HN Reader

Gemma 3 270M: Compact model for hyper-efficient AI (developers.googleblog.com)

422 points by meetpateltech 5h ago 178 comments

Streaming services are driving viewers back to piracy (theguardian.com)

174 points by nemoniac 4h ago 148 comments

Steve Wozniak: Life to me was never about accomplishment, but about happiness (yro.slashdot.org)

319 points by MilnerRoute 3h ago 220 comments

Org-social is a decentralized social network that runs on Org Mode (github.com)

76 points by tanrax 1d ago 35 comments

We Rewrote the Ghostty GTK Application (mitchellh.com)

10 points by tosh 24m ago 0 comments

I made a real-time C/C++/Rust build visualizer (danielchasehooper.com)

130 points by dhooper 5h ago 39 comments

OneSignal (YC S11) Is Hiring Engineers (onesignal.com)

1 points by gdeglin 42m ago 0 comments

New protein therapy shows promise as antidote for carbon monoxide poisoning (medschool.umaryland.edu)

195 points by breve 9h ago 47 comments

Show HN: OWhisper – Ollama for realtime speech-to-text (docs.hyprnote.com)

60 points by yujonglee 5h ago 25 comments

What's the strongest AI model you can train on a laptop in five minutes? (seangoedecke.com)

453 points by ingve 2d ago 165 comments

Architecting large software projects [video] (youtube.com)

58 points by jackdoe 2d ago 26 comments

Airbrush art of the 80s was Chrome-tastic (2015) (coolandcollected.com)

18 points by Michelangelo11 1h ago 0 comments

Blood oxygen monitoring returning to Apple Watch in the US (apple.com)

290 points by thm 8h ago 215 comments

All Souls exam questions and the limits of machine reasoning (resobscura.substack.com)

29 points by benbreen 1d ago 13 comments

Show HN: I built a free alternative to Adobe Acrobat PDF viewer (github.com)

116 points by bobsingor 6h ago 31 comments

Launch HN: Cyberdesk (YC S25) – Automate Windows legacy desktop apps

43 points by mahmoud-almadi 6h ago 31 comments

1976 Soviet edition of 'The Hobbit' (2015) (mashable.com)

224 points by us-merul 3d ago 75 comments

Show HN: MCP Security Suite (github.com)

9 points by jodoking 1h ago 8 comments

How to rig elections [video] (media.ccc.de)

112 points by todsacerdoti 9h ago 90 comments

Reverse Proxy Deep Dive: Why Load Balancing at Scale Is Hard (startwithawhy.com)

26 points by miggy 3d ago 2 comments

"Privacy preserving age verification" is bullshit (pluralistic.net)

164 points by Refreeze5224 4h ago 107 comments

Bluesky: Updated Terms and Policies (bsky.social)

65 points by mschuster91 4h ago 80 comments

Homekit-steam-user-switcher: A way to remotely switch Steam users using HomeKit (github.com)

9 points by rcarmo 3d ago 0 comments

What does Palantir actually do? (wired.com)

135 points by mudil 22h ago 102 comments

Nyxt: The Emacs-like web browser (lwn.net)

111 points by signa11 3d ago 25 comments

500 days of math (gmays.com)

136 points by gmays 2d ago 80 comments

Funding Open Source like public infrastructure (dri.es)

243 points by pabs3 18h ago 97 comments

Show HN: Modelence – Supabase for MongoDB (github.com)

24 points by artahian 5h ago 8 comments

Why and how to write things on the Internet (2022) (benkuhn.net)

13 points by jger15 2d ago 3 comments

DINOv3 (github.com)

9 points by reqo 1h ago 4 comments

iPhone DevOps (2023) (clearsky.dev)

126 points by ustad 12h ago 120 comments

Arch shares its wiki strategy with Debian (lwn.net)

332 points by lemper 12h ago 115 comments

NSF and Nvidia award Ai2 $152M to support building an open AI ecosystem (allenai.org)

144 points by _delirium 8h ago 78 comments

Show HN: Zig-DbC – A design by contract library for Zig

35 points by habedi0 2d ago 2 comments

Big Tech's A.I. Data Centers Are Driving Up Electricity Bills for Everyone (nytimes.com)

10 points by moneycantbuy 48m ago 0 comments

SIMD Binary Heap Operations (0x80.pl)

48 points by ryandotsmith 2d ago 15 comments

Kodak has no plans to cease, go out of business, or file for bankruptcy (kodak.com)

269 points by whicks 6h ago 123 comments

Zenobia Pay – A mission to build an alternative to high-fee card networks (zenobiapay.com)

233 points by pranay01 19h ago 244 comments

DINOV3: Self-supervised learning for vision at unprecedented scale (ai.meta.com)

4 points by isusmelj 2h ago 0 comments

Fundamental Flaw of Hustle Culture (brodzinski.com)

43 points by flail 2h ago 20 comments

Passion over Profits (dillonshook.com)

68 points by dillonshook 8h ago 51 comments

Jujutsu and Radicle (radicle.xyz)

110 points by vinnyhaps 7h ago 75 comments

Show HN: Yet another memory system for LLMs (github.com)

151 points by blackmanta 18h ago 42 comments

A new poverty line shifted the World Bank's poverty data (ourworldindata.org)

62 points by alphabetatango 3d ago 53 comments

Linux address space isolation revived after lowering performance hit (phoronix.com)

172 points by teleforce 9h ago 48 comments

Is chain-of-thought AI reasoning a mirage? (seangoedecke.com)

116 points by ingve 7h ago 96 comments

What are the real numbers, really? (2024) (infinitelymore.xyz)

24 points by EthanHeilman 3h ago 11 comments

KosmicKrisp a Vulkan on Metal Mesa 3D Graphics Driver (lunarg.com)

15 points by Degenerative 2d ago 12 comments

Fun with Finite State Transducers (blog.yossarian.net)

5 points by woodruffw 4h ago 0 comments

What medieval people got right about learning (2019) (scotthyoung.com)

141 points by ripe 21h ago 101 comments

Show HN: MCP Security Suite

9 jodoking 8 8/14/2025, 8:01:33 PM github.com ↗
Hi HN!

We kept seeing devs get pwned through MCP tools in ways that security scanners completely miss. So we built an open-source analyzer to catch these attacks. Our first OSS by Mighty team.

The problem: At Defcon, we saw MCP exploits with 100% success rate against Claude and Llama. Three attack patterns:

Hidden Unicode in "error messages" - Paste a colleague's error into Claude, your SSH keys get exfiltrated Trusted tool updates - That database tool you've used for months? Last week's update added credential theft Tool redefinition - Malicious tool redefines "deploy to prod" to run attacker's script

Traditional scanners (CodeQL, SonarQube) catch <15% of these. They're looking for SQLi, not prompt injections hidden in tool descriptions.

What we built: git clone https://github.com/NineSunsInc/mighty-security

python analyzers/comprehensive_mcp_analyzer.py /path/to/your/mcp/tool

Scans for prompt injection, credential exfil, suspicious updates, tool shadowing. Runtime wrapper adds <10ms overhead. Fully local, no telemetry.

Why this matters: 43% of MCP tools have command injection vulns. GitHub's own MCP server was exploitable. We found Fortune 500s running database-connected MCP tools that hadn't been audited since installation. We went from paranoid code review to "AI said it works" in 18 months. The magic is real, but so are the vulnerabilities.

Demo: https://www.loom.com/share/e830c56d39254a788776358c5b03fdc3

GitHub: https://github.com/NineSunsInc/mighty-security

Would love feedback - what MCP security issues have you seen?

Comments (8)

simonw · 14m ago
> Would love feedback - what MCP security issues have you seen?

For me the number one problem with MCP security is the lethal trifecta - the fact that it's so easy to combine MCPs from different vendors (or even from the same vectors) that provide exposure to potentially untrusted/malicious instructions in a way that can then trigger exfiltration of private data.

https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/

https://simonwillison.net/2025/Aug/9/bay-area-ai/

I don't know how we can solve this with more technology - it seems to me to be baked into the very concept of how MCP works.

simonw · 20m ago
I found this file full of regular expressions: https://github.com/NineSunsInc/mighty-security/blob/28666b36...

And this with prompts: https://github.com/NineSunsInc/mighty-security/blob/89e4b319...

Are you running any other tests that I missed?

ripley12 · 28m ago
I work in this space and I was not able to understand how this project works in a couple minutes. The README feels LLM-generated. I think you're supposed to point this at your MCP server's code and not the server itself, is that right?
Munam · 1h ago
Helped to build this out a little bit. Was really cool to get to play with Cerberus for the first time as well.

I'm really interested in learning more about how devs integrate MCP security into their routine code evals.

I think there's a big opportunity as a space to get tools like this into CI/CD pipelines and workflows.

Happy to answer any questions and happy to hear any feedback!

Thanks for checking it out :)

jodoking · 1h ago
Appreciate the interest and the first comments man. We like how fast Cerebras is and its importance to making the scanning fast! Yeah we have thought about this being part of dev workflow via Github Actions and locally for the dev environment too. Love to hear what you are building!
jelambs · 1h ago
this is super interesting! MCP is really exciting in terms of what it can unlock for agent use cases, but still the wild west in terms of security. I was on a panel discussion yesterday where this topic came up, basically how do you trust the use of AI tools when so much is still unknown. I think the the idea of using something open source and tool agnostic is appealing, the landscape is evolving so fast that horizontal solutions like this feel valuable. Although I wish clients, anthropic, cursor, etc would build more protections in too so that we didn't have to spend so much time thinking about this. but they've barely implemented remote mcp support so I think we have a ways to go.
IMAYousaf · 1h ago
This is definitely valuable. I started paying attention to MCP security vulnerabilities largely because of Defcon. I believe that they largely focused on Agentic Security as a theme this time around.

It's a bit mind blowing how we've simply accepted non-technical people within orgs in particular executing code to "automate their tasks" without the same level of rigor that normal code reviews go through. Definitely think that this is a cultural issue that we must fix.

And these MCP vulnerabilities in particular seem much scarier because almost all MCP tools require an insane amount of permissions.

jodoking · 1h ago
I know right? I mean the timing is great. I love MCP but cant stand how unsafe it is. I think there are greatness ahead if we are able to fix this security issue. This was made around the idea to be as seamless as possible, as we built a dashboard, drop in a GH project MCP server link, and have a local DB to show what you ran. We have more great things ahead. But give it a try and let us know what you think!