HN Reader

Bring Your Own Model to Chat in Visual Studio (devblogs.microsoft.com)

1 points by nreece 10m ago 0 comments

MCP plugins study – 10% of tested plugins „fully exploitable" (pynt.io)

1 points by truegoric 11m ago 0 comments

Sapir-Whorf does not apply to Programming Languages (buttondown.com)

1 points by BerislavLopac 11m ago 0 comments

Physics-based simulation and optimization in desktop 3D printing (fabbaloo.com)

1 points by dhar118 13m ago 0 comments

Biotech CEO sues Uber after illegal immigrant driver assault caught on camera (foxnews.com)

1 points by 5555624 19m ago 0 comments

The "Super Weight:" How Even a Single Parameter Can Determine a LLM's Behavior (machinelearning.apple.com)

1 points by cjrd 22m ago 0 comments

I have no mut and I must borrow (old.reddit.com)

1 points by truegoric 26m ago 0 comments

Organizers Are Demanding Palantir Drop Contracts with ICE and Israeli Military (truthout.org)

1 points by 01-_- 28m ago 0 comments

Show HN: Ultra-fast, embedded KV store in pure Rust (github.com)

3 points by mehrant 29m ago 2 comments

China cut itself off from the global internet for an hour on Wednesday (theregister.com)

1 points by 01-_- 30m ago 0 comments

Ask HN: Why is Prolog not gaining traction?

2 points by 0x07ca 33m ago 0 comments

Martyrs to the Unspeakable: The Assassinations of JFK, Martin, Malcolm, and RFK (orbisbooks.com)

1 points by hkhn 34m ago 0 comments

OUI-Spy Is a Slick Bluetooth Low Energy Scanner (hackster.io)

1 points by meilily 34m ago 0 comments

How to load test PostgreSQL database and not miss anything (habr.com)

1 points by amalinovic 36m ago 0 comments

Sonic Liberation Devices (sonicliberationdevices.com)

1 points by crousto 41m ago 1 comments

Claude Code's erratic behavior from May-August 2025 (github.com)

4 points by bogdansolga 49m ago 1 comments

Germany's Ecosia proposes stewardship to run Google Chrome (reuters.com)

4 points by 13324 52m ago 0 comments

Demand-Side Platform (en.wikipedia.org)

2 points by doener 1h ago 0 comments

Grok chats exposed in Google results (bbc.com)

2 points by mdhb 1h ago 2 comments

When People Giggle at Your Name, or the 2025 Hugo Awards Incident (grigorylukin.com)

2 points by Rokesmith 1h ago 0 comments

The Minecraft code no one has solved (2024) [video] (youtube.com)

3 points by zichy 1h ago 0 comments

Mitigating Backpressure from High Join Amplification with Unaligned Joins (risingwave.com)

1 points by Sheldon_fun 1h ago 0 comments

Trump administration to vet all 55M foreigners with U.S. visas (washingtonpost.com)

9 points by KnuthIsGod 1h ago 0 comments

Saneject: Dependency Injection the Unity Way (github.com)

1 points by msk-lywenn 1h ago 0 comments

Insights from 100 Years of Research with Probiotic E. Coli (pmc.ncbi.nlm.nih.gov)

2 points by luu 1h ago 0 comments

Too Much of a Good Thing: How Genericide Sends Trademarks to the Graveyard (uclawreview.org)

2 points by thunderbong 1h ago 0 comments

What the Hell Is Going On? (catskull.net)

4 points by todsacerdoti 1h ago 0 comments

Do blogs need to be so lonely? (thehistoryoftheweb.com)

1 points by Brajeshwar 1h ago 0 comments

Ryan Dancey on the Acquisition of TSR (insaneangel.com)

2 points by Michelangelo11 1h ago 0 comments

My first project in Go is a terminal dashboard (what a programming language)

4 points by vinserello 1h ago 3 comments

Opt-In Event Phases for Reliably Fast DOM Operations (github.com)

1 points by robin_reala 1h ago 0 comments

A decade of database innovation: The Amazon Aurora story (amazon.science)

1 points by mariuz 1h ago 0 comments

Americans' junk-filled garages are hurting EV adoption, study says (arstechnica.com)

3 points by embit 1h ago 0 comments

I built an open-source extension to manage canned responses for customer support (github.com)

1 points by 1437173153 1h ago 1 comments

Mirage 2 – Generative World Engine (twitter.com)

1 points by bbzjk7 1h ago 1 comments

Psychologist for Founders (marcosander.com)

1 points by MarcoSander 1h ago 0 comments

The Baby Paradox in Haskell (blog.jle.im)

1 points by Bogdanp 1h ago 0 comments

Is AI Zover? (ft.com)

1 points by KnuthIsGod 1h ago 0 comments

The Pick OS (youtube.com)

1 points by firefoxd 1h ago 0 comments

Nano Banana (nanobanana.ai)

2 points by iamflimflam1 1h ago 0 comments

California Resident Tests Positive for Plague. What to Know About the Disease (time.com)

5 points by mdp2021 1h ago 4 comments

I Built Free QR Code Validator – Validate Before Scan (v2.qranalytica.com)

2 points by nookeshkarri7 2h ago 0 comments

Not-So-Great Firewall: China Blocks the Web for 74 Min (securityboulevard.com)

1 points by austinallegro 2h ago 0 comments

Why 'Silksong' Took Seven Years to Make (bloomberg.com)

1 points by microsoftedging 2h ago 1 comments

LLMs Won't Replace Programming Languages (mech-lang.org)

3 points by anewhnaccount2 2h ago 0 comments

It's Not Wrong that " ".length == 7 (hsivonen.fi)

47 points by program 2h ago 30 comments

AI Cannibalism Can Be Good (gwern.net)

7 points by tie-in 2h ago 0 comments

Show HN: Git Flex – See the top contributor and % lines per author (open-vsx.org)

2 points by cgonzar3 2h ago 0 comments

Ask HN: Recently laid off developer looking for solo product ideas

7 points by thatgloomyguy 2h ago 2 comments

Futurama Theorem (theinfosphere.org)

3 points by pillars 2h ago 0 comments

Unmasking Phantom Deps W Bill-of-Materials as Ecosystem Neutral Metadata

1 acossta 1 8/22/2025, 4:59:39 AM pyfound.blogspot.com ↗

Comments (1)

acossta · 3h ago
This is a hidden gem.

This whitepaper digs into the sneaky dependencies you didn’t knowingly add (thanks, transitive bloat). It lays out how an SBOM can be a universal metadata layer across ecosystems—pip, npm, you name it—to let you trace every ghost package in your stack.

Feels like the Python dev community quietly dropped a supply-chain lifeline here.