HN Reader

Show HN: Visual Editor for Cursor (shuffle.dev)

1 points by kemyd 18s ago 0 comments

Collabora Advances Rust-for-Linux with New Tyr DRM Driver for Mali GPUs (linuxgizmos.com)

1 points by chsum 4m ago 0 comments

LLM Failures (Joe Marshall) (funcall.blogspot.com)

1 points by bikenaga 5m ago 0 comments

Founder mode will become the new Manager mode [video] (youtube.com)

1 points by stalco 5m ago 1 comments

Show HN: Git for Normies (github.com)

1 points by sirbread 6m ago 1 comments

Computer-Science Bubble Is Bursting (msn.com)

1 points by galaxyLogic 8m ago 0 comments

Network-debug โ€“ A CLI tool to fix slow Wi-Fi and poor network tuning on Linux (github.com)

1 points by shua-ie 10m ago 1 comments

Show HN: Mednotegen, medical synthetic note generator (github.com)

1 points by sirbraavos 12m ago 0 comments

AI challenge to find lost Amazonian civilizations draws critics (science.org)

1 points by bikenaga 12m ago 0 comments

Elon Musk's Grok AI chatbot is posting antisemitic comments (cnbc.com)

3 points by mdhb 13m ago 1 comments

WebAssembly: How Low Can a Bytecode Go? (queue.acm.org)

1 points by matt_d 17m ago 0 comments

When in Doubt, Go for a Walk (fabiansjournal.bearblog.dev)

2 points by anotherevan 18m ago 0 comments

Swiss cheese model (en.wikipedia.org)

1 points by transpute 19m ago 0 comments

Renoise 3.5 - Feature Showcase [video] (youtube.com)

1 points by xhevahir 21m ago 0 comments

Class of Models with Potential to Represent Fundamental Physics (arxiv.org)

1 points by Anon84 23m ago 0 comments

3D stacking method created to overcome traditional semiconductor limitations (techxplore.com)

1 points by PaulHoule 26m ago 0 comments

Confidential AI Inference with Attestation: Run LLMs and Agents on Tees (github.com)

1 points by transpute 27m ago 0 comments

Can ChatGPT "see" red? Results of study are nuanced (chan.usc.edu)

2 points by geox 30m ago 0 comments

Elon Musk's Grok praises Hitler, shares antisemitic tropes in new posts (axios.com)

22 points by 12_throw_away 30m ago 8 comments

Alpha-One 7B LLM Agentic/Generative AI Agent (pine64.com)

1 points by sarusso 32m ago 0 comments

US Court nullifies FTC requirement for click-to-cancel (arstechnica.com)

4 points by gausswho 32m ago 1 comments

Up the kriek: Apple gets punchy in Brussels DMA compliance workshop (brucelawson.co.uk)

2 points by archagon 32m ago 0 comments

US 'click to cancel' rule blocked by appeals court (reuters.com)

7 points by petethomas 34m ago 2 comments

Xenharmlib: A music theory library that supports non-western harmonic systems (xenharmlib.readthedocs.io)

3 points by retooth 37m ago 0 comments

Colossal Biosciences to de-extinct giant Moa bird (stuff.co.nz)

2 points by mingabunga 39m ago 0 comments

Build with Claude (anthropic.com)

2 points by zackify 40m ago 0 comments

A.I. slop and the epidemic of Bad writing [video] (youtube.com)

1 points by zahlman 42m ago 0 comments

Amarok 3.3 "Far Above the Clouds" released (blogs.kde.org)

3 points by LorenDB 43m ago 0 comments

"Watershed moment:" Big battery storage prices hit record low in China auction (reneweconomy.com.au)

4 points by toomuchtodo 43m ago 2 comments

China Wants to Use 115,000 Banned Nvidia Chips to Fulfil Its AI Ambitions (bloomberg.com)

1 points by littlexsparkee 49m ago 1 comments

Bayeux Tapestry to be loaned to the UK for first time (independent.co.uk)

1 points by pseudolus 51m ago 0 comments

Why Do Some Language Models Fake Alignment While Others Don't? (arxiv.org)

1 points by mfiguiere 51m ago 0 comments

Inflation expectations drift back down to pre-tariff levels, Fed survey shows (cnbc.com)

2 points by TMWNN 53m ago 1 comments

Show HN: Did that MCP Server leak your database? (github.com)

1 points by anand-tan 57m ago 0 comments

Agency (henrikkarlsson.xyz)

1 points by Curiositry 1h ago 0 comments

FakeFind

2 points by FakeFind_ai 1h ago 0 comments

Why small-time criminals burned a London warehouse for Russia's Wagner Group (bbc.co.uk)

7 points by lifeisstillgood 1h ago 0 comments

Ask HN: Any tool that can auto instrument code and serve as a debugging copilot

1 points by gritlin 1h ago 0 comments

Google's Approach for Secure AI Agents (research.google)

3 points by rbanffy 1h ago 0 comments

Design Patterns for Securing LLM Agents Against Prompt Injections (arxiv.org)

3 points by rbanffy 1h ago 0 comments

Ask HN: Who here uses a productivity system daily?

1 points by cristinon 1h ago 0 comments

Stop Training Your Competitor's AI (cacm.acm.org)

6 points by zdw 1h ago 0 comments

Global PeaceTech Hub, where tech meets governance (globalpeacetech.org)

1 points by Bluestein 1h ago 0 comments

Our dev team tried replacing typing with talking and it's working (deepgram.com)

2 points by dpbrinkm 1h ago 0 comments

How do airplane toilets work? (popsci.com)

1 points by domofutu 1h ago 2 comments

Show HN: Gtime โ€“ A colorful CLI tool to compare and convert time zones (github.com)

2 points by renovate5141 1h ago 0 comments

Welcome to Your Job Interview. Your Interviewer Is A.I (nytimes.com)

4 points by bookofjoe 1h ago 1 comments

Huston Plan (en.wikipedia.org)

4 points by mdhb 1h ago 0 comments

A deal that protected the Amazon from soy farming starts to show cracks (japantimes.co.jp)

3 points by PaulHoule 1h ago 0 comments

Even old brains can make new neurons, study suggests (popsci.com)

3 points by domofutu 1h ago 0 comments

Supply Chain Attacks Are Evolving in 2025: Cases from NPM, PyPI, and CI/CD

1 fatidevrel 1 7/8/2025, 4:12:22 PM xygeni.io โ†—

Comments (1)

fatidevrel ยท 7h ago
This write-up by the Xygeni research team details the most advanced software supply chain attacks observed so far in 2025. It breaks down how threat actors are planting backdoors in trusted packages, targeting CI/CD pipelines, and bypassing basic scanners. Covers both npm and PyPI examples, plus tactics like dependency hijacking and poisoning GitHub workflows. Curious how others are defending against these multi-layered attacks.