HN Reader

The first non-opoid painkiller (worksinprogress.news)

43 points by ortegaygasset 1h ago 11 comments

Apptainer: Application Containers for Linux (apptainer.org)

18 points by cl3misch 44m ago 7 comments

A new pyramid-like shape always lands the same side up (quantamagazine.org)

449 points by robinhouston 14h ago 115 comments

Gemini CLI (blog.google)

1177 points by sync 21h ago 647 comments

Puerto Rico's Solar Microgrids Beat Blackout (spectrum.ieee.org)

159 points by ohjeez 10h ago 58 comments

-2000 Lines of code (folklore.org)

368 points by xeonmc 14h ago 132 comments

A new PNG spec (programmax.net)

553 points by bluedel 1d ago 516 comments

Libxml2's "no security embargoes" policy (lwn.net)

230 points by jwilk 14h ago 188 comments

OpenAI charges by the minute, so speed up your audio (george.mand.is)

564 points by georgemandis 21h ago 169 comments

Getting by on the Generosity of Strangers in Japan (theworld.org)

36 points by ilamont 2d ago 5 comments

Games That Weren't: Preserving Cancelled and Unreleased Video Game History (gamesthatwerent.com)

62 points by ibobev 7h ago 8 comments

A brand new 68k Mac emulator dropped last night (oldbytes.space)

3 points by ColinWright 1h ago 0 comments

AccessOwl (YC S22) is hiring an Elixir Engineer to connect 100s of SaaS (ycombinator.com)

1 points by mathiasn 3h ago 0 comments

Getting ready to issue IP address certificates (community.letsencrypt.org)

288 points by Bogdanp 18h ago 152 comments

What Problems to Solve (1966) (genius.cat-v.org)

383 points by jxmorris12 17h ago 48 comments

Modeling the World in 280 Characters (tympanus.net)

23 points by OuterVale 3d ago 0 comments

Better Auth, by a self-taught Ethiopian dev, raises $5M from Peak XV, YC (techcrunch.com)

140 points by bundie 16h ago 100 comments

Define policy forbidding use of AI code generators (github.com)

393 points by todsacerdoti 11h ago 247 comments

Ambient Garden (ambient.garden)

110 points by fipar 2d ago 18 comments

Writing a basic Linux device driver when you know nothing about Linux drivers (crescentro.se)

272 points by sbt567 3d ago 36 comments

The Art of Hanakami, or Flower-Petal Folding (origamiusa.org)

41 points by s4074433 3d ago 0 comments

Build and Host AI-Powered Apps with Claude – No Deployment Needed (anthropic.com)

240 points by davidbarker 17h ago 97 comments

The Offline Club (theoffline-club.com)

140 points by esher 14h ago 59 comments

MCP in LM Studio (lmstudio.ai)

193 points by yags 17h ago 91 comments

America’s incarceration rate is in decline (theatlantic.com)

157 points by paulpauper 17h ago 292 comments

Structured Output with LangChain and Llamafile (blog.brakmic.com)

3 points by brakmic 3d ago 0 comments

Iroh: A library to establish direct connection between peers (github.com)

209 points by gasull 17h ago 48 comments

Howdy – Windows Hello style facial authentication for Linux (github.com)

24 points by LorenDB 2d ago 12 comments

LLM code generation may lead to an erosion of trust (jaysthoughts.com)

52 points by CoffeeOnWrite 4h ago 65 comments

RaptorCast: Designing a Messaging Layer (category.xyz)

40 points by wwolffrec 3d ago 14 comments

Web Embeddable Common Lisp (turtleware.eu)

128 points by todsacerdoti 18h ago 39 comments

Interstellar Flight: Perspectives and Patience (centauri-dreams.org)

88 points by JPLeRouzic 17h ago 124 comments

Microsoft Dependency Has Risks (blog.miloslavhomer.cz)

124 points by ArcHound 14h ago 162 comments

Bot or human? Creating an invisible Turing test for the internet (research.roundtable.ai)

112 points by timshell 19h ago 142 comments

Games run faster on SteamOS than Windows 11, Ars testing finds (arstechnica.com)

330 points by _JamesA_ 14h ago 156 comments

The Hollow Men of Hims (alexkesin.com)

182 points by quadrin 11h ago 175 comments

Is Lovable getting monetization wrong? (getlago.substack.com)

118 points by FinnLobsien 20h ago 67 comments

Build a Sentence-Level Text-to-Speech Reader in JavaScript (jsdev.space)

12 points by javatuts 2d ago 2 comments

Gemini Users: We're Going to Look at Your Texts Whether You Like It or Not (gizmodo.com)

20 points by miles 4h ago 1 comments

CUDA Ray Tracing 2x Faster Than RTX: My CUDA Ray Tracing Journey (karimsayedre.github.io)

49 points by ibobev 12h ago 9 comments

LLM Hallucinations in Practical Code Generation (dl.acm.org)

59 points by appwiz 3d ago 17 comments

I made a history timeline to learn what events happened around the same time (seanhollen.com)

32 points by Akranazon 10h ago 8 comments

Third places and neighborhood entrepreneurship (2024) (nber.org)

110 points by WasimBhai 22h ago 148 comments

Deep Down the Rabbit Hole: Bash, OverlayFS, and a 30-Year-Old Surprise (sigma-star.at)

67 points by Deeg9rie9usi 20h ago 16 comments

Ask HN: Anyone using augmented reality, VR, glasses, helmets etc. in industry?

72 points by NewUser76312 19h ago 67 comments

I built an app to backup Live Photos from iPhone to external hard drives

65 points by xmasterdev 3d ago 32 comments

Donate Less (blogs.gnome.org)

17 points by edent 3h ago 3 comments

Bill Atkinson: Polaroids Showing the Evolution of the Lisa GUI [video] (youtube.com)

132 points by zdw 4d ago 41 comments

DeepSpeech Is Discontinued (2020) (github.com)

46 points by LorenDB 17h ago 33 comments

Anthropic wins fair use victory for AI – but still in trouble for stealing books (simonwillison.net)

30 points by taubek 13h ago 4 comments

The pitfall of Open-weight LLMs

1 hiddenest 1 6/25/2025, 11:44:14 PM
Some startups are fine-tuning open LLMs instead of using GPT or Gemini. Sometimes it’s for specific language, sometimes for narrow tasks. But I found they’re all making the same mistake.

With a simple prompt (not sharing here), I got several “custom” LLM services to spill their internal system prompts—stuff like security breach playbooks and product action lists.

For example, SKT A.X 4.0 (based on Qwen 2.5) returned internal guidelines related to the recent SKT data breach and instructions about compensation policies. Vercel’s v0 model leaked examples of actions their system can generate.

The point: if the base model leaks, every service built on it is vulnerable, no matter how much you fine-tune. We need to think not only about system prompt hardening at the service level, but also about upstream improvements and more robust defenses in open-weight LLMs themselves.

Comments (1)

bigyabai · 10h ago
You shouldn't trust any LLM with data that could be leaked to an end-user, period. If you do that it's not an issue with the weights, it's a glaring oversight in your security model.