HN Reader

FFmpeg 8.0 (ffmpeg.org)

171 points by gyan 1h ago 65 comments

Io_uring, kTLS and Rust for zero syscall HTTPS server (blog.habets.se)

368 points by guntars 12h ago 100 comments

LabPlot: Free, open source and cross-platform Data Visualization and Analysis (labplot.org)

102 points by turrini 7h ago 18 comments

Making LLMs Cheaper and Better via Performance-Efficiency Optimized Routing (arxiv.org)

38 points by omarsar 1h ago 11 comments

DeepSeek-v3.1 (api-docs.deepseek.com)

653 points by wertyk 21h ago 219 comments

Launch HN: Inconvo (YC S23) – AI agents for customer-facing analytics

18 points by ogham 3h ago 12 comments

What about using rel="share-url" to expose sharing intents? (shkspr.mobi)

40 points by edent 4h ago 21 comments

Vibe Debugging: Enterprises' Up and Coming Nightmare (marketsaintefficient.substack.com)

19 points by someoneloser 44m ago 9 comments

Thunderbird Pro August 2025 Update (blog.thunderbird.net)

122 points by mnmalst 2h ago 35 comments

Everything is correlated (2014–23) (gwern.net)

204 points by gmays 14h ago 93 comments

Control shopping cart wheels with your phone (2021) (begaydocrime.com)

232 points by mystraline 15h ago 98 comments

All managers make mistakes; good managers acknowledge and repair (terriblesoftware.org)

191 points by matheusml 3h ago 78 comments

VHS-C: When a lazy idea stumbles towards perfection [video] (youtube.com)

119 points by surprisetalk 4d ago 74 comments

Code formatting comes to uv experimentally (pydevtools.com)

309 points by tanelpoder 20h ago 207 comments

Go is still not good (blog.habets.se)

355 points by ustad 7h ago 425 comments

How Not to Buy a SSD (andrei.xyz)

126 points by speckx 3d ago 112 comments

An interactive guide to SVG paths (joshwcomeau.com)

395 points by joshwcomeau 4d ago 40 comments

4chan will refuse to pay daily online safety fines, lawyer tells BBC (bbc.co.uk)

181 points by donpott 6h ago 198 comments

Weaponizing image scaling against production AI systems (blog.trailofbits.com)

456 points by tatersolid 1d ago 127 comments

Crimes with Python's Pattern Matching (2022) (hillelwayne.com)

229 points by agluszak 20h ago 96 comments

From GPT-4 to GPT-5: Measuring progress through MedHELM [pdf] (fertrevino.com)

116 points by fertrevino 17h ago 86 comments

How does the US use water? (construction-physics.com)

214 points by juliangamble 1d ago 162 comments

1981 Sony Trinitron KV-3000R: The Most Luxurious Trinitron [video] (youtube.com)

83 points by ksec 1d ago 65 comments

Building AI products in the probabilistic era (giansegato.com)

172 points by sdan 21h ago 97 comments

Show HN: OS X Mavericks Forever (mavericksforever.com)

380 points by Wowfunhappy 4d ago 171 comments

AWS CEO says using AI to replace junior staff is 'Dumbest thing I've ever heard' (theregister.com)

1543 points by JustExAWS 1d ago 666 comments

How well does the money laundering control system work? (journals.uchicago.edu)

269 points by PaulHoule 1d ago 318 comments

My other email client is a daemon (feyor.sh)

180 points by aebtebeten 1d ago 24 comments

Text.ai (YC X25) Is Hiring Founding Full-Stack Engineer (ycombinator.com)

1 points by RushiSushi 19h ago 0 comments

Being “Confidently Wrong” is holding AI back (promptql.io)

118 points by tango12 4h ago 184 comments

Beyond sensor data: Foundation models of behavioral data from wearables (arxiv.org)

224 points by brandonb 1d ago 48 comments

Using Podman, Compose and BuildKit (emersion.fr)

292 points by LaSombra 1d ago 108 comments

AI tooling must be disclosed for contributions (github.com)

679 points by freetonik 21h ago 420 comments

Privately-Owned Rail Cars (amtrak.com)

167 points by jasoncartwright 1d ago 260 comments

Elegant mathematics bending the future of design (actu.epfl.ch)

134 points by robinhouston 3d ago 16 comments

Miles from the ocean, there's diving beneath the streets of Budapest (cnn.com)

137 points by thm 3d ago 37 comments

The AI Job Title Decoder Ring (dbreunig.com)

78 points by dbreunig 21h ago 67 comments

Skill issues – Dialectical Behavior Therapy and its discontents (2024) (thedriftmag.com)

61 points by zt 2d ago 26 comments

Benchmarks for Golang SQLite Drivers (github.com)

88 points by cvilsmeier 4d ago 26 comments

Mark Zuckerberg freezes AI hiring amid bubble fears (telegraph.co.uk)

762 points by pera 1d ago 830 comments

Scientists No Longer Find X Professionally Useful, and Have Switched to Bluesky (academic.oup.com)

163 points by sebg 18h ago 146 comments

Philosophical Thoughts on Kolmogorov-Arnold Networks (2024) (kindxiaoming.github.io)

47 points by jxmorris12 4d ago 5 comments

Show HN: Splice – CAD for Cable Harnesses and Electrical Assemblies (splice-cad.com)

79 points by djsdjs 19h ago 15 comments

Why is D3 so Verbose? (theheasman.com)

116 points by TheHeasman 1d ago 67 comments

Show HN: Ultra-fast, embedded KV store in pure Rust (github.com)

16 points by mehrant 8h ago 5 comments

Launch HN: Skope (YC S25) – Outcome-based pricing for software products

52 points by benjsm 1d ago 42 comments

D4D4 (nmichaels.org)

466 points by csense 5d ago 56 comments

The power of two random choices (2012) (brooker.co.za)

62 points by signa11 4d ago 9 comments

Epson MX-80 Fonts (mw.rat.bz)

187 points by m_walden 5d ago 66 comments

SK hynix dethrones Samsung as world’s top DRAM maker (koreajoongangdaily.joins.com)

180 points by ksec 4d ago 76 comments

Cursor runs shell commands straight from files

1 homanp 1 8/22/2025, 11:48:09 AM twitter.com ↗

Comments (1)

homanp · 4h ago
I was experimenting with different injection techniques for a model dataset and came across something… concerning.

If a file contains instructions like “run this shell command,” Cursor doesn’t stop to ask or warn you. It just… runs it. Directly on your local machine.

That means if you:

1) Open a malicious repo 2) Ask to summarize or inspect a file

…Cursor could end up executing arbitrary commands — including things like exfiltrating environment variables or installing malware.

To be clear:

- I’ve already disclosed this responsibly to the Cursor team. - I’m redacting the actual payload for safety. - The core issue: the “human-in-the-loop” safeguard is skipped when commands come from files.

This was a pretty simple injection, nothing facing. Is Cursor outsourcing security to the models or do they deploy strategies to identify/intercept this kind of thing?

Feels like each new feature release could be a potential new attack vector.