The author has been using GitHub daily for 18 years, finding it the place where they've been happiest and most productive. However, due to frequent outages and reliability issues, they've decided to leave GitHub and move their project Ghostty to a new platform.
The author reflects on GitHub's decline and its impact on the Open Source community, remembering a time when projects were more decentralized and had more autonomy. They advocate for a public archive to preserve Open Source history and suggest that the community should learn from the past to build a more resilient future.
Matt Garman and Sam Altman discussed how AWS and OpenAI are partnering to make AI more accessible to businesses, with Bedrock Managed Agents being a key product that integrates OpenAI models with AWS infrastructure. The integration of models and harnesses is crucial for making AI work effectively, and the partnership aims to make it easier for businesses to build and deploy AI-powered agents.
User found multiple vulnerabilities in Forgejo, including SSRF, cryptographic malpractices, and RCE, but chose not to disclose due to low selling value. Instead, they plan to use Carrot Disclosure to incentivize vendor to fix issues.
Intel Arc Pro B70 is a professional GPU with 32 GB VRAM, offering improved performance over the B50, but still trailing behind NVIDIA and AMD GPUs in most workloads. It excels in AI-inference workloads, outperforming the R9700 in MLPerf and offering a promising configuration for multi-GPU inference workstations.
OpenAI sponsors Warp, an open-source agentic development environment powered by GPT models. Warp has a client codebase open to community contributions and follows a Code of Conduct.
The user manufactured a fake 6 Nimmt! World Championship title by creating a seeded website and a Wikipedia edit, demonstrating a cheaper and easier attack on LLM trust models. This attack, known as the circular citation pattern, can compromise LLMs by creating a fake source that appears trustworthy, highlighting the need for better source verification and provenance surfacing in AI systems.
Neuroscientists have discovered a new form of neuroplasticity called behavioral timescale synaptic plasticity (BTSP) that helps the brain learn from a single experience. BTSP strengthens synapses across several seconds, allowing the brain to capture behavioral processes of learning.
Wiz Research discovered a critical vulnerability (CVE-2026-3854) in GitHub's internal git infrastructure that allowed remote code execution on shared storage nodes and full server compromise on GitHub Enterprise Server. GitHub mitigated the issue within 6 hours and released patches for all supported versions.
🤏🏼One file <2MB big, no EULA to sign, no IDE to install
Google is imposing a developer verification requirement on Android, which critics say is a move to consolidate power and control over the open ecosystem. This change could effectively make Google the gatekeeper for all apps on certified Android devices.
User found that GNU patch can apply diff from commit message as part of real patch. This can be a security issue as it allows injection of arbitrary files.
Using AI coding tools like Claude Code raises complex questions about code ownership, copyright, and regulatory compliance, and developers must document their creative contributions to establish meaningful human authorship. Employment contracts and IP clauses can also impact code ownership, and developers should read their contracts and consider using personal tools and accounts to avoid ...
A few days ago, I posted an inquiry to the PiDP-10 forum asking whether anyone had a running IPL-V interpreter on their system. (I've been working on reanimating the earliest AI programs created by Simon, Newell, and Shaw, programs originally written in IPL-V, and a working interpreter would let me bring some of these back to life.) I didn't get an IPL-V interpreter, but the thread ...
The author has retired from using Emacs after 20 years, replacing it with modal editing and Vim, and is now transferring two of its applications, the Emacs Calculator and Elfeed, to new maintainers.
Warp's client is now open-source, allowing the community to participate in building it using an agent-first workflow managed by Oz. This change aims to accelerate product development and give developers a chance to shape the future of agentic development.
The user created a playable DOOM app using MCP that can launch inline in compatible AI clients or fall back to a browser URL. The project involved overcoming browser security policies and adapting the app to work across different clients with varying rules around iframes, CSP, and UI rendering.
Federal agents killed 37-year-old Renee Good and 37-year-old Alex Pretti during protests in Minneapolis. The FAA issued a no-fly zone warning that was later revised to an advisory after a lawsuit was filed by a freelance photojournalist.
0
2026-04-28 17:47:08 UTC
jobs.ashbyhq.com
Llama
jobs.ashbyhq.com
Llama
Infisical is hiring a Full Stack Engineer to build and expand its open source security infrastructure platform. The ideal candidate has deep technical mastery of JavaScript and a bias toward action, with experience in React.js, Node.js, and TypeScript.
LocalSend is a free, open-source app for secure local file sharing and messaging over a network without an internet connection. It uses HTTPS encryption and a REST API for secure communication between devices.
Waymo is coming to Portland, partnering with city officials to bring safe, reliable, and stress-free transportation. The company aims to support Portland's Vision Zero goals by deploying its autonomous vehicles.
VibeVoice is an open-source AI framework for speech synthesis and recognition, supporting multiple languages and long-form audio processing. It includes models for text-to-speech and automatic speech recognition, with features like speaker tracking and customized hotwords.
The following information can help our support team to resolve this issue.
Claude's Status Page - Claude.ai unavailable and elevated errors on the API.
cuabot is a tool for automating computer tasks with a seamless sandbox for coding agents. It allows running native macOS apps in the background and recording trajectories for training.
Lumara is an app tracking solar activity, lunar phases, and space weather in real-time from NASA data. It uses Jean Meeus's algorithms and fetches imagery directly from NASA servers, with no data collection.
Researchers have created a 13B vintage language model called talkie-1930-13b-base trained on 260B tokens of historical pre-1931 English text to simulate conversations with people from the past. The model's performance is compared to its modern counterpart, with talkie underperforming in some standard LM evaluations but showing similar performance on core language understanding and numeracy tasks.
The author discusses a series of open source supply chain incidents caused by GitHub Actions features behaving as documented, but with unintended consequences. These incidents include credential harvesting, cache poisoning, and malicious package publishing.
AISLE researchers discovered 38 CVEs in OpenEMR, including SQL injection vulnerabilities and IDOR issues, which could have enabled attacks against patient data. AISLE's AI analyzer found these vulnerabilities in just one quarter, significantly faster than prior independent security audits.