HN Reader

FERC: Solar and wind made up 98% of new US power generating capacity in Q1 2025 (electrek.co)

1 points by toomuchtodo 5m ago 1 comments

The One-Way Door of AWS Transform: A Secret 24-Month Lock-Up (lastweekinaws.com)

2 points by shscs911 8m ago 0 comments

Ask HN: Do startup founders/teams care about health during stressful times?

1 points by Bkimmy16 10m ago 0 comments

Laugh Track (en.wikipedia.org)

1 points by 90s_dev 12m ago 2 comments

Strategism: How (& Why) NY Times Is a Gaming Company (opensourceceo.com)

1 points by rmason 13m ago 0 comments

HHS officials are worried that Beijing spies are stealing American infants' DNA (dailymail.co.uk)

1 points by suraci 15m ago 0 comments

eBPF Arena: A Tutorial (fshahinfar1.github.io)

2 points by tanelpoder 24m ago 0 comments

Where are Voyager 1 and Voyager 2 Now (science.nasa.gov)

3 points by zdgeier 30m ago 0 comments

Building a Smart Morning Routine Dashboard (From a Jailbroken Lululemon Mirror) (youtube.com)

1 points by nipponese 36m ago 1 comments

Web-based 3D shape creator powered by hand gestures (gmujtaba.com)

1 points by sumo86 37m ago 0 comments

Windsurf launches SWE-1, its first family of software engineering AI models (windsurf.com)

3 points by thm 39m ago 0 comments

Wan2.1VACE is coming soon to WaveSpeed–get ready for next-level video generation (twitter.com)

1 points by sylm 40m ago 0 comments

Cracked - method chaining/CSS-style selector web audio library (github.com)

5 points by stephenhandley 41m ago 2 comments

The Limits of React Server Components: A Practitioner's Journey (nirtamir.com)

2 points by lioeters 42m ago 0 comments

Startups powering the future of energy in Europe and Israel (blog.google)

1 points by nsoonhui 42m ago 0 comments

Non-Event Feedback Loops (blog.alpineinstitute.com)

2 points by yummypaint 49m ago 0 comments

The first US hub for experimental medical treatments is coming (technologyreview.com)

1 points by vjulian 50m ago 0 comments

Free VoiceTyping App (voicetype.com)

1 points by mlashuel 54m ago 0 comments

Build your first LLM from scratch (github.com)

1 points by Michaelgathara 59m ago 0 comments

iOS Exploit Chain and Remaining Unpatched Surfaces (josephgoydish2.substack.com)

2 points by FluGameAce007 1h ago 0 comments

Joining threads as they finish in Rust (jpmelos.com)

2 points by jpmelos 1h ago 0 comments

Williams Syndrome: The people who are too friendly (bbc.com)

2 points by neom 1h ago 0 comments

Geo-Sleuthing 101: How to Pinpoint Locations with Osint (medium.com)

2 points by navbvvdasvv 1h ago 0 comments

Gold Prediction Wiki (goldprediction.wiki)

1 points by amisinggjj 1h ago 1 comments

Show HN: A bot that doesn't join your calls and writes your follow-up (withcustos.com)

1 points by khalilosman123 1h ago 0 comments

Why bad philosophy is stopping progress in physics (nature.com)

7 points by bookofjoe 1h ago 2 comments

Urge Congress to Save Public Media Like PBS (protectmypublicmedia.org)

8 points by burnt-resistor 1h ago 2 comments

Repository with system prompts that for Grok chat assistant (github.com)

1 points by sxp 1h ago 0 comments

Update on an incident that happened with our Grok response bot on X yesterday (twitter.com)

13 points by sxp 1h ago 13 comments

Advertisers hit back at Elon Musk's ad boycott lawsuit (businessinsider.com)

3 points by pinewurst 1h ago 1 comments

US set to lose $12.5B in international tourism (wttc.org)

11 points by geox 1h ago 0 comments

Aurura time-lapses from space captured by NASA's Don Pettit [video] (youtube.com)

1 points by pavel_lishin 1h ago 0 comments

Trump's sanctions on ICC's chief prosecutor have halted tribunal's work (pbs.org)

8 points by bhouston 1h ago 1 comments

A Resolution in Response to the Adoption of ChatGPT Edu at CSU Northridge [pdf] (live-csu-northridge.pantheonsite.io)

2 points by mooreds 1h ago 0 comments

Green Fabrication of Sulfonium-Containing Bismuth Materials for X-Ray Detection (advanced.onlinelibrary.wiley.com)

2 points by PaulHoule 1h ago 0 comments

Ollama's new engine for multimodal models (ollama.com)

12 points by LorenDB 1h ago 0 comments

Show HN: I built a Goal Meter I always wanted (goalmeter.xyz)

1 points by bhu1st 1h ago 0 comments

A Garbage Collection Strategy (irreal.org)

2 points by todsacerdoti 1h ago 0 comments

Spatial Speech Translation: Translating Across Space with Binaural Hearables (babelfish.cs.washington.edu)

1 points by gnabgib 1h ago 0 comments

In Celebration of Accessibility (feaneron.com)

2 points by hysan 1h ago 0 comments

I was a Theranos whistleblower. Here's what I think Elizabeth Holmes is up to (statnews.com)

54 points by iancmceachern 1h ago 19 comments

Continued Corespotlightd High CPU Usage on Sequoia (iboysoft.com)

1 points by Nancy-ooo 1h ago 1 comments

AI headphones translate multiple speakers at once (washington.edu)

3 points by gmays 1h ago 0 comments

ESC190 Lab 10: Vibe Coding [pdf] (cs.toronto.edu)

1 points by watusername 1h ago 0 comments

Apple Used China to Make a Profit. What China Got in Return Is Scarier (nytimes.com)

8 points by perihelions 1h ago 2 comments

Conversational Chat UI as a WebComponent (github.com)

1 points by sascha10000 1h ago 1 comments

Show HN: HumOS Your Personal AI Integration Framework (humos.netlify.app)

1 points by pepecuenca33 2h ago 1 comments

Which LLM writes the best analytical SQL? (tinybird.co)

2 points by hn1986 2h ago 0 comments

Windsurf launches in-house AI models SWE-1, SWE-1-lite, and SWE-1-mini (techcrunch.com)

3 points by jz10 2h ago 0 comments

How and Why to Disappear from the Attention Economy (indignified.substack.com)

9 points by ZguideZ 2h ago 6 comments

Malicious 'Checker' Packages on PyPI Probe TikTok and Instagram for Valid

2 feross 1 5/15/2025, 10:31:11 PM socket.dev ↗

Comments (1)

duskwuff · 3h ago
Calling libraries "malicious" and "malware" simply because they interact with web service APIs in an unauthorized way, or because they could potentially be used for nefarious purposes, is a pretty serious overstatement.

Would I use these libraries in an application I was writing? Probably not. But I don't see any evidence of malice here, like exfiltrating the usernames/passwords to a third party or executing code from an unexpected source. At best, these libraries are potentially unwanted, not malicious.