HN Reader

Show HN: TokenDagger – A tokenizer faster than OpenAI's Tiktoken (github.com)

249 points by matthewolfe 14h ago 68 comments

Show HN: New Ensō – first public beta (untested.sonnet.io)

222 points by rpastuszak 15h ago 81 comments

Show HN: Crush Check – AI relationship text analyzer (crushcheck.app)

2 points by omarfarooq360 51m ago 0 comments

Show HN: We're two coffee nerds who built an AI app to track beans and recipes (beanbook.app)

46 points by rokeyzhang 8h ago 33 comments

Show HN: Local LLM Notepad – run a GPT-style model from a USB stick (github.com)

6 points by davidye324 2h ago 0 comments

Show HN: Open-Source International Space Station Tracker ESP32/Arduino for $20 (github.com)

62 points by keyth72 3d ago 17 comments

Show HN: Praxos – Context Management for AI Agents

9 points by mogusian 2h ago 3 comments

Show HN: A continuation of IRS Direct File that can be self-hosted (github.com)

5 points by elijahwright_ 4h ago 0 comments

Show HN: I built a daily sunlight tracker (lumehealth.io)

40 points by vickipow 4d ago 31 comments

Show HN: Private real-time dictation app for Mac (github.com)

10 points by aviaryan 11h ago 4 comments

Show HN: Timezone converter that tells you if your meeting time sucks (timezig.com)

2 points by skrid 5h ago 0 comments

Show HN: C.O.R.E – Opensource, user owned, shareable memory for Claude, Cursor (github.com)

3 points by Manik_agg 5h ago 0 comments

Show HN: Octelium – FOSS Alternative to Teleport, Cloudflare, Tailscale, Ngrok (github.com)

334 points by geoctl 1d ago 144 comments

Show HN: Audiopipe – Pipeline for audio diarization, denoising and transcription (github.com)

4 points by nullwiz 7h ago 0 comments

Show HN: Attach Gateway – one-command OIDC/DID auth for local LLMs (github.com)

4 points by hammadtariq 8h ago 0 comments

Show HN: ArcFont – Font Embedding Model (github.com)

2 points by jernestomg 9h ago 0 comments

Show HN: QuizKnit, an open source quiz creator (quizknit.com)

3 points by jibolash 9h ago 0 comments

Show HN: I'm an airline pilot – I built interactive graphs/globes of my flights (jameshard.ing)

1508 points by jamesharding 3d ago 196 comments

Show HN: Summle – A little maths Game (summle.net)

25 points by kirchhoff 4d ago 8 comments

Show HN: Sharpe Ratio Calculation Tool (fundratios.com)

22 points by navquant 1d ago 16 comments

Show HN: MailMap – Turn emails into interactive stories on Google Maps (mailmap.site)

3 points by Premananda 11h ago 0 comments

Show HN: AGL a toy language that compiles to Go (github.com)

83 points by alain_gilbert 5d ago 12 comments

Show HN: Vet – A tool for safely running remote shell scripts (getvet.sh)

80 points by a10r 2d ago 37 comments

Show HN: Semantic-dictionary – A Python dictionary with semantic lookup (github.com)

4 points by eu90h 13h ago 0 comments

Show HN: DotnetEbpf - Write Linux eBPF kernel applications in C# (github.com)

4 points by KallDrexx 13h ago 0 comments

Show HN: Ravana, Multi AI Assistant Browser Desktop App (github.com)

3 points by ashtavakra 14h ago 1 comments

Show HN: My Cross-Platform MySQL Parser (abbychau.github.io)

4 points by abbychau 14h ago 0 comments

Show HN: A tool to benchmark LLM APIs (OpenAI, Claude, local/self-hosted) (llmapitest.com)

52 points by mrqjr 1d ago 9 comments

Show HN: Sink – Sync any directory with any device on your local network (github.com)

144 points by sirbread 3d ago 89 comments

Show HN: AI image alt text generation tool – Turn images into text with AI (imagerr.ai)

4 points by andrej-wp 15h ago 0 comments

Show HN: A different kind of AI Video generation

44 points by fcpguru 5d ago 19 comments

Show HN: Magnitude – Open-source AI browser automation framework (github.com)

139 points by anerli 4d ago 40 comments

Show HN: Do you know RGB? (maxwellito.github.io)

92 points by maxwellito 6d ago 58 comments

Show HN: Zenta – Mindfulness for Terminal Users (github.com)

198 points by ihiep 3d ago 39 comments

Show HN: Flutter Course 3.0: A Browser IDE (hungrimind.com)

2 points by tadaspetra 9h ago 0 comments

Show HN: I built an AI dataset generator (github.com)

165 points by matthewhefferon 4d ago 33 comments

Show HN: SVG Lined Tile Generator (adpreese.github.io)

27 points by adpreese 5d ago 6 comments

Show HN: SmartStepper – Multi-Step Form Library with Config-Based Flow (github.com)

14 points by milad_shirian 1d ago 4 comments

Show HN: Layerfig Type-safe layered config for JavaScript/TS with any validator (layerfig.dev)

4 points by raulfdm 1d ago 0 comments

Show HN: Oasis – An open-source, 3D-printed smart terrarium (github.com)

141 points by jbuch 6d ago 18 comments

Show HN: Tablr – Supabase with AI Features (tablr.dev)

3 points by Dhruv1823 1d ago 1 comments

Show HN: BloomPilot – AI-Powered Overlay for Bloomberg Terminal (prestigious-albatross-928.convex.app)

2 points by symwn 1d ago 1 comments

Show HN: Ciara – Securely deploy any application on any server (ciara-deploy.dev)

2 points by andresribeiro 1d ago 0 comments

Show HN: Scream to Unlock – Blocks social media until you scream “I'm a loser”

242 points by madinmo 5d ago 129 comments

Show HN: PILF, The ultimate solution to catastrophic oblivion on AI models (github.com)

29 points by NetRunnerSu 3d ago 12 comments

Show HN: Anti-Cluely – Detect virtual devices and cheating tools on exam systems (anti-cluely.com)

11 points by kkxingh 2d ago 1 comments

Show HN: Ketcher Docker – Self-Hosting Advanced Chemical Structure Editor (github.com)

2 points by mireklzicar 1d ago 0 comments

Show HN: EliteSaaS – Self-Contained SaaS Starter (Auth, Billing, Email, Launch) (elitesaas.dev)

3 points by eibrahim 1d ago 0 comments

Show HN: Clai - Vendor agnostic Claude Code/Gemini CLI written in Go (github.com)

9 points by baalimago 2d ago 0 comments

Show HN: PRSS Site Creator – Create Blogs and Websites from Your Desktop (prss.co)

25 points by volted 4d ago 21 comments

High-Severity Vulnerability in Notepad++

16 onlinenotepad 5 6/30/2025, 5:49:12 PM csa.gov.sg ↗

Comments (5)

gertlex · 5h ago
Looks like it's a vulnerability in the installer.

From a small bit of skimming, sounds like it's a user escalation vector, where a low privileged user can run the installer in a contrived manner to achieve privilege escalation.

https://github.com/notepad-plus-plus/notepad-plus-plus/secur...

So for my personal install, nothing to worry about here...

reanimus · 5h ago
Headline is a little misleading imo -- the vulnerability isn't in Notepad++ itself as much as its installer. Current users, I imagine, don't have anything to worry about.
notepad0x90 · 4h ago
Unless the updater also runs the installer, then you just drop your malicious dll in the right place and wait for an update, or find a way to force-trigger an update.

Attackers can also use the notepad installer as a payload execution mechanism. To run your malware, just get older notepad++ installers and drop your dll after the installer is running to run it as SYSTEM.

notepad0x90 · 4h ago
I wanted to say the installer has no business running things as SYSTEM but I suppose there is no way around that for registering COM DLLs. I would think Attackers would need to chain this with a Uac bypass (or be fortunate enough to find Uac disabled). If Uac is setup right, administrative operations like regsvr32 should require going through consent.exe's prompt. Uac bypasses are plenty but systems can be configured to mitigate them (at least the ones I know of). Social engineering is also another good way to bypass Uac.
retox · 4h ago
If the problem is in the installer then this can't be 'fixed', affected installers should be fingerprinted as malware.

No comments yet