The Vercel breach: OAuth attack exposes risk in platform environment variables

https://www.trendmicro.com/content/dam/trendmicro/global/en/research/26/d/vercel-breach/Fig-1.jpg
A Vercel OAuth supply chain compromise exposed customer secrets at platform scale due to a compromised third-party OAuth application and Vercel's environment variable model. The incident highlights the risk of OAuth trust relationships bypassing traditional defenses and amplifying blast radius.

Britannica11.org – a structured edition of the 1911 Encyclopædia Britannica

https://britannica11.org/title_page.jpg
A fully searchable, cross-referenced, and annotated digital edition of the 1910–1911 Encyclopædia Britannica — 40,000+ articles across 28 volumes.

Cal.diy: open-source community edition of cal.com

https://private-user-images.githubusercontent.com/8019099/250881880-407e727e-ff19-4ca4-bcae-049dca05cf02.gif?jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.FtOJMY1x0iJB5xXkB6hNuA_r1JseyFAiDhw2KQm3ABk
Cal.diy is a self-hosted, open-source scheduling platform that allows users to manage their own scheduling infrastructure without commercial dependencies. It requires advanced knowledge of server administration and database management, and users must carefully review installation and configuration steps.

Framework Laptop 13 Pro

https://images.prismic.io/frameworkmarketplace/aeN1kJ1ZCF7ETVE7_fw13pro-family_overview_intel-callout.jpg?auto=format,compress
The Framework Laptop 13 Pro features Intel Core Ultra Series 3 processors, up to 64GB of memory, and 8TB of storage. It's designed for Linux compatibility with a haptic touchpad and customizable ports.

Laws of Software Engineering

https://lawsofsoftwareengineering.com/images/front-cover.png
Complex systems evolve from simple ones and have inherent irreducible complexity. Understanding technology and managing it are often mutually exclusive, and quantifiable things can be measured for better outcomes.

A Periodic Map of Cheese

Cheesemakers can fill gaps by combining unusual milks with traditional techniques, resulting in unique flavors. Examples include yak milk Brie, buffalo milk Brie, and a cloth-bound sheep cheddar, which could be rich and intense due to the high fat and protein content of these milks.

Show HN: GoModel – an open-source AI gateway in Go

https://raw.githubusercontent.com/ENTERPILOT/GoModel/main/docs/dashboard.gif
GoModel is a high-performance AI gateway written in Go that provides a unified OpenAI-compatible API for multiple providers. It can be configured through environment variables and an optional config.yaml file, and has a two-layer response cache to reduce LLM API costs and latency.

Fusion Power Plant Simulator

https://www.fusionenergybase.com/images/fusion-simulator-preview.png
Interactive Sankey diagram showing energy flows in a fusion power plant. Adjust Q, conversion efficiency, and heating system efficiency to see how plasma gain translates to net electricity.

OpenAI Livestream

https://images.ctfassets.net/kftzwdyauwt9/1hA1wdA3Ew7BtDhZsNEJh7/e08706190583fd270857a631e02b4bb2/oai_livestream_wallpaper.png?w=1600&h=900&fit=fill
Livestream

Edit store price tags using Flipper Zero

https://raw.githubusercontent.com/i12bp8/TagTinker/main/demo.jpg
TagTinker is a Flipper Zero app for infrared ESL protocol study and controlled experiments on authorized hardware. It's licensed under GPL-3.0 and intended for educational research only.

Trellis AI (YC W24) Is hiring engineers to build self-improving agents

https://bookface-images.s3.amazonaws.com/small_logos/f9cc80521b4e48dc602aef29ce4fb7d4c0f5dda1.png
Trellis AI automates healthcare operations with AI agents processing billions in therapies annually. The company is backed by YC and seeks a developer to build production-grade AI systems for healthcare decision-making.

Theseus, a Static Windows Emulator

The user discusses the challenges of Windows emulation and proposes a new approach called static binary translation, which involves compiling x86 code into native machine code ahead of time using a compiler. This approach has several benefits, including improved performance, easier development, and the ability to use native debugging tools, but also has technical and cultural challenges, such ...

Show HN: VidStudio, a browser based video editor that doesn't upload your files

Browser-based video tools offer private processing, resizing, and compression for social media platforms. They support audio extraction, effects, and mixing for various workflows.

Running a Minecraft Server and More on a 1960s Univac Computer

https://farlow.dev/assets/2026-03-29-univac/minecraft.jpg
The user successfully ran a Minecraft server on a 1960s UNIVAC 1219B computer with only 90kb RAM, achieving their goal of running real, complex programs on the ancient machine. They accomplished this by writing a RISC-V emulator in UNIVAC assembly, optimizing it for speed, and using a combination of fuzz testing, LLMs, and manual debugging to overcome technical limitations and hardware issues.

Modern Front end Complexity: essential or accidental?

https://binaryigor.com/assets/images/modern-frontend-complexity/devices-page.b9492c6fdfa70896.png
The complexity of modern web development can be simplified by using HTML Web Components, HTMX, and a templating language to build websites and apps in a way more aligned with how the browser works. This approach reduces the need for complex tooling and JavaScript, making web development simpler and more productive, while still allowing for complex features and user experiences.

Kasane: New drop-in Kakoune front end with GPU rendering and WASM Plugins

https://raw.githubusercontent.com/Yus314/kasane/master/docs/assets/demo.gif
Kasane is a Kakoune frontend with a GPU backend and plugin system. It offers a full UI with extensions like splits, image display, and workspace persistence.

Ibuilt a tiny Unix‑like 'OS' with shell and filesystem for Arduino UNO (2KB RAM)

https://private-user-images.githubusercontent.com/252032269/571025703-4a78facd-dadd-4d40-ab55-a7f238d78938.png?jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NzY3OTcyMjgsIm5iZiI6MTc3Njc5NjkyOCwicGF0aCI6Ii8yNTIwMzIyNjkvNTcxMDI1NzAzLTRhNzhmYWNkLWRhZGQtNGQ0MC1hYjU1LWE3ZjIzOGQ3ODkzOC5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjYwNDIxJTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI2MDQyMVQxODQyMDhaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT01MDVlYTc2NWFmMTk0NDg5ZGJlZmRlMGNlMjliNGE0YWY1NTU5ZTBiYWViZmFmZDZkNzU2N2JiZmFjZGY5YWYwJlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCZyZXNwb25zZS1jb250ZW50LXR5cGU9aW1hZ2UlMkZwbmcifQ.z2A4Ggjs5htDP7sx1LfJuJSyCwrAn5wA9CO26o0LStQ
A lightweight Arduino UNO shell provides filesystem simulation and hardware control. It offers commands for navigating, creating files, managing GPIO, and displaying system information.

A type-safe, realtime collaborative Graph Database in a CRDT

The graph database @codemix/graph allows loading airline routes, querying with TypeScript, and syncing across tabs via Yjs CRDT. It uses a schema-checked traversal API, Cypher queries, and indexes with conflict-free sync and supports collaborative editing.

Anthropic says OpenClaw-style Claude CLI usage is allowed again

https://clawdhub.mintlify.app/mintlify-assets/_next/image?url=%2F_mintlify%2Fapi%2Fog%3Fdivision%3DProviders%26title%3DAnthropic%26logoLight%3Dhttps%253A%252F%252Fmintcdn.com%252Fclawdhub%252FdpADRo8IUoiDztzJ%252Fassets%252Fpixel-lobster.svg%253Ffit%253Dmax%2526auto%253Dformat%2526n%253DdpADRo8IUoiDztzJ%2526q%253D85%2526s%253D8fdf719fb6d3eaad7c65231385bf28e5%26logoDark%3Dhttps%253A%252F%252Fmintcdn.com%252Fclawdhub%252FdpADRo8IUoiDztzJ%252Fassets%252Fpixel-lobster.svg%253Ffit%253Dmax%2526auto%253Dformat%2526n%253DdpADRo8IUoiDztzJ%2526q%253D85%2526s%253D8fdf719fb6d3eaad7c65231385bf28e5%26primaryColor%3D%2523FF5A36%26lightColor%3D%2523FF8A6B%26darkColor%3D%2523FF5A36%26backgroundLight%3D%2523ffffff%26backgroundDark%3D%25230e0c0d&w=1200&q=100
Anthropic's API keys are the clearest production path for gateway hosts and explicit billing control. OpenClaw supports Anthropic's API keys, Claude CLI reuse, and prompt caching feature for standard API access and usage-based billing.

Show HN: Ctx – a /resume that works across Claude Code and Codex

https://opengraph.githubassets.com/d2a84cffa9f2b2d24bf6b7afc6976c335bc1150735f155d81915ae378f2024af/dchu917/ctx
ctx manages workstreams for conversations, allowing branching, pinning, and inspecting saved entries. It supports resume, branch, and curate commands for managing workstreams and their linked sessions.

MNT Reform is an open hardware laptop, designed and assembled in Germany

http://mnt.stanleylieber.com/reform/img/mnt_reform.png
The user has a laptop with a trackball issue and made modifications to the side panels and sleeve. They also upgraded their keyboard and investigated audio issues.

Clojure: Transducers

Transducers are composable algorithmic transformations that can be used in various processes, including collections, streams, and observables. They compose directly without awareness of input or output sources and can be used to perform operations like filtering, mapping, and reducing.

Tindie store under "scheduled maintenance" for days

Tindie is temporarily unavailable due to scheduled maintenance. We expect service to return as soon as possible. Thank you for your patience.

Show HN: Daemons – we pivoted from building agents to cleaning up after them

https://charlielabs.ai/_astro/charlie-og-v2-20260421.BSDtkojf.png
The Charlie Daemons are a set of self-initiated AI background processes defined in easy-to-use .md files that automate maintenance tasks such as keeping PRs review-ready, labeling issues, and updating documentation. These daemons run continuously in the background, observing work happening in GitHub, Linear, Slack, and more, and execute reliably without manual intervention.

Show HN: Mediator.ai – Using Nash bargaining and LLMs to systematize fairness

Daniel and Maya disagree over ownership after an investor offers $80k for 20% stake. Mediator proposes a compromise where Daniel can restore his 10% by working full-time for 6 months or forgoing $24k in distributions.

Meta capturing employee mouse movements, keystrokes for AI training data

https://img.etimg.com/thumb/width-650,height-488,imgsize-31734,resizemode-75,msid-130422681/tech/technology/meta-to-start-capturing-employee-mouse-movements-keystrokes-for-ai-training-data.jpg
Meta is installing tracking software on US-based employees' computers to train AI models. The tool captures mouse movements, clicks, and keystrokes for model improvement.

Tim Cook's Impeccable Timing

https://i0.wp.com/stratechery.com/wp-content/uploads/2026/04/cook-1.png?resize=1330%2C666&ssl=1
Tim Cook's tenure as Apple CEO saw a 303% revenue increase, 354% profit increase, and a $4 trillion valuation. Cook's greatest contribution was elevating Apple's Services, but his reliance on China for manufacturing and AI development may leave Apple vulnerable to future disruptions.

Leonardo, Borgia, and Machiavelli: A Fateful Collusion

This website is using a security service to protect itself from online attacks. We are checking your browser to establish a secure connection and keep you safe.

Colorado River disappeared record for 5M years: now we know where it was

We’re checking your connection to prevent automated abuse

Anthropic takes $5B from Amazon and pledges $100B in cloud spending in return

https://techcrunch.com/wp-content/uploads/2024/11/GettyImages-1445867611.jpg?w=1024
Amazon partnered with Anthropic on a deal using custom chips Trainium2-4, securing capacity on future chips. The deal may be a precursor to Anthropic announcing a new funding round valued at $800 billion or more.