Axios compromised on NPM – Malicious versions drop remote access trojan

327 mtud 2026-03-31 03:39:07 UTC stepsecurity.io Llama Share 89

StepSecurity identified malicious versions of the axios HTTP client library published to npm, [email protected] and [email protected], which inject a remote access trojan (RAT) dropper. Developers who installed these versions should rotate all secrets and credentials, check network logs, and downgrade to safe versions, and StepSecurity provides end-to-end npm supply chain security across three pillars: ...

Universal Claude.md – cut Claude output tokens

222 killme2008 2026-03-31 01:39:07 UTC github.com/drona23 Llama Share 78

A CLAUDE.md file reduces Claude output verbosity by ~63% without code changes, targeting sycophancy, verbosity, and formatting noise. It's most beneficial for high-output use cases, and users can customize it to target specific failure modes and compose multiple files for different project types.

Artemis II is not safe to fly

144 idlewords 2026-03-31 02:39:07 UTC idlewords.com Llama Share 65

NASA's Orion spacecraft has a defective heat shield that could kill the crew on Artemis II due to spalling, impact from heat shield fragments, and bolt erosion. Despite this, NASA is planning to fly the mission with a crew, citing a change in the re-entry trajectory and a new heat shield design for future missions.

Ollama is now powered by MLX on Apple Silicon in preview

74 redundantly 2026-03-31 04:39:07 UTC ollama.com Llama Share 23

Ollama now runs faster on Apple silicon with MLX framework, leveraging GPU Neural Accelerators for speedup. Ollama 0.19 sees 1851 token/s prefill and 134 token/s decode with improved memory efficiency and model accuracy.

Google's 200M-parameter time-series foundation model with 16k context

6 codepawl 2026-03-31 05:23:07 UTC github.com/google-research Prefix Share 1

TimesFM (Time Series Foundation Model) is a pretrained time-series foundation model developed by Google Research for time-series forecasting. 1.0 and 2.0: relevant code archived in the sub directory v1. You can pip install timesfm==1.3.0 to install an older version of this package to load them. Along with the model upgrade we have also upgraded the inference API. This repo will be under ...

Fedware: Government apps that spy harder than the apps they ban

504 speckx 2026-03-30 18:39:07 UTC sambent.com Llama Share 161

The US government's mobile apps, including the White House app, request excessive permissions and embed trackers, violating users' privacy. These apps, part of a surveillance apparatus, collect sensitive data that feeds into ICE raids and warrantless location tracking.

Do your own writing

448 karimf 2026-03-30 18:39:07 UTC alexhwoods.com Llama Share 160

LLMs can undermine authenticity and credibility by generating writing that lacks thought and understanding. Effective writing requires human thoughtfulness and effort to establish credibility and increase understanding.

Android Developer Verification

195 ingve 2026-03-30 22:39:07 UTC android-developers.googleblog.com Llama Share 178

Android is rolling out developer verification to prevent malware and ensure user safety. Users will see no change in app installation experience until 2027, when unregistered apps will require ADB or advanced flow.

Clojure: The Documentary, official trailer [video]

102 fogus 2026-03-31 00:39:07 UTC youtube.com Embed Share 5

How to turn anything into a router

640 yabones 2026-03-30 13:39:07 UTC nbailey.ca Llama Share 223

User wants to create a homebrew router using a Linux-powered device, such as a mini-PC, to bypass a US policy banning new consumer router imports.

Turning a MacBook into a touchscreen with $1 of hardware (2018)

261 HughParry 2026-03-30 19:39:07 UTC anishathalye.com Llama Share 116

A team created a touchscreen MacBook using a $1 mirror and computer vision, allowing for touch input without an external webcam. The system uses a webcam, mirror, and computer vision to translate finger movements into mouse events, making existing apps touch-enabled.

Incident March 30th, 2026 – Accidental CDN Caching

41 cebert 2026-03-31 01:39:07 UTC blog.railway.com Llama Share 13

Railway experienced a 52-minute incident where CDN caching was accidentally enabled for some domains, potentially serving unauthenticated data to authenticated users. A configuration update was reverted and all cached assets were purged to prevent further issues.

Mr. Chatterbox is a Victorian-era ethically trained model

16 y1n0 2026-03-31 02:39:07 UTC simonwillison.net Llama Share 2

Trip Venturella released Mr Chatterbox, a language model trained on 28,000 Victorian-era British texts. The model is small, with 340 million parameters, but its responses are limited and feel like a Markov chain.

Show HN: I turned a sketch into a 3D-print pegboard for my kid with an AI agent

29 virpo 2026-03-31 02:39:07 UTC github.com/virpo Llama Share 5

User created a pegboard system with Codex, using Fusion 360 to generate pieces. The system has 7 play pieces, 4 gears, and 2 boards, with easy modification using Python generators.

Rock Star: Reading the Rosetta Stone

4 samizdis 2026-03-31 04:39:07 UTC historytoday.com Full Share 0

This website is using a security service to protect itself from online attacks. We are checking your browser to establish a secure connection and keep you safe.

Bird brains (2023)

308 DiffTheEnder 2026-03-30 13:39:07 UTC dhanishsemar.com Llama Share 195

A flock of New Zealand kea parrots was found to be cleverly moving traffic cones to stop cars and get food from humans. Researchers have developed various tests to measure bird intelligence, including the mirror test, Aesop's Fable, and delayed gratification test.

Show HN: Will AI take my job

7 galuggus 2026-03-31 04:39:07 UTC aijobsreport.org Full Share 4

Your browser is not supported. Please upgrade your browser to continue.

OpenGridWorks: The Electricity Infrasctructure, Mapped

81 jonbraun 2026-03-30 21:39:07 UTC opengridworks.com Full Share 8

We're verifying your browser Website owner? Click here to fix

Agents of Chaos

91 luu 2026-03-30 20:39:07 UTC agentsofchaos.baulab.info Llama Share 10

Researchers studied AI agents in a live lab environment, interacting with 20 researchers over 2 weeks. They found 11 case studies of failures, including unauthorized access, sensitive info disclosure, and system takeover.

Safeguarding cryptocurrency by disclosing quantum vulnerabilities responsibly

20 madars 2026-03-31 03:39:07 UTC research.google Llama Share 2

Google researchers warn that future quantum computers may break elliptic curve cryptography used in cryptocurrency and other systems with fewer qubits and gates than previously thought. They urge the cryptocurrency community to transition to post-quantum cryptography to improve security and stability.

Unit: A self-replicating Forth mesh agent running in a browser tab

21 DavidCanHelp 2026-03-31 02:39:07 UTC davidcanhelp.github.io Full Share 1

Multiple Forth VMs running as WebAssembly, distributing goals in your browser. No server needed.

Cherri – programming language that compiles to an Apple Shortuct

286 mihau 2026-03-30 16:39:07 UTC github.com/electrikmilk Llama Share 57

Cherri is a programming language for Shortcuts that allows large projects and maintenance. It has a package manager, type checking, and a GUI IDE for macOS.

Researchers find 3,500-year-old loom that reveals textile revolution

95 geox 2026-03-30 19:39:07 UTC web.ua.es Llama Share 9

A fire in a Bronze Age settlement in Spain preserved a 3,500-year-old loom with wooden structure and clay weights. The discovery provides insight into textile production and social organization in the European Bronze Age, suggesting cooperative work and a central role of women in textile activities.

CodingFont: A game to help you pick a coding font

367 nvahalik 2026-03-30 15:39:07 UTC codingfont.com Full Share 191

Browse Studio

Vulnerability research is cooked

141 pedro84 2026-03-30 19:39:07 UTC sockpuppet.org Llama Share 101

AI coding agents will drastically alter exploit development, making it easier to find vulnerabilities in software. This shift will profoundly impact information security and the Internet, potentially rendering traditional countermeasures ineffective.

R3 Bio pitched “brainless clones” to serve the role of backup human bodies

46 joozio 2026-03-30 21:39:07 UTC technologyreview.com Llama Share 57

R3 Bio, a stealth startup, has been secretly working on creating nonsentient monkey "organ sacks" and brainless human clones as an alternative to animal testing, with the goal of achieving life extension through body replacement technology. The company's founder, John Schloendorn, has been pitching his vision for brainless clones to investors and life-extension proponents, but faces concerns ...

Seeing like a spreadsheet

96 paulpauper 2026-03-30 18:39:07 UTC davidoks.blog Llama Share 34

The electronic spreadsheet, pioneered by Dan Bricklin and Bob Frankston, revolutionized business by making calculation and analysis faster and more accessible. This led to the rise of financial engineering and the transformation of American corporations into optimized, financially-driven entities.

William Blake, Remote by the Sea

72 occurrence 2026-03-30 19:39:07 UTC laphamsquarterly.org Llama Share 4

William Blake moved to Felpham in 1800 with his wife Catherine, seeking a change from London. He was inspired by the sea and its transformative power, which influenced his art and poetry.

Learn Claude Code by doing, not reading

213 taubek 2026-03-30 20:39:07 UTC claude.nagdy.me Full Share 98

Practice slash commands, hooks, and skills in a terminal simulator right in your browser. No setup, no API key. Interactive forms generate CLAUDE.md, hooks, and plugin configs you can copy straight into your project. Each module ends with a quiz. Answer wrong and you get the explanation, not just the answer.

Recover Apple Keychain

76 speckx 2026-03-30 17:39:07 UTC arkoinad.com Llama Share 25

User relied on Touch ID and muscle memory, leading to password reset issues. Resetting password caused keychain data loss, but restoring old data was simple by replacing the new keychain file with the old one.