Securing a DoD Contractor: Finding a Multi-Tenant Authorization Vulnerability

109 bearsyankees 2026-05-04 18:11:06 UTC strix.ai Llama Share 37

A company, Schemata, handling sensitive military data had no API authorization, allowing a low-privilege user to access users, organizations, and confidential training materials. The issue was fixed after 150 days of disclosure attempts, highlighting the importance of open disclosure channels and robust authorization testing.

I am worried about Bun

219 remote-dev 2026-05-04 17:11:06 UTC wwj.dev Llama Share 128

The author is concerned about Bun's future after Anthropic acquired it, citing Claude Code's decline in quality and restrictions. They're moving away from Bun for package management and recommend pnpm instead.

Talking to strangers at the gym

849 thitran 2026-05-04 12:11:06 UTC thienantran.com Llama Share 418

The user, who was struggling to make friends after college, approached 30 people at the gym over a month, resulting in some meaningful connections and friendships. Through this experience, the user became more resilient and confident in initiating conversations with strangers, eventually forming connections with people who share similar interests and hobbies.

GameStop makes $55.5B takeover offer for eBay

550 n1b0m 2026-05-04 10:11:06 UTC bbc.co.uk Llama Share 483

GameStop made a $55.5bn offer to buy eBay at $125 a share, with CEO Ryan Cohen planning $2bn in cost savings. The deal would link GameStop with eBay, lifting GameStop's valuation and giving eBay a national network for its business operations.

How OpenAI delivers low-latency voice AI at scale

19 Sean-Der 2026-05-04 19:45:06 UTC openai.com Llama Share 5

OpenAI rearchitected their WebRTC stack to improve real-time AI interactions by reducing latency and preserving standard WebRTC behavior for clients. They achieved this by introducing a relay service that routes packets to the correct transceiver, allowing for deterministic first-packet routing and a small public UDP footprint.

Microsoft Edge stores all passwords in memory in clear text, even when unused

157 cft 2026-05-04 19:11:06 UTC twitter.com/l1v1ng0ffth3l4n Full Share 67

Something went wrong, but don’t fret — let’s give it another shot. Some privacy related extensions may cause issues on x.com. Please disable them and try again.

Does Employment Slow Cognitive Decline? Evidence from Labor Market Shocks

129 littlexsparkee 2026-05-04 16:11:06 UTC nber.org Llama Share 107

Researchers Noah Arman Kouchekinia, David Neumark, and Tim A. Bruckner received grants for their study on employment and cognitive decline. The study was supported by the Alfred P. Sloan Foundation and the Lynde and Harry Bradley Foundation.

Redis array: short story of a long development process

169 antirez 2026-05-04 15:11:06 UTC antirez.com Llama Share 63

The user implemented a new Array data type for Redis, taking four months with AI assistance, which helped with specification, implementation, and testing. AI provided a safety net for complex tasks, allowing the user to venture into higher complexity and achieve high-quality system programming.

US healthcare marketplaces shared citizenship and race data with ad tech giants

301 ZeidJ 2026-05-04 18:11:06 UTC techcrunch.com Llama Share 94

Pixel trackers on websites collect personal info, including health data, often for advertising. Government websites sharing health data with tech companies affects millions of Americans.

Let's Talk about LLMs

41 cdrnsf 2026-05-04 18:11:06 UTC b-list.org Llama Share 17

The author discusses the potential impact of large language models (LLMs) on software development, arguing that they may not offer the promised order-of-magnitude improvements in productivity.

Stop big tech from making users behave in ways they don't want to

150 andsoitis 2026-05-04 18:11:06 UTC economist.com Llama Share 86

A 2019 study found teens can't switch off from Instagram, leading to a landmark ruling against Meta and YouTube for designing addictive products. The ruling's implications are being digested as the world adjusts to its impact.

UK Fuel Price Intelligence

121 theazureguy 2026-05-04 16:11:06 UTC fuelinsight.co.uk Llama Share 52

This site provides independent UK fuel price data sourced from the UK Fuel Finder scheme, with no influence on prices. It stores and analyses publicly mandated data, using Google Analytics to understand site usage.

Pomiferous: The most extensive apples (pommes) database

72 Ariarule 2026-05-04 15:11:06 UTC pomiferous.com Llama Share 20

Several apple varieties are described including Sekai Ichi, French cider apple, and Pink Lady. These apples have unique characteristics such as flavor, texture, and origin.

How Monero's proof of work works

177 alcazar 2026-05-04 15:11:06 UTC blog.alcazarsec.com Llama Share 141

Monero's RandomX proof of work makes mining expensive for custom chips by using CPU strengths like dynamic code and memory access. It generates random programs and uses memory-hard functions to make mining look like general-purpose computing.

Heat pump sales rise across Europe

111 doener 2026-05-04 18:11:06 UTC pv-magazine.com Llama Share 34

Residential heat pump sales rose 17% in 11 European countries in Q1 2026 due to high gas and oil prices. France, Germany, and Poland saw 25% growth, while Austria's sales fell 30% due to lack of government subsidies.

1966 Ford Mustang Converted into a Tesla with Working 'Full Self-Driving'

66 Brajeshwar 2026-05-04 16:11:06 UTC electrek.co Llama Share 49

A Sacramento auto parts shop owner spent $40,000 and two years converting a 1966 Ford Mustang into a Tesla with a Model 3 drivetrain and Full Self-Driving capabilities. The project demonstrates Tesla's technology is portable and adaptable, despite licensing struggles with other automakers.

Sierra Raises $950M at $15B Valuation

46 doppp 2026-05-04 16:11:06 UTC sierra.ai Llama Share 68

Sierra raises $950 million at over $15 billion valuation to invest in AI customer experience. The company now has over $1 billion to deploy AI agents for businesses, transforming customer interactions and experiences.

White House Considers Vetting A.I. Models Before They Are Released

41 jbegley 2026-05-04 19:20:06 UTC nytimes.com Full Share 14

Please enable JS and disable any ad blocker

Show HN: nfsdiag - a NFS diagnostic application

13 lsferreira42 2026-05-04 19:11:06 UTC github.com/lsferreira42 Llama Share 0

nfs-doctor is a command line tool to help debug NFS servers from the client side. It checks network, rpcbind, NFS versions, and other common issues.

Offenders sentenced up to 10 years for spying on TSMC

62 ironyman 2026-05-04 18:11:06 UTC taipeitimes.com Llama Share 0

A former TSMC engineer was sentenced to 10 years in prison for leaking trade secrets to Tokyo Electron Taiwan. Three other TSMC employees and Tokyo Electron Taiwan were also sentenced for their roles in the trade secret leak.

Newton's law of gravity passes its biggest test

103 pseudolus 2026-05-04 13:11:06 UTC science.org Llama Share 84

Researchers confirmed Newton's law of gravity on the largest scales using galaxy clusters. The study tightens the vise on alternative theory MOND, which tries to explain dark matter without gravity.

'Kitten Space Agency', the Spiritual Successor to 'Kerbal Space Program' (2025)

73 Tomte 2026-05-04 18:11:06 UTC space.com Llama Share 23

Stefan Moluf, a former SpaceX engineer, is working on Kitten Space Agency, a spiritual successor to Kerbal Space Program, with a focus on a solid technical foundation and modding capabilities. The game aims to be both authentic and accessible, with a free "pay-what-you-want" distribution model.

Trillions in Retirement Dollars Flow into Opaque Trusts

71 koolhead17 2026-05-04 18:11:06 UTC bloomberg.com Llama Share 8

Bloomberg delivers business and financial information worldwide. Collective Investment Trusts are a multi-trillion dollar business with unclear regulation.

Alberta voter list leak is a potential public safety disaster

94 Teever 2026-05-04 16:11:06 UTC globalnews.ca Llama Share 63

A massive data breach in Alberta has exposed nearly three million voters' personal information, creating a potential public safety and political interference crisis. The leak could be used by criminals and authoritarian regimes to commit fraud, extortion, and witness tampering, and influence the upcoming separatist referendum.

Using “underdrawings” for accurate text and numbers

345 samcollins 2026-05-04 00:11:06 UTC samcollins.blog Llama Share 126

User shares a technique to generate images with Gemini 3.0 Pro and ChatGPT-Images-2 by combining deterministic underdrawing with generative painting. This method still outperforms the models on certain tasks.

OpenAI, Google, and Microsoft Back Bill to Fund 'AI Literacy' in Schools

83 cdrnsf 2026-05-04 17:11:06 UTC 404media.co Llama Share 79

A bipartisan bill, the LIFT AI Act, aims to add AI literacy to K-12 curriculum, backed by major tech companies. The bill would fund research and development of AI education tools and curriculum changes.

Why are neural networks and cryptographic ciphers so similar? (2025)

102 jxmorris12 2026-05-04 10:11:06 UTC reiner.org Llama Share 32

Language models and cryptography share similarities in their algorithms, including sequential absorbing, parallel processing, and repeated mixing layers. Both fields prioritize low-level hardware performance and emphasize parallelism, resulting in similar solutions despite different problem statements.

BYOMesh – New LoRa mesh radio offers 100x the bandwidth

459 nullagent 2026-05-03 20:11:06 UTC partyon.xyz Llama Share 149

dataparty is releasing a small, capable LoRa companion dev kit with 2.4GHz and sub-1GHz capabilities. It combines SX1276 and SX1281 chips for mesh networking and high-speed data transfer.

Texico: Learn the principles of programming without even touching a computer

169 o4c 2026-05-04 06:11:06 UTC www3.nhk.or.jp Full Share 14

Learn the principles of programming without even touching a computer in this new-style education program. Unique animated characters assist in the fun and lucid introduction of 5 core programming processes: analysis, combination, generalization, abstraction and simulation.

Days without GitHub incidents

324 goalieca 2026-05-04 18:11:06 UTC dayswithoutgithubincident.com Full Share 128

🏆 High Score (2026)