments

A new pyramid-like shape always lands the same side up (quantamagazine.org)

622 points by robinhouston 1d ago 150 comments

Fun with uv and PEP 723 (cottongeeks.com)

616 points by deepakjois 2d ago 221 comments

Backyard Coffee and Jazz in Kyoto (thedeletedscenes.substack.com)

592 points by wyclif 3d ago 265 comments

Vera C. Rubin Observatory first images (rubinobservatory.org)

575 points by phsilva 3d ago 165 comments

Git Notes: Git's coolest, most unloved­ feature (2022) (tylercipriani.com)

573 points by Delgan 4d ago 144 comments

Man 'refused entry into US' as border control catch him with bald JD Vance meme (dublinlive.ie)

558 points by miles 2d ago 539 comments

A new PNG spec (programmax.net)

557 points by tbillington 1d ago 5 comments

Thnickels (thick-coins.net)

545 points by jxmorris12 2d ago 118 comments

How I use my terminal (jyn.dev)

530 points by todsacerdoti 3d ago 299 comments

I wrote my PhD Thesis in Typst (fransskarman.com)

530 points by todsacerdoti 4d ago 328 comments

Microsoft suspended the email account of an ICC prosecutor at The Hague (nytimes.com)

528 points by blinding-streak 5d ago 380 comments

-2000 Lines of code (2004) (folklore.org)

519 points by xeonmc 1d ago 224 comments

Define policy forbidding use of AI code generators (github.com)

505 points by todsacerdoti 1d ago 368 comments

Microsoft Edit (github.com)

474 points by ethanpil 2d ago 315 comments

What Problems to Solve (1966) (genius.cat-v.org)

471 points by jxmorris12 1d ago 58 comments

Hurl: Run and test HTTP requests with plain text (github.com)

459 points by flykespice 6d ago 112 comments

Starship: A minimal, fast, and customizable prompt for any shell (starship.rs)

450 points by benoitg 2d ago 211 comments

TPU Deep Dive (henryhmko.github.io)

446 points by transpute 4d ago 83 comments

PlasticList – Plastic Levels in Foods (plasticlist.org)

443 points by homebrewer 2d ago 182 comments

Klein Bottle Amazon Brand Hijacking (2021) (kleinbottle.com)

443 points by sebg 4d ago 282 comments

Writing a basic Linux device driver when you know nothing about Linux drivers (crescentro.se)

425 points by sbt567 4d ago 60 comments

LibRedirect – Redirects popular sites to alternative privacy-friendly frontends (libredirect.github.io)

423 points by riffraff 4d ago 103 comments

Tell HN: Beware confidentiality agreements that act as lifetime non competes

411 points by throwarayes 5d ago 254 comments

uBlock Origin Lite Beta for Safari iOS (testflight.apple.com)

409 points by Squarex 5d ago 131 comments

Games run faster on SteamOS than Windows 11, Ars testing finds (arstechnica.com)

402 points by _JamesA_ 1d ago 249 comments

Fairphone 6 is switching to a new design that's even more sustainable (androidcentral.com)

400 points by Bluestein 3d ago 506 comments

Finding a 27-year-old easter egg in the Power Mac G3 ROM (downtowndougbrown.com)

386 points by zdw 2d ago 115 comments

U.S. Chemical Safety Board could be eliminated (ishn.com)

383 points by z991 3d ago 244 comments

AlphaGenome: AI for better understanding the genome (deepmind.google)

374 points by i_love_limes 12h ago 110 comments

Using Home Assistant, adguard home and an $8 smart outlet to avoid brain rot (romanklasen.com)

370 points by remuskaos 4d ago 197 comments

GitHub CEO: manual coding remains key despite AI boom (techinasia.com)

355 points by andrewstetsenko 3d ago 280 comments

Puerto Rico's Solar Microgrids Beat Blackout (spectrum.ieee.org)

348 points by ohjeez 1d ago 199 comments

New Linux udisks flaw lets attackers get root on major Linux distros (bleepingcomputer.com)

347 points by smig0 6d ago 270 comments

Basic Facts about GPUs (damek.github.io)

333 points by ibobev 2d ago 75 comments

MCP is eating the world (stainless.com)

330 points by emschwartz 5d ago 232 comments

Python can run Mojo now (koaning.io)

325 points by cantdutchthis 6d ago 163 comments

Getting ready to issue IP address certificates (community.letsencrypt.org)

323 points by Bogdanp 1d ago 174 comments

AbsenceBench: Language models can't tell what's missing (arxiv.org)

323 points by JnBrymn 6d ago 84 comments

Build and Host AI-Powered Apps with Claude – No Deployment Needed (anthropic.com)

317 points by davidbarker 1d ago 136 comments

Building untrusted container images safely at scale

1 Telstrom90 3 6/26/2025, 6:22:05 PM depot.dev ↗

Comments (3)

adastra22 · 7h ago
I'm confused--what's the security risk in building a container?
Telstrom90 · 5h ago
You're running untrusted code. Every RUN command in a user's Dockerfile is executed during build, which means you're executing arbitrary commands from strangers on your own infrastructure. If you're not isolating that properly, it's a security risk.
adastra22 · 1h ago
Inside the container though. The whole point of which is that it sandboxes and isolates the running code.