hackernews

1. Ultrasonic Chef’s Knife Total comment counts : 31 Summary Seattle Ultrasonics is promoting a Batch 1 pre-order with estimated shipping by January 2026. The page shows an empty cart with login prompts and notes that customers can cancel anytime before shipment, plus a brief explanation of what a pre-order is. Top 1 Comment Summary The author critiques a QVC product named after a US tech city, written by someone living near QVC’s home in a non-tech area of the US....

1. $100K fee added to H1B applications Total comment counts : 40 Summary It asks readers to enable JavaScript and disable ad blockers to access the content and ensure the site functions correctly. Top 1 Comment Summary The author argues H1B workers remain tied to their sponsor during green-card processing, allowing underpayment and abuse. A very high application fee could help but isn’t sufficient alone. A flawed proposal would remove the need to show a US-qualified worker, require the company to pay a large federal fee and cover relocation, grant 10-year work authorization on arrival, and let workers leave the sponsor immediately with no clawbacks....

1. Learn Your Way: Reimagining Textbooks with Generative AI Total comment counts : 30 Summary Google Research showcases Learn Your Way on Google Labs, a GenAI approach to transforming textbooks by generating multimodal representations and personalization. Grounded in dual coding theory, it personalizes text to a learner’s grade and interests, then creates formats like mind maps, timelines, and narrated slides using LearnLM and Gemini 2.5 Pro. Early efficacy shows an 11-point retention gain versus standard digital readers....

1. WASM 3.0 Completed Total comment counts : 31 Summary Wasm 3.0, the new live standard, expands Wasm significantly beyond Wasm 2.0. It adds 64-bit addressing for memories and tables via i64, expanding address space (web limits remain; non-web hosts can access much larger data). It allows multiple memories in a single module with direct inter-memory data transfer. Wasm GC introduces low-level, compiler-controlled managed storage, with typed references for exact heap shapes, subtyping, and safe indirect calls via call_ref....

1. Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised Total comment counts : 57 Summary September 15, 2025: npm faced a major supply-chain attack affecting @ctrl/tinycolor and 40+ packages. A Webpack-bundled 3.6MB payload injected via hijacked postinstall performs reconnaissance and credential harvesting (AWS/GCP/GitHub), plus a self-propagating mechanism that force-publishes patches to a maintainer’s other packages. It dumps environment variables, runs TruffleHog, and exfiltrates data to a new public GitHub repo named Shai-Hulud via a persisted GitHub Actions workflow....

1. Hosting a website on a disposable vape Total comment counts : 58 Summary An author collects disposable vapes and finds a PUYA PY32F002B ARM microcontroller inside several models. Despite being labeled disposable, the device can host a tiny web server. Using semihosting with pyOCD, they bridge the MCU to a host via telnet, then route IP traffic with SLIP and a Linux slattach-like setup. They port the small uIP TCP/IP stack and its minimal HTTP server, tweak the filesystem for ARM, and note alignment issues....

1. ChatControl update: blocking minority held but Denmark is moving forward anyway Total comment counts : 11 Summary error Top 1 Comment Summary The piece rails against repeated efforts to weaken or eliminate encryption, arguing they reveal ignorance of how encryption and online safety work. Despite years of debate, proponents ignore experts, risking a future with less privacy and safer communications for fewer people. It also criticizes age-verification schemes, saying they push sensitive traffic onto cheap or free VPNs that may be state-controlled, which could undermine safety....

1. An Open-Source Maintainer’s Guide to Saying No Total comment counts : 0 Summary Maintaining OSS requires saying no to good ideas to preserve vision and coherence. Establish a mental model of the project, document why it exists, and let process align contributions with philosophy. LLM-generated code worsens signal-to-noise as unsolicited PRs bypass discussion. A good PR can come, but maintainers should push back unless it matches the project’s philosophy. Contrib modules can isolate non-core functionality, reducing long-term maintenance risk....

1. UTF-8 is a brilliant design Total comment counts : 23 Summary UTF-8 is a Unicode encoding using 1–4 bytes per character and remains backward-compatible with ASCII for the first 128 code points. The first byte indicates the total bytes; continuation bytes start with 10. For example, the Devanagari letter अ (U+0905) is encoded in three bytes. A text like ‘Hey👋 Buddy’ needs non-ASCII bytes (13 total), while ASCII-only text is valid UTF-8 with 9 bytes....

1. Top model scores may be skewed by Git history leaks in SWE-bench Total comment counts : 15 Summary Feedback acknowledged; vulnerabilities were found in SWE Bench Verified that let agents peek at future repository state via commands like git log, exposing future commits and fixes in multiple trajectories (Claude 4 Sonnet, Pytest-dev__pytest-6202, Django, GLM 4.5, Qwen3-Coder series). These leaks reveal solutions or approaches ahead of time. Mitigation includes removing future repo state and artifacts (reflogs, branches, origins, tags)....