HN Reader

WeatherStar 4000+: Weather Channel Simulator (weatherstar.netbymatt.com)

127 points by adam_gyroscope 1h ago 23 comments

Human coders are still better than LLMs (antirez.com)

36 points by longwave 51m ago 24 comments

Show HN: I wrote a modern Command Line Handbook (commandline.stribny.name)

109 points by petr25102018 2h ago 16 comments

Learning C3 (alloc.dev)

119 points by lerno 3h ago 62 comments

Putting Rigid Bodies to Rest (twitter.com)

20 points by pvg 1h ago 3 comments

The flip phone web: browsing with the original Opera Mini (spacebar.news)

40 points by protonbob 2h ago 18 comments

Infisical (YC W23) Is Hiring Full Stack Engineers (TypeScript) in US and Canada (ycombinator.com)

1 points by dangtony98 30m ago 0 comments

Nova: A JavaScript and WebAssembly engine written in Rust (trynova.dev)

61 points by AbuAssar 3h ago 17 comments

Gurus of 90s Web Design: Zeldman, Siegel, Nielsen (cybercultural.com)

289 points by panic 9h ago 122 comments

My website is ugly because I made it (goodinternetmagazine.com)

291 points by surprisetalk 1d ago 96 comments

Civil War in 3D: Stereographs from the New-York Historical Society (2015) (nyhistory.org)

18 points by LorenDB 1h ago 5 comments

The key to a successful egg drop experiment? Drop it on its side (arstechnica.com)

12 points by samizdis 2d ago 4 comments

A visual exploration of vector embeddings (blog.pamelafox.org)

23 points by pamelafox 21h ago 3 comments

Simple programming language with offline usable browser IDE (tiki.li)

67 points by chrisjj 6h ago 24 comments

The Polymarket users betting on when Jesus will return (ericneyman.wordpress.com)

170 points by surprisetalk 1d ago 236 comments

The Maid Who Restored Charles II (historytoday.com)

27 points by samclemens 11h ago 10 comments

I started a little math club in Bangalore (teachyourselfmath.app)

35 points by viveknathani_ 4h ago 6 comments

Show HN: Typed-FFmpeg 3.0–Typed Interface to FFmpeg and Visual Filter Editor (github.com)

277 points by lucemia51 13h ago 27 comments

Show HN: Weather2Geo – Geolocate screenshots from weather widgets (github.com)

29 points by Elliott-Diy 1d ago 2 comments

Run a C# file directly using dotnet run app.cs (devblogs.microsoft.com)

243 points by soheilpro 15h ago 202 comments

Show HN: I made a Zero-config tool to visualize your code (staying.fun)

69 points by lezhu 7h ago 31 comments

Show HN: Porting Terraria and Celeste to WebAssembly (velzie.rip)

286 points by coolelectronics 2d ago 38 comments

Edamagit: Magit for VSCode (github.com)

107 points by tosh 9h ago 62 comments

High-quality OLED displays now enabling integrated thin and multichannel audio (sciencedaily.com)

91 points by LorenDB 1d ago 56 comments

Long live American Science and Surplus (milwaukeerecord.com)

355 points by thinkalone 20h ago 98 comments

From Finite Integral Domains to Finite Fields (susam.net)

44 points by susam 3d ago 13 comments

The Art of the Critic (metropolitanreview.org)

18 points by benbreen 11h ago 2 comments

Domain Adaptation of Base Models + ShadowdarkQA Bench (gygaxtest.com)

11 points by pact_inference 3h ago 6 comments

Japan Post launches 'digital address' system (japantimes.co.jp)

413 points by jmsflknr 1d ago 269 comments

RSyncUI – A SwiftUI based macOS GUI for rsync (github.com)

78 points by mickelsen 12h ago 24 comments

A toy RTOS inside Super Mario Bros. using emulator save states (prettygoodblog.com)

235 points by notorious_pgb 21h ago 52 comments

Compiler Explorer and the promise of URLs that last forever (xania.org)

330 points by anarazel 1d ago 163 comments

What If We Had Bigger Brains? Imagining Minds Beyond Ours (writings.stephenwolfram.com)

186 points by nsoonhui 4d ago 222 comments

The Tariffs Are Illegal (bloomberg.com)

13 points by ioblomov 14m ago 2 comments

ClickHouse raises $350M Series C (clickhouse.com)

80 points by caust1c 2h ago 63 comments

Chimps strike stones against trees as communication, study suggests (phys.org)

75 points by pseudolus 2d ago 30 comments

Walkers' Sensations Poppadoms vs. HMRC: The Chip of Theseus (ft.com)

28 points by robinhouston 2d ago 31 comments

Why Is Everybody Knitting Chickens? (ironicsans.ghost.io)

49 points by mooreds 2d ago 45 comments

Visualize and debug Rust programs with a new lens (firedbg.sea-ql.org)

202 points by alex_hirner 4d ago 34 comments

Compiling a neural net to C for a speedup (slightknack.dev)

272 points by todsacerdoti 1d ago 83 comments

What does “Undecidable” mean, anyway (buttondown.com)

136 points by BerislavLopac 21h ago 139 comments

HTAP is Dead (mooncake.dev)

142 points by moonikakiss 19h ago 78 comments

Apollo Lunar Surface Journal (nasa.gov)

45 points by Bluestein 2d ago 12 comments

Show HN: Tesseral – Open-Source Auth (github.com)

183 points by ucarion 1d ago 71 comments

Grass Rendering Series (hexaquo.at)

100 points by ibobev 3d ago 9 comments

A Visual History of Chessmen (chesshistory.github.io)

96 points by alberto-m 4d ago 18 comments

Why are rice prices still high? (japantimes.co.jp)

11 points by PaulHoule 2h ago 6 comments

Basic for the Raspberry Pi Pico and Pico 2 (geoffg.net)

73 points by AlexeyBrin 4d ago 2 comments

Asus router backdoors affect 9K devices, persist after firmware updates (scworld.com)

33 points by Bender 5h ago 14 comments

Unlocking Ractors: class instance variables in Ruby (byroot.github.io)

74 points by hahahacorn 2d ago 0 comments

The risk in AI code-gen (running untrusted code without isolation)

2 cristinaibunea 1 5/27/2025, 12:32:17 PM northflank.com ↗

Comments (1)

careful_ai · 4h ago
This is one of the more practical and sobering breakdowns of container (non-)isolation I’ve read in a while. The framing around AI agents deploying code—with access to sensitive API keys—is exactly where modern infra risk is headed, and most teams aren't prepared for it.

What stood out to me is how gVisor and Kata Containers are positioned not as futuristic edge cases but as immediate needs in multi-tenant and AI-integrated environments. You don’t often see platform companies this transparent about the operational pain points (e.g., gVisor syscall support gaps, KVM regressions), which builds trust.

Curious to hear if others here have tried running microVMs in production—especially with orchestration via Kubernetes. Are we at a point where this is viable for most teams, or is the ops overhead still too high?