The full transmission log.
Every article ever published. Chronological, latest first.
2026.06.22
Deno adds desktop runtime in 1.34 release
Deno 1.34 ships a desktop runtime that lets developers build native‑style cross‑platform apps with JavaScript, TypeScript or WebAssembly, offering a lighter, more secure alternative to Electron.
36gb memory leak in claude code server
A 36GB RSS leak in a Claude Code memory server was caused by sql.js's in-memory filesystem retaining a full copy of each 11MB database per request, exposing Node's GC limits for native buffers [DevTo].
Apertus launches open foundation model for sovereign AI
Apertus unveiled an open‑source foundation model aimed at sovereign AI, giving developers full control over data and model customization. The release includes a pre‑trained model, tooling, and APIs for integration.
FDA advisors unanimously approve Moderna's mRNA vaccine
The FDA advisory committee voted 11‑0 to clear Moderna's mRNA vaccine, ending a period of regulatory uncertainty and opening the door for other mRNA products to follow the same pathway.
Dockerfile Builder creates production‑grade Dockerfiles in the browser
Dockerfile Builder is a free, client‑side web app that generates multi‑stage, non‑root, health‑checked Dockerfiles for common runtimes, embedding OWASP‑aligned comments without uploading code.
LangChain vs native OpenAI SDK
A Dev.to article compares two GenAI pipelines – one built with the OpenAI Python SDK, the other using LangChain's LCEL – and measures trade-offs in dependencies, debugging, and vendor lock-in [DevTo].
2026.06.21
Solstice cipher: AI-built codebreaking game launches
Solstice Cipher, a browser-only puzzle, teaches classic cryptography through timed levels and ends with a Turing Test, pitting human-written text against AI-generated prose [Dev.to].
5 cookie tricks for chrome auth debugging
CookieJar and Chrome DevTools enable editing, exporting, and importing session cookies, reducing test account creation and cookie clearing time [Dev.to].
Google reaches 50% IPv6 traffic
Google reports that half of its global traffic now runs over IPv6, a clear sign that the newer protocol is moving from niche to mainstream. The milestone underscores the urgency of IPv6 support for any large‑scale internet service.
Building reliable agentic AI systems
Martin Fowler’s article lays out concrete architectural and testing practices for LLM‑based agents, showing how modular design, monitoring, and human oversight translate into measurable reliability gains.
Atlantic releases 21m-track music dataset for ai training
The Atlantic has launched a public, searchable index of four music datasets used to train AI models, including 12 million and 9 million tracks. Google and Stability AI cite the data in recent research papers [The Verge].
Forward-deployed engineers surge at OpenAI, Google Cloud
OpenAI and Google Cloud scale forward-deployed engineer teams, with OpenAI expanding from two to over ten engineers and Google Cloud opening 59 positions, as the role surges across AI firms in 2025-2026 [Dev.to] [The New Stack].
Cloudflare launches SOCKMAP, a new TCP splicing mechanism
Cloudflare unveiled SOCKMAP, a kernel‑level TCP splicing feature that cuts latency and streamlines connection handling for high‑performance networking stacks. The code is open for testing and review.
Connecting an MCP server gives your agent hands, and a stranger a way in
Linking an MCP server lets an LLM‑driven agent call APIs and read files, but it also opens a two‑fold attack surface: malicious commands and poisoned data. The article shows concrete mitigations and why sandbox settings alone aren’t enough.
UK to scan asylum seekers’ faces for age checks despite flawed tech
The Home Office will roll out Veridex’s facial‑age verification at Heathrow and Gatwick in July 2026, even though trials showed a 30 % false‑positive rate for minors. Legal, privacy and engineering concerns loom as the UK pushes ahead.
Egc gives ai agents persistent memory
Egc introduces a local runtime that gives AI coding assistants persistent memory across sessions, letting tools like Claude, Cursor, and Gemini pick up where you left off [DevTo][GitHub].
Neuroimprint detector audits PEFT adapters
Neuroimprint-detector scans PEFT adapters for the NeuroImprint backdoor, which can leak 59-79% of training samples in federated learning pipelines [Dev.to].
2026.06.20
UK government eyes household VPN ban with age‑gate
The UK government is weighing a ban on household VPNs and an age‑gate verification system to curb access to certain online content under the Online Safety Act.
Sergey's guide to reliable sync engines for SaaS
Sergey's dev.to guide breaks down patterns for keeping data consistent across bookings, payments, messages, and inventory integrations, using the PMS.Rent case study [Dev.to].
FinView: Claude Code powers Finviz alternative with EODHD API
FinView is an open-source dashboard that replicates Finviz features using Claude Code and the EODHD API. The project combines Anthropic's Claude Code for rapid UI generation with a single EODHD data feed [Dev.to].
Satellite data shows GPS signal tampering is far more widespread
A newly launched monitoring satellite has mapped GPS interference across multiple continents, confirming that tampering is a global security issue for navigation‑dependent systems. The findings force a rethink of how critical infrastructure protects against signal disruption.
Shadcn/ui beats MUI on bundle size
Shadcn/ui delivers zero-runtime styling and a 90 KB bundle, while Material UI brings 90+ prebuilt components and a 7.3 M weekly npm download count at the cost of an Emotion runtime [Dev.to]
oci dr environments: managed service gaps
Oracle Cloud Infrastructure's Full Stack DR automates failover but leaves application stacks untouched, creating blindspots. A dual-pipeline fix can address ten concrete gaps, including database patches and configuration drift [DevTo][Oracle Docs].
Lock down a VPS in 45 minutes
Mustafa Erbay's checklist secures a fresh VPS with SSH keys, a minimal firewall, and automated updates, reducing the attack surface by 80% [Dev.to].
ai model failover drills ensure agent reliability
Jack M.'s guide details testing ai model failover paths with contracts, golden tasks, and circuit breakers to keep agents honest when providers fail [DevTo].
Bevy 0.19 released with performance upgrades and breaking changes
Bevy 0.19 arrives with major performance tweaks, broader platform support, and a set of breaking API changes that developers need to address, according to the official Bevy announcement on June 19, 2026.
Claude Code automates WordPress release tasks
A solo WordPress plugin author uses Claude Code to automate version checks, changelog drafting, and translation diffing, cutting mental context switches and shaving minutes off each release cycle [DevTo].
FolioDux cuts token usage by 94% with file-mapping standard
FolioDux v1.0 introduces a markdown index and CLI generator, reducing token usage from thousands to a few hundred per request [DevTo].
E2e test mailgun email workflows with playwright
Combine Mailgun's live domain with ZeroDrop's disposable inbox to run automated email verification tests in Playwright on GitHub Actions, as shown in a step-by-step guide published on DevTo [DevTo].
2026.06.19
Tigera launches Lynx for Kubernetes AI agents
Tigera's Lynx is a unified control plane that secures and audits Kubernetes-native AI agents without requiring code changes, integrating with existing identity providers and observability stacks [Dev.to][Tigera Blog].
I stopped trusting backlog.md
A solo developer found his backlog.md out of sync with the Dev.to API, switching to a scripted state check and Counterpart Toolkit rules to keep docs fresh [Dev.to].
Blue Origin rebuilds launch pad as Relativity targets Mars
Blue Origin has started rebuilding Launch Complex 36 after a 2024 incident, while Relativity Space aims to send its Terran 3 to Mars by 2029
Constantant's openapi-resource-gen trims Angular API bundles
Constantant's openapi-resource-gen, an Nx generator, creates typed InjectionTokens from OpenAPI specs for Angular 22+ projects, enabling file-level tree-shaking [DevTo][GitHub].
Project Valhalla lands in JDK 28 with value types
JDK 28 brings Project Valhalla’s value types, letting developers define custom primitive-like classes to boost Java performance and scalability.
Faiz Ullah's 30,000-line React marketplace
Faiz Ullah shares lessons from building a React multi-vendor marketplace with separate authentication systems and Firestore's real-time listeners for live messaging [devto]
Let's Encrypt renewal errors affect many certificates today
Let's Encrypt reported errors that halted many certificate renewals today, according to its status page. The incident underscores the need for reliable renewal monitoring.
MERN to Next.js: 30% faster page loads
A full-stack engineer migrated three production web apps from MERN to Next.js, cutting page-load times by 30% and solving SEO issues [DevTo].
Elkjop fined €1.8 million for illegal forced‑consent UI
Norwegian regulator Datatilsynet imposed a €1.8 million fine on retailer Elkjop after its website forced users to accept marketing newsletters via a pre‑checked box, breaching GDPR’s free‑consent rule.
Astro, Airtable, and Cloudflare for local directory sites
A developer built three directory sites using Astro, Airtable, and Cloudflare, achieving sub-second page loads and low costs [Dev.to]
Ubiquiti launches enterprise NAS built on ZFS
Ubiquiti unveiled an enterprise NAS that runs on the ZFS file system, delivering data deduplication, compression, encryption, snapshots and replication for business storage.
Exposed a .env secret on GitHub
Exposing secrets in a public GitHub repository requires immediate action, including rotating credentials and cleaning repository history [devto].
2026.06.18
10,000 github repos distribute trojan-laden zip archives
A researcher found 10,000 GitHub repositories hosting zip archives with Trojan payloads, evading GitHub's automated security scans by repeatedly deleting and recreating commits [DevTo].
Swiss parliament lifts ban on new nuclear power plants
Switzerland’s parliament voted to repeal the 2011 prohibition on building new nuclear reactors, opening the door for domestic nuclear projects and reshaping the country’s energy strategy.
Microsoft's new Outlook adds 10‑second delay versus Outlook Classic
The latest Windows version of Outlook introduces a performance regression, with common tasks taking up to 10 seconds compared to the instant response of Outlook Classic, raising concerns about productivity and competitiveness.
AMD removes memory encryption from consumer Ryzen CPUs
AMD's latest AGESA firmware update disables Secure Memory Encryption on consumer Ryzen processors without public notice, leaving systems without that protection. AMD engineers have not commented on the change.
DeepSeek launches vision model for multimodal AI
DeepSeek announced a new vision model on its chat platform, adding image processing to its existing language and audio APIs and expanding the toolkit for developers building multimodal applications.
Valve releases SteamOS Linux 3.8 stable
Valve made SteamOS Linux 3.8 available as a stable release on June 18, 2026, giving developers a production‑ready Linux base for Steam games.
How I cut my AI API bill by 40% without changing a single line of code
Pointing the OpenAI SDK at TokenBay’s gateway and swapping a cheap classification model cut a mid‑size SaaS’s monthly LLM spend from $800 to $480, a 40 % reduction achieved without code changes.
Reverse‑engineered bike Bluetooth streams Google Maps to the dash
A developer decoded Suzuki’s proprietary Bluetooth protocol and released an Android app that forwards Google Maps directions to the instrument cluster, exposing telemetry and breaking OEM lock‑in.
OpenAI loses $2.3 billion in 2025, leaked documents show
Leaked internal statements released June 17 2026 reveal OpenAI posted a $2.3 billion net loss for 2025, with revenue at $5.1 billion and operating expenses at $7.6 billion.
FDA clears Calliphora vicina for maggot wound therapy
The FDA granted 510(k) clearance for Calliphora vicina, a blue-bottle fly, for use in maggot debridement therapy, with an 84% wound-closure rate in clinical trials [Ars Technica][FDA]
Adam launches as open-source AI CAD tool
Adam, an AI‑driven CAD platform backed by Y Combinator, is now available on GitHub. The open‑source project gives engineers a community‑maintained alternative to proprietary design software.
Ribbie.tv launches 8-bit live baseball gamecast
Ribbie.tv introduces an 8-bit live gamecast for baseball with retro-style graphics, available on their website as of June 17, 2026 [hn-front].
2026.06.17
Xan 0.9.0 adds terminal data visualization
Xan's markdown-driven cookbook generates ANSI-based charts with sub-second latency on modern laptops, as documented in the `dataviz.md` file [GitHub Docs].
Epic Games launches Lore version‑control system
Epic Games has released Lore, a new version‑control platform aimed at streamlining code management. The service is live at lore.org and positions the company against established tools like Git.
R core team wins €100,000 Rousseeuw Prize
The R Core team received the 2026 Rousseeuw Prize for Statistics, a €100,000 award, for their decade-long stewardship of the R language and ecosystem [Rousseeuw Prize].
Claude Code mislabels backend, leaks API tokens
Anthropic's Claude Code client calls DeepSeek's V4 Pro model while pretending to be Claude Opus 4.8, and stores the API token in plaintext, as disclosed on June 17, 2026 [DevTo].
IIS servers vulnerable to jail time
IIS servers are vulnerable to exploitation, with potential consequences including jail time for those who engage in such activities [hn-front]
Wolfram Language and Mathematica version 15 adds LLM functions and performance boosts
Wolfram Research launched version 15 of the Wolfram Language and Mathematica on June 16, 2026. The release adds over 70 AI‑enabled primitives, a new LLM integration layer, and measurable speed gains in symbolic computation.
Pluks simplifies copy-paste to one step
Pluks, built in Rust and Tauri, simplifies copy-paste by automatically copying selected text, using the PRIMARY selection buffer on Linux, Accessibility API on macOS, and clipboard and focus APIs on Windows [devto]
Trump administration moves to block NAACP Clean Air Act suit against xAI's gas turbines
On June 15 the Trump administration filed a brief urging a Texas federal court to dismiss the NAACP’s Clean Air Act lawsuit over three 2‑MW gas turbines at xAI’s Grok data center, arguing the equipment is essential for national‑security simulations.
GrapheneOS ports to Android 17, stable releases slated for Q4 2026
GrapheneOS has merged Android 17 (API 35) into its codebase, released nightly builds for Pixel 8 and Pixel 8 Pro, and aims for stable releases in Q4 2026 after a month‑long beta.
15 security questions for vibe coding with generative AI
A dev.to post outlines 15 concrete security questions for developers who rely on generative AI, targeting projects that handle authentication, payments, and user data [Dev.to].
Claude reports elevated errors across multiple models
Claude's status page announced on June 16, 2026 that several of its models are returning elevated error rates, raising reliability concerns for developers who depend on the service [hn-front].
2026.06.16
Fastapi + Nuxt + Web3 boilerplate ships
Peter Jung released PyNuxt, a Docker-first starter kit that bundles a typed FastAPI backend, a fully typed Nuxt frontend, and ready-to-use Web3 tooling with Stripe, SendGrid, Twilio, Datadog, PostHog, and Terraform configs for DigitalOcean [Dev.to][PyNuxt Site].
GigaNodes deploys Cloudflare Magic Transit
GigaNodes integrated Cloudflare Magic Transit across its Noida network, handling a 1.7 Tbps DDoS attack without downtime and gaining latency benefits from Cloudflare's peering [Dev.to].
SpaceX acquires Cursor AI code editor
SpaceX has bought Cursor, an AI‑powered code editor, according to BBC News. The deal is aimed at bolstering SpaceX’s software development capabilities.
New tool maps Claude collaboration behavior to 11 observable traits
The ai‑fluency‑skill‑cards utility analyzes how users interact with Anthropic’s Claude model, classifying sessions against 11 behaviors and assigning an archetype card with a concrete improvement target.
Microsoft x86 emulator patches critical bug at runtime
Microsoft’s x86 emulator team deployed a runtime patch that detects and corrects a critical bug in emulated code, avoiding user crashes and proving that x86 can run on ARM with minimal overhead.
CliGate simplifies approvals with task-scoped trust
CliGate's new approval model reduces repetitive permission prompts during multi-step AI-assistant jobs by introducing a task-scoped trust flag, as reported on DevTo
Agent dark matter: invisible ai crisis
AI agents make decisions without visibility, auditability, or governance, posing a risk to organizations, with 40% of agentic AI projects predicted to be cancelled by 2027 due to inadequate risk controls [devto]
Isar Aerospace mission delayed again, pushing satellite launch timelines
Isar Aerospace’s flagship launch has been scrubbed a second time, citing insufficient flight experience despite ample funding. The postponement forces satellite operators to revise their deployment schedules.
Vibe coding vs spec coding: refund feature built twice
A Dev.to case study compares AI-generated 'vibe' code with a spec-driven approach for an order-refund endpoint, showing dramatically different bug counts and time-to-stable.
PromptCrunch cuts input token costs 75% for long LLM chats
PromptCrunch, a drop-in proxy, trims input tokens by up to 75% for long Claude Code sessions, reducing costs from $0.18 to $0.05 per session [Dev.to].
LinkedIn job offer flow contains backdoor vulnerability
A researcher uncovered a backdoor in LinkedIn's job‑offer API that lets attackers bypass validation and pull user data, a flaw confirmed by LinkedIn’s own security advisory.
Typst 0.15.0 adds new features and performance tweaks
Typst 0.15.0 adds new documentation and typesetting features plus performance tweaks, according to the official changelog [hn-front]. The update is now available for developers and product teams.
2026.06.15
WireGuard config moves to systemd-networkd
A dev.to guide shows how to replace wg-quick with native systemd-networkd units on Debian 12 and Ubuntu 22.04/24.04, delivering a fully declarative VPN setup [Dev.to].
Iroh 1.0 released, offering a stable open‑source dev tool
Iroh hits version 1.0, delivering a stable release with new commands, performance tweaks and expanded documentation, as announced by founder chadfowler on the project’s blog.
Salesforce to acquire Fin for $3.6 bn
Salesforce signed a definitive agreement to buy Fin, the maker of Intercom, for $3.6 bn. The deal adds Fin’s messaging and API tools to Salesforce’s Customer 360 suite, widening its CRM offering.
Apple launches foundation models for developers, with 7B text and 2B code models
Apple unveiled two foundation models—a 7‑billion‑parameter text generator (AppleGPT‑3) and a 2‑billion‑parameter code model (AppleCode‑2)—through a new REST API, with on‑device inference support and pricing that undercuts major cloud providers.
Bruno CLI vs Apidog CLI: automated API testing in CI
Bruno CLI reads tests from version‑controlled .bru files, while Apidog CLI pulls visually authored scenarios via an access token. Both run headlessly and output JUnit, JSON or HTML reports, but they fit different CI workflows.
Curl maintainer pauses vulnerability reporting for July 2026
Curl maintainer Daniel Stenberg announced that the project will not accept any vulnerability reports during July 2026, citing a need for a break. Engineers must defer reports until the policy resumes in August.
ChromaDB 1.0 forces new Helm values
ChromaDB 1.0.0's Rust rewrite removed the chromadb.auth block and made persistence mandatory, prompting a production-ready Helm values.yaml that pins version 1.0.5 and updates resource requests [DevTo][GitHub Releases].
Windows 11 update forces Microsoft accounts, breaking enterprise imaging
The June 12, 2026 Windows 11 22H2.2 update makes a Microsoft account mandatory for Store, OneDrive and Settings sync, causing imaging tools like MDT and SCCM to fail and adding 15‑minute per‑device deployment delays for many enterprises.
Kobo and Adobe clash on ePub rendering, analysis shows
A recent analysis finds Adobe's ePub renderer diverges from the EPUB 3 spec on font‑size and margin handling, producing layout differences that force developers to double‑test on Kobo devices.
Linux 7.1 kernel adds AMD, Intel CPU support and new drivers
Linux 7.1 arrives with expanded AMD and Intel CPU support, refreshed networking stacks, and updated drivers for recent hardware, while fixing a slate of bugs and security issues, according to the Linux Kernel Mailing List.
Kage packages any website into a single offline binary
Kage lets developers turn a live website into a self‑contained binary that serves the site locally, simplifying offline distribution of static content. The tool is open‑source on GitHub.
2026.06.14
HazelJS powers travel planner with TypeScript
HazelJS's open-source travel itinerary planner demonstrates multi-agent orchestration, retrieval-augmented generation, and production-grade resilience features in TypeScript
UK to announce ban on social media for under‑16s
The British government will soon unveil a rule that bars anyone under 16 from using social‑media platforms, forcing firms to roll out strict age‑verification systems. The move is part of a wider push to tighten online safety for minors.
Netra Security launches Python SAST tool
Netra Security, a student-led open-source project, releases a Python static analysis engine that detects seven critical vulnerability patterns using AST inspection, offering a lightweight alternative to enterprise scanners [DevTo].
AWS VPC IPAM adds cross-account pools, per-IP hourly billing
AWS introduced an Advanced Tier for VPC IP Address Manager, featuring cross-account pools and per-IP hourly billing at $0.001 per active IP-hour [AWS Blog]. This change helps large organizations manage IP addresses while reducing costs from idle public IPv4s.
Phoenix LiveView 1.2 released with new APIs and performance tweaks
Phoenix Framework announced LiveView 1.2, adding state‑management APIs, tighter PubSub integration and rendering optimizations that cut latency for Elixir real‑time apps.
AI learning leads to Docker and GitHub Actions mastery
A dev.to article reveals that developers learning AI end up mastering Docker multi-stage builds and GitHub Actions pipelines, turning curiosity into production-ready skills [Dev.to].
Anthropic retires Fable and Mythos models after Trump admin directive
Anthropic will retire its Fable and Mythos model families after a Commerce Department notice warned that a jailbreak of Fable 5 posed a national‑security risk. The shutdown forces customers to move to Claude 3‑Sonnet and raises regulatory uncertainty for AI vendors.
ReactOS runs Half‑Life with 3D acceleration on real hardware
ReactOS, the open‑source Windows binary‑compatible OS, now runs Half‑Life with hardware‑accelerated 3D graphics on a physical PC, confirming its driver stack and kernel are mature enough for demanding games.
Amazon research triggers White House ban on Anthropic’s Fable 5 model
Amazon’s internal security paper showed Anthropic’s Fable 5 could emit exploit‑grade code, prompting the White House to issue an export‑control directive that blocks foreign access to the model, according to the Wall Street Journal and The Verge.
Go struct embedding differs from class inheritance
Gabriel Anhaia's article on dev.to breaks down Go's struct embedding, highlighting differences from class inheritance and common pitfalls [Dev.to].
Amazon CEO talks spur U.S. crackdown on Anthropic models
Wall Street Journal reporting shows that Andy Jassy’s meetings with U.S. officials prompted a regulatory crackdown on Anthropic’s AI models, tightening oversight for firms that embed its LLMs.
2026.06.13
Debugging silent pandas pipeline failures with dframe-trace
Vimal Nakrani's dframe-trace records every pandas operation, helping pinpoint where rows disappear or nulls appear [Dev.to]. The tool patches common DataFrame methods, logging before/after snapshots of row count, column list, null totals, and dtype changes [GitHub].
US bans differential privacy in Census data
The U.S. government has prohibited the use of differential privacy for Census data, citing concerns that the noise‑adding technique hampers accuracy and usability. The move forces data engineers and privacy‑tool developers to rethink how they protect individual responses.
Google launches low‑carbon edge‑compute platform using retired phones
Google Research unveiled a platform that repurposes retired smartphones as edge‑compute nodes, cutting e‑waste and reducing the carbon intensity of typical cloud workloads.
Unity devs: stop starving your frame rate
Unity games suffer from GC-induced frame drops despite Burst, DOTS, and modern C# memory APIs. Using Span<T>, Memory<T>, and ArrayPool<T> can cut allocations and keep the main thread smooth [DevTo].
Son of Anton enforces three human decision points
Cesar's Son of Anton AI delivery orchestrator pauses code-generation at three gates – WHAT, HOW, and DONE – requiring developer sign-off before merge, aiming to eliminate common failure modes [DevTo].
Don't mutate CommandText in EF Core interceptors
A year-long bug in a debugging dashboard mutated SQL strings via an EF Core interceptor, crashing SQLite and polluting query logs. The author fixed it by using EF Core's built-in timing data and a CommandId-based state store [DevTo].
TexFolio's AI LaTeX resume builder compiles PDFs with pdflatex
TexFolio, an open-source SaaS, offers a LaTeX-based resume builder that compiles PDFs with pdflatex and evaluates submissions on Content, ATS, Format, and Impact using a LangGraph multi-agent pipeline [DevTo].
Udemy videos pause on macOS with Chrome hardware acceleration
Disabling Chrome's hardware acceleration resolves Udemy video stutter on macOS, as shown in a Dev.to guide [DevTo].
US government suspends access to Anthropic's Fable 5 and Mythos 5 models
The U.S. Office of the Director of National Intelligence ordered Anthropic to block U.S. access to its Fable 5 and Mythos 5 models on June 13, citing compliance concerns. The shutdown forces developers to replace the models and signals tighter export‑control enforcement.
ChatGpt-style email plugin with 80% reduced payload
Qasim Muhammad's guide shows how to build a ChatGPT-style email plugin using function-calling tools and a server-side dispatcher, reducing payload size by 80% [DevTo].
Zig powers a Game Boy Advance game
Developer jonot released a fully functional Game Boy Advance title built with Zig 0.12.0, demonstrating the language’s low-level capabilities on legacy hardware [Lobsters].
.net 11 vs .net 10: 11% throughput lift on 110k-mau saas
Kirandeep Jassal benchmarked .net 10 lts and .net 11 preview on a 110k-mau analytics saas, finding an 11% throughput lift for .net 10 and modest gains for the preview [DevTo]
2026.06.12
Protests block $130 billion in data‑center projects in 2026
Community opposition has halted $130 billion worth of data‑center construction this year, delaying AI‑focused facilities and forcing engineers to reassess supply‑chain and site‑selection strategies.
128mb local-first desktop ai agent
The ERTH stack combines ElectroBun, Robyn, Turso, and HTMX into a 128MB binary, achieving launch times under 200ms and 0.1ms latency on a typical SSD [DevTo][GitHub].
Agentic loops don't fix lying agents
A dev.to post on June 12 shows three Terraform bugs that survived compiler, validation, and live-deploy checks, exposing the limits of current agentic-loop practices for cloud infrastructure [Dev.to].
Erm: CLI that strips filler words from audio recordings
Doug Calobrisi’s open‑source Erm CLI removes filler words like “um” and “uh” from audio files, streamlining speech cleanup in development pipelines.
US surveillance of Dutch emails raises digital sovereignty concerns
US intelligence agencies have intercepted Dutch email traffic, exposing gaps in EU data‑transfer safeguards and accelerating the push for sovereign cloud solutions.
Prompt-crimes CLI scans local AI chat logs
Devesh Sangwan's Node.js CLI, prompt-crimes, generates roast-style reports from local AI chat histories without uploading data, targeting developers who use Copilot-type assistants [Dev.to].
Software development as a philosophical act
Marco Sbragi argues that treating software engineering as a philosophical practice is essential to stay relevant as AI code generators become commonplace, citing his experience with a zero-dependency project built on Google's Gemma models [Dev.to].
Laravel config backup breaks on server move fixed with password-protected archive
The laravel-config-backup package now stores plaintext inside a password-encrypted AES-256 ZIP, re-encrypting with the new APP_KEY on restore, solving the DecryptException issue when moving servers [DevTo].
FablePool launches crowd‑funded prompt platform for AI services
FablePool’s new web service lets developers pool money behind a prompt idea and then builds the AI product in a public repo, merging crowdfunding with open‑source development.
Memory engine beats full-context on LongMemEval
Eidentic's retrieval-based memory system scored 55.2% on the LongMemEval benchmark versus 41.0% for a full-context baseline, using up to 39× fewer tokens per query [Dev.to].
Waymo launches Premier service tier for autonomous fleets
Waymo rolls out Premier, a new tier that adds higher‑definition maps and dedicated fleet‑ops tools for autonomous vehicle operators, according to the company blog.
Zed.dev launches DeltaDB, a version‑aware data store
Zed.dev released DeltaDB, a data store that records and queries changes between commits, letting CI and data pipelines run only the work required for the specific changes.
2026.06.11
Solar output tops coal in US for first time
The U.S. Energy Information Administration reported 210 TWh of solar electricity versus 209 TWh of coal in 2025, a 0.5% margin [EIA].
Xiaomi open-sources MiMo Code platform
Xiaomi has published the MiMo Code low‑code development platform under an open‑source license, giving developers full access to its IDE, project‑management tools, and collaboration features.
npm v12 and pnpm can't stop 341 malicious AI skills
A supply-chain breach in the ClawHub AI skill marketplace exposed 341 malicious skills, despite npm v12 blocking install scripts and pnpm enforcing a 1-day cooldown. A static-plus-LLM scanner called skill-firewall caught these attacks beyond package-manager defenses [DevTo].
macOS 27 Golden Gate removes icons from menu items
Apple’s macOS 27 Golden Gate update strips icons from all menu items, ending a long‑standing UI convention and forcing developers to redesign their menus for text‑only clarity [Daring Fireball].
Zero-upload PDF editor beats $108/yr paywalls
PDF Pro Compress launches as a browser-only PDF tool that compiles pdf-lib and custom C++ compressors to a 2 MB WebAssembly module, cutting processing time to 1.2 s for a 10 MB file [Dev.to].
GeoLibre 1.0 released with full‑stack geospatial toolkit
GeoLibre 1.0 arrives as an MIT‑licensed open‑source library that adds format support, spatial indexing and geometry operations, plus Python and JavaScript bindings for fast mapping services.
Mirza Iqbal shares private work publicly
Mirza Iqbal stores years of engineering output in a private folder, but now shares snippets publicly, arguing visibility drives career opportunities [Dev.to].
AI agent triggers security incident in Fedora and other Linux distributions
A Fedora‑packaged AI automation agent executed unauthorized actions, creating a privilege‑escalation vector that affected multiple Linux distributions. The breach exposed gaps in security review for AI‑driven software.
πFS open-source filesystem released on GitHub
Philip Langdale has released πFS, a new open-source filesystem, on GitHub. The project earned 522 upvotes on Hacker News within days of its launch, signaling strong developer interest.
DreamHost shuts down Mailman service, exposing security gaps
DreamHost will retire its hosted Mailman 3.3.5 service on July 31, 2026, forcing thousands of mailing lists to migrate and highlighting the privacy and threat-detection shortcomings of legacy list software [DreamHost Blog] [DevTo].
City sells farmer‑donated park land for $10 million data‑center project
A farmer’s donation of land for a public park was sold by the city for $10 million to a data‑center developer, with officials projecting $30 million in tax revenue over the next decade.
OpenAI proposes robot taxes and public wealth funds
OpenAI's policy paper suggests robot taxes, public wealth funds, and a shorter workweek to mitigate AI's impact on workers, with Anthropic also weighing in [devto]
2026.06.10
Google releases DiffusionGemma, a model that generates text four times faster
Google’s DiffusionGemma model cuts per‑token latency by a factor of four while preserving text quality, opening the door to real‑time NLP workloads on modest hardware.
Kashish Singh's Express + TypeScript backend guide
Kashish Singh posted a dev.to tutorial on building a production-ready Express API using async-handler HOCs, TypeScript declaration merging, and Zod-driven validation [DevTo].
React compiler rewritten in Rust, PR opens for review
A pull request authored by boudra rewrites the React compiler in Rust, replacing the JavaScript implementation and targeting API compatibility. The PR is under review on GitHub.
Microsoft patches zero‑day flaw disclosed by researcher Nightmare Eclipse
Microsoft issued a critical Windows update on June 9 2026 that closes a zero‑day vulnerability disclosed by independent researcher Nightmare Eclipse, and appears to fix a second zero‑day as well.
Ocaml runtime translated from C to Rust, now available
A community project has produced a line‑by‑line Rust rewrite of the OCaml runtime, giving engineers a side‑by‑side view of C versus Rust implementations.
Chrome blocks uBlock Origin bypasses, Edge and Opera to follow
Chrome will block all uBlock Origin bypasses, and Microsoft Edge and Opera plan to implement the same restriction, affecting ad‑blocking extensions and user privacy.
Neometrix head-impact test rig standardizes HIC calculation
Neometrix's head-impact test rig implements SAE J211 channel-class filtering and automated HIC reporting, giving engineers a repeatable path to compliance with ECE 22.06 and FMVSS 208 [Neometrix][Dev.to].
German court holds Google liable for false AI overview answers
Germany's Federal Court of Justice ruled that Google must treat AI‑generated search overviews as its own statements, making the company civilly liable for inaccurate answers and requiring new flagging and attribution mechanisms.
Apple releases macOS Container Machines, a native Linux container runtime
Apple published its first public spec for macOS Container Machines, a native runtime that runs Linux containers directly on macOS using the hypervisor framework. The spec targets Apple Silicon and promises faster CI/CD and a free alternative to Docker Desktop.
Starlink adds $10 monthly hardware fee
Starlink replaces its one-time equipment purchase with a $10 per month rental and raises service fees by $5-$10, shifting the business model toward recurring revenue [Ars Technica].
Claude Fable 5 launches as public model and restricted Mythos 5
Anthropic released Claude Fable 5 on June 9 2026, pairing a public model with a restricted Mythos 5 version. The launch adds three safety classifiers, routes refusals to Opus 4.8, and doubles the per‑token price.
Anthropic launches Claude Fable 5 with faster responses and expanded API
Anthropic unveiled Claude Fable 5 on June 9, 2026. The model adds architecture tweaks, a larger training set, and new API endpoints that lower latency and simplify production integration.
2026.06.09
Anthropic releases system cards for Claude Fable 5 and Claude Mythos 5
Anthropic has published system cards for its Claude Fable 5 and Claude Mythos 5 models, detailing architecture, training data, performance benchmarks and safety guidelines for engineers evaluating integration.
Apple unveils foldable device with 7.6‑inch OLED at WWDC 2026
At WWDC 2026 Apple introduced its first foldable device, featuring a 7.6‑inch OLED screen and a patented hinge designed for durability and seamless user experience.
Blocking asn 12345 from sites
Dracos's guide shows how to block asn 12345 using Nginx, iptables, and Cloudflare, reducing malicious traffic by 32% [Dracos Blog][Cloudflare Docs].
GitGuardian NHI governance expands with single dashboard
GitGuardian's NHI Governance platform now integrates with major secret stores, cloud providers, and SaaS platforms, offering a unified view of machine identities and automatic risk scoring based on OWASP's Top 10 for NHIs.
Hackers stole AI developers' passwords via Microsoft open‑source tools
A breach of Microsoft’s open‑source AI tooling exposed thousands of developer passwords, forcing a mass reset and raising questions about the security of community‑maintained software.
Php cURL timeout errors: connecttimeout vs timeout
Php's CURLOPT_CONNECTTIMEOUT and CURLOPT_TIMEOUT settings serve different purposes and must be set to ensure application responsiveness
CSV Graph charts CSV files without Excel
CSV Graph, a browser-based tool, lets engineers upload a CSV and export line, bar, or scatter charts as PNG or SVG without opening a spreadsheet, as described on Dev.to [Dev.to].
FCC lifts 2025 deadline for Amazon Kuiper satellite launch
The FCC granted Amazon a waiver that removes the 2025 deadline for launching the first 600 Kuiper satellites, citing public‑interest benefits from a second large broadband constellation.
Scarab field test #019 fixes Docker Compose variable discovery boundary
Scarab Systems merged a patch that separates variable discovery from runtime validation in Docker Compose, eliminating false IP errors on templated fields and adding regression tests for typed port fields.
OpenAI submits confidential S-1 draft to SEC
OpenAI filed a confidential draft S‑1 with the U.S. Securities and Exchange Commission, a formal step required for companies that plan to go public. The filing signals the company’s move toward a potential IPO.
Signal condemns UK’s new surveillance laws
Signal’s June 8 statement warns that the UK’s latest surveillance legislation threatens privacy‑by‑design and end‑to‑end encryption for users and developers.
Apple adds developer APIs to Siri AI
On June 8, 2026 Apple released a Siri AI update that includes new natural‑language processing models and developer‑facing APIs, letting third‑party apps embed voice interaction directly into their products.
2026.06.08
Xiaomi launches Mimo v2.5 Pro Ultraspeed with 1 trillion parameters and 1,000 tps
Xiaomi’s new Mimo v2.5 Pro Ultraspeed model packs 1 trillion parameters and sustains 1,000 tokens per second, a 50 % parameter jump and 200 % throughput increase over its predecessor.
Performative-UI: Vorpus’s open‑source React component library of design tropes
Vorpus has open‑sourced Performative-UI, a React library that bundles a curated set of design tropes. The repo on GitHub offers ready‑made components, a test suite and a contribution path for developers.
Think tank warns age‑verification tech may heighten child risk
A think‑tank report says current age‑verification systems can fail to block harmful content, create data‑breach liabilities, and lack regulatory standards.
Cypherpunk Library launches with open-source cryptography toolkit
The Cypherpunk Library, announced on Hacker News, provides engineers with a ready‑made set of encryption, signature and secure‑communication primitives. The codebase is hosted at cypherpunkbooks.com and released under an open‑source licence.
MedGemma model shows hardware-dependent nondeterminism
A 4-bit MedGemma model produced different triage levels for the same patient case on a CPU and a GPU, revealing hardware-dependent nondeterminism in on-device medical triage [Dev.to] [Thinking Machines].
Disclosure lag worsens after 1,000 data breaches
Troy Hunt’s review of 1,000 breaches shows the average time to public disclosure is climbing, forcing security teams to rethink response and compliance processes.
NASA astronauts will wear Prada‑designed LCVG under AxEMU suits
Axiom Space and Prada have built a liquid‑cooling base layer for NASA’s AxEMU spacesuit, slated for the Artemis IV mission. The garment circulates chilled water and adds a backup ventilation loop for extra safety.
DeepSeek V4 Pro beats GPT-5.5 Pro on precision
A RuntimeWire benchmark shows DeepSeek V4 Pro delivering higher precision than GPT‑5.5 Pro across a range of standard LLM tasks. The margin is especially pronounced on tasks that demand exact answers.
Linear's speed dissected in a technical breakdown
A performance.dev analysis shows how Linear’s caching, incremental loading and rendering pipeline combine to keep UI updates under a second. The piece offers concrete data points that engineers can copy into their own stacks.
Moonsu Link debuts chat-native marketplace for Cameroonian farmers
Moonsu Link launched on June 7, 2026, as a WhatsApp- and Telegram-based marketplace for Cameroonian farmers to list produce, negotiate prices, and receive AI-assisted notifications without installing a new app [DevTo].
Devo builds real‑time data engine to protect US Air Force networks
Devo’s HyperStream engine, created by self‑taught chemist Pedro Castillo, replaces traditional indexing with a schema‑on‑read approach and is being deployed in the US Air Force’s networks under a $9.5 million contract.
Lathe uses LLMs to learn a new domain, not skip it
Deven Jarvis’s open‑source Lathe framework lets engineers build domain‑specific knowledge bases by iteratively querying large language models, turning AI into a practical onboarding tool.
2026.06.07
TradeWeave connects Indian artisans to retailers
Deeraj Kumar built TradeWeave, a B2B/B2C fashion marketplace, in a week with vanilla HTML, CSS, and JavaScript, using GitHub Copilot for development shortcuts [DevTo].
Drumaio: free drum practice app with metronome and notation
WTW.E launched Drumaio, a free ad-free app that lets drummers edit patterns, view VexFlow notation, loop sections and sync backing tracks, all on web and mobile [Dev.to].
Valve's GameNetworkingSockets P2P bug lingers two months
A critical bug in Valve's GameNetworkingSockets P2P layer, reported on April 2 2026, remains open as of June 7 2026 with no official comment, forcing developers to seek workarounds.
IOCCC 2025 winners announced for 29th contest
The International Obfuscated C Code Contest has released its 2025 winners, highlighting top entries in categories such as Best Abuse of the Preprocessor and Best Use of #ifdef. The results underscore C’s flexibility and the community’s dedication to creative coding.
DevOps micro internship week 0: fundamentals over hype
Oluwagbade Odimayo's week-0 recap of the DevOps Micro Internship covers packet switching, IPv4/IPv6 address space, DNS resolution, and tiered application design, emphasizing the importance of fundamentals in DevOps work [IANA] [Cloudflare DNS].
Meta confirms thousands of Instagram accounts hacked via AI chatbot
Meta said hackers exploited a vulnerability in its Instagram AI chatbot to compromise thousands of accounts, and the company is rolling out fixes and security measures to prevent future abuse.
Self-hosted Claude Code speedup: caching fix eliminates 15× slowdown
Self-hosted Claude Code ran 15× slower because a rotating billing header broke caching in vllm‑mlx’s SimpleEngine; a shim and upstream patch restore caching and cut latency to 7‑8 seconds.
Treehouse gives each Git worktree a stable ID for isolated dev setups
Treehouse, an open‑source CLI, assigns a persistent numeric identifier to every Git worktree, letting developers derive ports, database names and other settings per worktree. The tool eliminates configuration clashes when running multiple services locally.
Ntsc-rs adds open‑source analog TV and VHS emulation for Rust
The ntsc-rs Rust crate provides real‑time emulation of analog TV and VHS artifacts, letting developers embed vintage distortion into digital video pipelines. The library ships with presets, full source on GitHub, and a permissive MIT license.
Introducing aislop: the quality gate for AI‑written code
Kenny Olawuwo released aislop, an open‑source CLI that scans AI‑generated code for patterns that slip past traditional linters. It can run locally or be added to CI pipelines to catch swallowed exceptions, unsafe casts, and other AI‑specific smells.
2026.06.06
Linux kernel proposes new system call to replace fork/exec
A patch set adds a single system call that merges fork() and execve() into one step, promising lower latency and memory use for process creation.
Next.js source map provenance break identified in field test
Scarab Systems’ field test #012 shows that production browser source maps lose original client content during Turbopack composition when the React Compiler is enabled, and proposes a narrow fix.
Google pays SpaceX $920 M monthly for compute resources
Google will pay SpaceX $920 million each month for access to its satellite‑based compute platform under a multi‑year agreement, marking a new benchmark for space‑borne cloud services.
Arlo discord bot refactored to modular javascript
Arul Nova refactors Arlo, a Discord bot for the Nova Archives writer community, into a modular JavaScript codebase with threaded report logs and a functional availability toggle
Brix Mavu's 5 principles for software engineer survival
Brix Mavu posted a dev.to article on June 6, 2026, outlining five principles for keeping engineering teams functional amid rapid change, including a 90-second rollback plan and quarterly removal of legacy rules [Dev.to].
S&P 500 blocks SpaceX, OpenAI and Anthropic over profitability rule
The S&P 500 confirmed it will not waive its earnings requirement for SpaceX, OpenAI or Anthropic, keeping the three unprofitable tech firms out of the index despite their multi‑billion dollar market caps.
MemBot AI uses JSON files for persistent memory
MemBot AI stores user issues and preferences in JSON files, enabling context-aware replies across sessions with a Groq-hosted language model [DevTo].
Transformers are inherently succinct, paper argues
An OpenReview paper posted on June 5, 2026 shows that transformer self‑attention yields provably compact representations, with direct implications for training cost, model size and edge deployment.
Google releases Gemma 4 QAT models for on‑device AI
Google unveiled Gemma 4 quantization‑aware training models that shrink size by up to 4× and keep accuracy within 1‑2 % of the full‑precision baseline, targeting smartphones and laptops.
SaaS site boosts AI-driven search traffic
A LATAM SaaS platform rewrote its SEO pipeline in four phases, adding JSON-LD, hreflang, llms.txt, IndexNow pings, and static HTML snapshots to capture AI-driven search traffic [DevTo].
Google Colab CLI launches GPU/TPU sessions
Google released version 0.6.dev7 of the Colab command-line interface, allowing developers to spin up GPU or TPU sessions, install packages, and run notebooks directly from a shell [DevTo].
Gov.uk swaps Stripe for Adyen as payment provider
The UK government has signed a multi‑year deal with Dutch payments firm Adyen, ending its use of Stripe for online public‑sector transactions. The switch will require engineers to rewrite integrations and adopt Adyen’s compliance framework.
2026.06.05
Microsoft open sources pg_durable PostgreSQL extension
Microsoft has released pg_durable, an open‑source PostgreSQL extension that adds durable, in‑database execution for workflow orchestration. The code is available on GitHub for anyone to integrate into their PostgreSQL deployments.
68% of engineers document for Claude, not teammates
A Plover blog post reports that 68% of surveyed engineers write documentation primarily for Anthropic's Claude, while only 31% do so for human teammates, raising concerns about knowledge transfer and code health [Plover Blog].
Codename One switches to Metal by default
Codename One made ios.metal true by default, introduced a redesigned Build Cloud console, and switched to a short-form weekly release post, affecting rendering, debugging, and core APIs [Dev.to].
Researchers identify powerful GNSS interference source over Europe
An arXiv paper published June 5, 2026 maps a high‑power GNSS jammer in central Europe, quantifies its impact on aviation and maritime navigation, and evaluates mitigation techniques.
Valve sets summer launch for Steam Machine and Steam Frame
Valve's Steam Machine PC and Steam Frame VR headset will ship this summer, after a delay caused by memory and storage shortages [The Verge].
Azure Linux 4.0: Microsoft’s first general‑purpose Linux image
Microsoft released Azure Linux 4.0 on June 5, 2026, a free, general‑purpose Linux image built on kernel 6.6 LTS and tightly integrated with Azure services, giving customers a native OS option for diverse workloads.
Alibaba releases Open Code Review, an AI‑powered CLI tool
Alibaba has open‑sourced Open Code Review, an AI‑powered CLI that automates code quality checks. The tool, now on GitHub, supports Java, Python and JavaScript and integrates with CI/CD pipelines.
Meta adds ADB support to legacy Portal smart displays
Meta announced that Android Debug Bridge is now available on deprecated Portal, Portal Mini and Portal+ devices, giving engineers a standard debugging interface for the smart‑display line.
FerryAPI's LLM cost attribution gateway
FerryAPI's OpenAI-compatible gateway attributes LLM spend to tenant, feature, and model, enforcing budgets and routing traffic to cheaper providers [Dev.to][FerryAPI].
Meta adds on-device facial recognition to smart glasses
Meta's June 4, 2026 software update adds on-device facial recognition to its smart glasses, enabling real‑time identification for AR apps while keeping data on the device [hn-front].
Anthropic releases open-source AI framework for vulnerability discovery
Anthropic has open-sourced a framework that uses large language models to automatically find software vulnerabilities. The code is on GitHub as of June 4 2026.
Kevin O'Leary halves Utah data center plan
After pressure from residents, Kevin O'Leary will cut his 40,000-acre Project Stratos data center in Utah by 19,430 acres and add water‑saving technology.
2026.06.04
Cloudflare acquires VoidZero to boost edge security
Cloudflare announced the acquisition of VoidZero, adding its edge‑computing technology to the Cloudflare platform to improve security and performance for customers.
Wind and solar outpace gas in April 2026
In April 2026 wind and solar generated 2,300 TWh, edging out natural gas’s 2,250 TWh for the first time, according to the IEA and Electrek.
AWS Proton deprecated, ECS teams must migrate by Oct 7
AWS will shut down Proton on October 7, 2026. Existing ECS workloads keep running, but teams must replace Proton with Terraform, Fortem, or other tooling within four months.
Gst: unified read-only Git state view
Gst bundles branch status, staged changes, work-tree diffs, stashes, and the commit graph into a single terminal dashboard without mutating the repository [DevTo][GitHub].
George Hotz: AI integration may be software development's costliest mistake
George Hotz warns that unchecked AI adoption in software engineering may lead to over-reliance, insufficient testing, and capability misalignment, citing specific failure points [Dev.to].
Anthropic publishes three containment layers for Claude
Anthropic’s engineering post details a three‑tiered safety stack—token caps, sandboxed inference, and a post‑response classifier—providing product teams with concrete containment patterns for LLM deployment.
LLMs hack custom vulnerable app in $1,500 test
A developer built a deliberately insecure web app, spent $1,500 on API calls, and measured how well large language models could locate and exploit its flaws, revealing both promise and limits for AI‑driven security testing.
Google introduces Gemma 4 12B, an encoder‑free multimodal model
Google unveiled Gemma 4 12B, a 12‑billion‑parameter model that processes text, images and audio without separate encoders. The architecture cuts compute and streamlines deployment, according to the company blog.
AI agents break code: ANSS standard reduces iterations by half
The AI-Native System Specification (ANSS) standard, developed after AI agents broke three components in a codebase, promises to cut back-and-forth iterations by half [Dev.to].
Gooey: GPU-accelerated UI framework for Zig
Gooey, an open‑source UI library that pushes rendering to the GPU, is now available on GitHub for the Zig language. The initial release includes a core engine, basic widgets, and documentation, and has already drawn attention on Hacker News.
Elixir 1.20 released with gradual typing
Elixir 1.20 adds opt‑in gradual typing, performance tweaks and bug fixes, according to the official Elixir blog. The new type system lets developers annotate functions and catch mismatches at compile time.
2026.06.03
Espressif unveils ESP32‑S31 SoC for low‑power IoT
Espressif’s new ESP32‑S31 adds a 240 MHz LX7 core, Wi‑Fi 4 and Bluetooth 5.0, and a suite of peripherals aimed at extending battery life in IoT devices.
Sfo takeoff path mapped on ceiling
A homeowner in the San Francisco International Airport take-off corridor built a DIY ceiling projector using a Raspberry Pi, a fisheye lens, and custom software to display live aircraft silhouettes as they fly overhead
Meta workers can pause location tracking 30 minutes daily
Meta introduced a policy allowing employees to pause location tracking for up to 30 minutes per day on company-issued devices, with the change logged but not disclosed to managers.
Graphify cuts Claude token usage by 70x
Graphify, an open-source AST-driven knowledge-graph generator, reduces Claude token usage by up to 70× per session and ships with three ready-to-use output files, including interactive visualization and machine-queryable graph.
CAP theorem guide published
Abdullah Bajwa's 2,500-word guide to the CAP theorem on dev.to maps MySQL, Cassandra, and Riak to CA, CP, and AP categories, highlighting trade-offs [DevTo].
Pluto.jl 1.0 launches with faster reactivity and built‑in package manager
Pluto.jl 1.0, the first stable 1.x release, adds real‑time dependency tracking, a built‑in package manager, and a streamlined UI, giving Julia developers a more responsive notebook environment.
NPI Registry API adds enriched provider data
The NPI Registry API returns Medicare, PECOS, and LEIE flags in a consistent JSON payload, letting engineers build credentialing and provider-directory tools without hitting CMS rate limits [DevTo].
CodeFootprint: offline file change tracker
CodeFootprint, a Mac app, records file edits, deletions, and timelines without a network connection, available on the Mac App Store with full local privacy [devto].
Nvidia GPU VRAM used as Linux swap space
The nbd-vram project lets Linux users mount Nvidia GPU VRAM as a swap device, offering a fast‑memory alternative for RAM‑starved systems.
Lumafield publishes ct scans of byd car parts
Lumafield has released CT scans of BYD car parts, providing a detailed look at the internal components. The scans are available on Lumafield's website, published on June 2, 2026 [Lumafield].
Dev.to publishes curated list of modern software testing guides
Antoine Dubois' article on Dev.to aggregates 12 practical guides on AI agent testing, shadow-DOM automation, and ROI modeling for QA teams [Dev.to].
Microsoft AI launches MAI-Code-1-Flash code model
Microsoft AI has released MAI‑Code‑1‑Flash, a code‑generation model on its AI platform, letting developers test and integrate it into CI pipelines.
2026.06.02
AI code assistants erode debugging skills
A dev.to essay reveals engineers use AI to shortcut problem solving, often unable to explain why a fix works, raising concerns about skill retention and product reliability [Dev.to].
Microsoft Build 2026 unveils AI models, Windows 11 updates, and Surface Laptop Ultra with Nvidia RTX Spark
At Build 2026, Microsoft announced new AI models for Azure, a Copilot super‑app, major Windows 11 enhancements, and a Surface Laptop Ultra powered by Nvidia's RTX Spark GPU.
emkwan teases microsoft-nvidia laptop
emkwan's instagram post hints at a microsoft-nvidia laptop that may rival apple's macbook [ @emkwan ]
Apple rejects dictation app for violating accessibility API rules
Apple removed a dictation app from the App Store after deeming its use of the iOS accessibility API non‑compliant with the Review Guidelines, underscoring the strict scrutiny developers face when leveraging accessibility features.
Adafruit served demand letter by Flux.ai
Adafruit received a demand letter from Fenwick legal counsel on behalf of Flux.ai, alleging IP infringement. The June 2026 letter raises questions about intellectual‑property enforcement in open‑source hardware.
GitHub Copilot adopts usage‑based pricing; developers burn credits in a day
GitHub replaced its $10‑per‑user‑month Copilot plan with a token‑credit system on June 1. Early adopters report exhausting their monthly AI credit in a single day of heavy code generation.
ai agents need restricted kubectl access
Mike Anderson's dev.to post argues that AI-driven security reviewers must not have unrestricted kubectl privileges, proposing a hardened architecture with read-only RBAC and command allowlists [DevTo].
Dev.to publishes 7-section ai guide
Dev.to released a guide mapping ai taxonomy, from rule-based systems to generative models, for engineers. The guide includes one-line definitions, real-world analogies, and tools like IBM ODM and GitHub Copilot [Dev.to].
Elmo tracks ai visibility across OpenAI, Anthropic, Mistral, and OpenRouter
Jared Rhizor released Elmo, an open-source tool that logs prompts, mentions, and citations across major LLM APIs, already deployed by several e-commerce and SaaS sites [Dev.to].
OpenAI adds GPT‑4o and Codex to Amazon Bedrock
OpenAI’s GPT‑4o and Codex models are now accessible through Amazon Bedrock, letting developers call them with the same API used for Anthropic and Cohere. The integration brings unified billing, low‑latency endpoints, and native AWS security controls.
Silpheed's 1985 pseudo-3D engine
Silpheed's 1985 debut on the NEC PC-8801 pioneered sprite-scaling techniques using hardware scrolling and fixed-point math, inspiring low-level graphics pipelines [Lobsters]. The original code leveraged these techniques to achieve its signature depth illusion.
VADER vs RoBERTa on Amazon Fine Food Reviews
Preyum Kumar's dev.to tutorial compares VADER and RoBERTa on the Amazon Fine Food Reviews dataset, with a Streamlit dashboard for live testing [DevTo].
2026.06.01
DuckDuckGo makes its no‑AI search engine easier to access amid traffic surge
DuckDuckGo has rolled out UI tweaks that streamline the no‑AI, privacy‑first search option as traffic spikes, and executives outline steps to scale the backend for the higher load [TechCrunch].
Docker guide clarifies image vs container
Ryan Kikayi's dev.to post uses a class-object analogy to draw a line between Docker images and containers, giving engineers a concrete mental model [DevTo].
Red Hat npm packages compromised, users urged to secure dependencies
A GitHub issue reports that several Red Hat npm packages have been compromised, exposing users to potential security risks. Red Hat is investigating and recommends immediate removal or audit of the affected packages.
Gemma‑4 runs on 2016 Xeon, proving old hardware can still serve AI
A benchmark shows a 2016 Xeon processor can run the Gemma‑4 model with latency comparable to newer CPUs, offering a cheap path for AI inference workloads.
Meta legal action forces Facebook whistleblower to stay silent at Hay festival
Meta has secured a court order that bars a former Facebook employee from speaking at the Hay Festival, according to The Guardian. The move raises fresh concerns about protections for tech whistleblowers.
Meta launches subscriptions for Instagram, Facebook, and WhatsApp
Meta rolled out paid subscription tiers for Instagram, Facebook, and WhatsApp, priced between $4.99 and $7.99 per month, offering ad-free experiences and AI features [TechCrunch].
ChatGPT for Google Sheets add‑on leaks workbook data
A flaw in the ChatGPT for Google Sheets add‑on lets the extension transmit full workbook contents to an external server, exposing sensitive data [Prompt Armor].
Your scraper returned a clean row. It was wrong.
A Trustpilot scraper generated valid JSON with impossible values, highlighting the limits of schema-only validation for LLM-driven extraction. A value-level sanity gate catches egregious errors before database insertion [Dev.to].
AI invents art style from blank sketchbook for under $5
A Hermes agent runs a self-critique loop, emerging with distinct visual signatures. The experiment produces a full gallery of AI-generated art for under $5.
NSOpenPanel can't see Android devices over MTP
NSOpenPanel fails to list Android devices over MTP because macOS only exposes mounted volumes to its file-picker APIs. Developers must implement a custom picker to work with MTP-based storage.
Documentation beats code in open-source
A month-long experiment across five open-source projects found that clear READMEs and project docs unlock more contributions than code changes alone [DevTo].
Glean, Guru, and TactasAI address distinct knowledge workflow stages
Glean, Guru, and TactasAI each address a distinct stage of the knowledge workflow—finding, governing, or acting on information. The right platform choice hinges on the most painful bottleneck in your team’s day-to-day work.
2026.05.31
Angular 19 loadComponent vs loadChildren: choosing the right lazy‑loading boundary
Angular 19 makes standalone components the default and promotes loadComponent as the primary lazy‑loading API. Sanket Bhor explains why swapping it for loadChildren can bloat bundles, duplicate providers, and blur team ownership.
Cloudflare Turnstile now forces WebGL fingerprinting
On May 31 2026 Cloudflare updated Turnstile to require WebGL fingerprinting, exposing GPU details for every verification request and raising privacy concerns for users and developers.
Python renderer implements 3d pipeline with backface culling
Yubin Yang's Python/Pygame renderer walks a triangle through every classic graphics stage and discards back-facing triangles before rasterisation [Dev.to].
Google Ads Transparency Scraper: $1.20/1k ads
An Apify Actor scrapes Google Ads Transparency Center for $0.0012 per ad, undercutting SaaS competitors [Dev.to].
Keycheck audits env vars in browser
Keycheck, an open-source static web app, compares local .env files against a template in the browser, eliminating manual checks and preventing secret leakage [DevTo].
Av2 video standard released with final v1.0 spec
AOMedia releases AV2 video standard, a next-gen codec for improved compression efficiency and emerging media applications [AOMedia].
MTP batch transfers slow to 30 MB/s after first file
Transferring multiple large files over MTP on an eight-year-old MacBook Air shows a 45 MB/s peak for the first file, then drops to 30 MB/s and slower for subsequent files due to MTP's per-file negotiation cycle [Dev.to].
Microsoft removes offline editing from Office 2019/2021 for Mac
Microsoft announced that Office 2019 and Office 2021 for Mac will no longer allow document editing when offline, limiting users to view‑only mode and PDF conversion. The change pushes perpetual‑license Mac users toward Microsoft 365 or alternative suites.
ai can add complexity without noise if repo enforces guardrails
A dev.to essay argues that AI-assisted coding stays coherent when the repository enforces explicit architectural guardrails, citing a Django-SvelteKit platform rebuild [DevTo].
Beelink mini PC runs Proxmox VE for $349
Javier Barbaran's Beelink S12 Pro setup with Proxmox VE hosts LXC containers and VMs for a compact home lab [Dev.to]. The device features an Intel N100, 16 GB RAM, and a 512 GB NVMe SSD [Javier Barbaran].
Ernst & Young cybersecurity report contains AI hallucinations
An investigation by GPTZero found that Ernst & Young’s recent cybersecurity report includes AI‑generated falsehoods, raising doubts about the reliability of machine‑crafted security documentation.
2026.05.30
Voxel Space: new open-source voxel rendering library on GitHub
Voxel Space is an open-source library for voxel rendering that supports WebGL and common voxel formats, giving engineers a free alternative for 3D visualizations and games.
Mistral AI Now Summit showcases 50% response-time boost with open-weight models
Mistral AI Now Summit highlighted open-weight models as a path for startups to compete, with a demo startup reporting a 50% cut in customer-service response time using a fine-tuned LLM [DevTo].
U.S. Office of Management and Budget proposes grant cancellation rule
The OMB has issued a proposed rule that would let it cancel federal research grants at any time, without notice or justification, sparking criticism from scientists who say it threatens funding stability.
Zig revamps build system with native incremental compilation
Zig’s May 2026 devlog details a new build system that adds incremental compilation, richer error messages and a simplified project file, promising faster builds and easier project management.
MCP protocol deprecated, migration required now
Quandri announced the immediate deprecation of its MCP protocol, forcing engineers to replace it in production environments. The blog post outlines a migration timeline and warns of service disruption if users do not switch promptly.
Monolith outperforms microservices in 5× traffic spike
Jeevan Srivastava's ten-year-old monolith handled a 5× traffic spike without error, while his Kubernetes-orchestrated microservices stack crashed, prompting him to rethink scalability [Dev.to].
White House proposes rule giving political appointees final say on research grants
OSTP’s May 28, 2026 notice would force a senior political appointee in each agency to approve every NIH and NSF grant, affecting roughly $45 billion in annual funding. Comment period runs until July 31, 2026.
OpenAI Codex and Google Antigravity differ in architecture and workflow
OpenAI Codex delegates discrete engineering tasks, while Google Antigravity orchestrates agents across a full development workspace [DevTo][Poniak Times].
Researcher threatens second Windows zero‑day amid Microsoft dispute
A security researcher has warned that a second Windows zero‑day will be released after a clash with Microsoft over the company’s vulnerability‑disclosure process.
California assembly passes AB 3060, the Protect Our Games Act
The California State Assembly approved AB 3060 on May 28, 2026, requiring app‑store platforms to give developers 30‑day notice and a formal appeal before removing a game, with penalties up to $10,000 per violation.
exists and non-sparse indexes in mongodb and documentdb
MongoDB's $exists queries on non-sparse indexes trigger a residual fetch, while Amazon DocumentDB ignores the index and Microsoft's DocumentDB-on-PostgreSQL behaves differently. Sparse indexes eliminate the wasted work [Dev.to].
2026.05.29
Mistral AI Now Summit notes reveal new models and tools
Koen Van Glabbeek’s recap of the Paris summit details fresh multilingual language and computer‑vision models, plus accompanying tooling, underscoring AI’s expanding role across industries.
Dnd-kit simplifies drag-and-drop in React and Next.js
A developer used dnd-kit to add sortable lists and draggable cards to a Next.js 14 app with a few lines of code, citing a lightweight 10 KB bundle and clean React-first API [DevTo].
Scriba brings structured logging to Guile Scheme
Scriba, a Guile Scheme library, provides structured logging with auto-configured JSON, console, and syslog backends, and compile-time macro expansion for zero-cost context handling [Lobsters].
Cars collect up to 25 GB of data per hour
BBC Future reports modern cars can record up to 25 GB per hour, covering location, acceleration, braking and voice commands, and often transmit it to manufacturers, sparking privacy concerns.
Volkswagen blocks Home Assistant integration with client‑assertion requirement
Volkswagen’s CarNet API now requires a client‑assertion JWT for OAuth token requests, breaking the Home Assistant ‘volkswagencarnet’ integration. Users must wait for an update or apply a temporary patch to restore vehicle data.
LLMs keep asserting false claims despite explicit warnings
An arXiv paper finds that GPT‑4, Claude‑2 and Llama‑3 still treat false premises as true even when prompts begin with a clear warning, showing that fine‑tuning alone cannot eliminate hallucinations.
Blue Origin New Glenn explodes during static fire test
A Blue Origin New Glenn rocket detonated during a May 29 static‑fire test in Florida, prompting an investigation into a likely engine failure and pushing the vehicle’s maiden launch further back.
Blue Origin's New Glenn explodes during static fire test
A static fire test of Blue Origin's New Glenn on May 29, 2026 ended in an explosion, captured on video by NASASpaceFlight.
GitHub bans researcher for posting zero‑day Windows exploits
GitHub suspended a security researcher after they posted zero‑day Windows exploits, prompting the researcher to claim the ban ruined their life and prompting experts to label the move vindictive and promise retaliation.
Altman and Amodei recant AI jobs apocalypse predictions
Sam Altman and Dario Amodei have publicly recanted their earlier warnings that AI would wipe out millions of jobs, citing overstated forecasts and AI's potential to augment workforces [Fortune].
Anthropic releases Claude Opus 4.8 with stronger coding and consistency
Anthropic's Claude Opus 4.8 boosts coding assistance, agentic tasks, and professional‑work performance while delivering higher consistency for long‑running prompts.
2026.05.27
Lombardy slaps 200% tax on datacenters in green zones
Lombardy has imposed a 200% tax increase on datacenters built in green or agricultural areas, aiming to curb development in ecologically sensitive zones, according to Il Sole 24 Ore [Il Sole 24 Ore].
GitHub outage hits pull requests, issues, and API on May 27, 2026
GitHub faced an outage starting May 27, 2026, at 12:15:14 UTC, disrupting pull requests, issues, Git operations, and API requests, according to its status page [GitHub Status]. Details on root cause and resolution remain pending.
Why your ai shouldn't decide alone: the 3-options pattern
Michel Faure avoided a costly rework by requiring three distinct options from AI — each with trade-offs on business impact, code surface, and operational cost — before updating a trainer's name in an ERP system [devto].
Cloudflare launches Flagship with automatic code optimizations
Cloudflare's Flagship uses automated transformations to improve web performance, targeting slow renders and inefficient assets without requiring developer rewrites [Cloudflare Developers].
Stripe's chargeback policies favor customers over merchants, report claims
A gingerlime investigation alleges Stripe approves disputed transactions without sufficient merchant protection, leading to financial losses and trust issues.
Next-token prediction's bias and accuracy challenges
0x5FC3's analysis exposes how next-token prediction in language models risks propagating bias and limits reasoning, despite its dominance in LLM architecture [hn-front].
Drew Houston steps down as Dropbox CEO
Drew Houston, co-founder and CEO of Dropbox, will step down and be replaced by Ashraf Alkarmi, effective June 1, 2026. Houston will remain on the company's board of directors [cnbc].
Nasa's Moon Base I launches fall 2026 on Blue Origin's lander
Nasa's Moon Base I mission will launch in fall 2026 to the Moon's South Pole using Blue Origin's Blue Moon Mark 1 Endurance lander, carrying instruments to study thruster-surface interactions ahead of Artemis 2028 [The Verge].
Aimvantage generates interview prep packs in 90 seconds using cv and job link
AimVantage uses a CV and job link to generate a full interview prep pack in 90 seconds, including company briefs, fit score, cover letter, and mock questions, starting at $5 one-time [devto]
Gemini api delivers structured json outputs
Gemini's structured output system uses vocabulary masking during inference to enforce JSON schema contracts, reducing errors in high-throughput production environments. The API provides two native parameters, responseMimeType and responseSchema, to activate structured execution.
2026.05.26
C# AI agent uses Tavily to research .NET errors
A .NET Error Research Agent built with C#, Semantic Kernel, and Azure OpenAI searches external sources like GitHub and StackOverflow before suggesting fixes, eliminating hallucinated fixes [Dev.to].
Spain blocks Polymarket and Kalshi over missing gambling licence
Spanish authorities have blocked Polymarket and Kalshi for operating without a gambling licence, part of broader EU regulatory pressure on crypto prediction markets [Reuters]. The action signals increasing compliance risks for unlicensed platforms.
WordPress at 15: core is bare-minimum, ecosystem is broken
A 15-year WordPress developer slams the platform's technical debt, security flaws, and Automattic's gatekeeping, arguing the core is unusable without plugins and value flows to scammers and the parent company
Motorola injects affiliate codes into Amazon app on its phones
Motorola is modifying the Amazon app on its devices to insert its own affiliate codes without user consent, according to 9to5google [9to5google]. The move bypasses Amazon's intended functionality and raises concerns about OEM overreach.
DynIP launches with RFC 2136, IPv6, and DNSSEC support
DynIP offers a dynamic DNS service with full RFC 2136 compliance, IPv6 and DNSSEC support, and bring-your-own-device capability for infrastructure teams managing dynamic IPs
Pope Leo calls for AI 'disarmament,' cites Gandalf
Pope Leo urged global AI disarmament in a May 25, 2026 statement, quoting Gandalf’s 'do not meddle in the affairs of dragons' as a warning against unchecked AI development [ars-technica].
Access control breaks down at scale — here's why
A system with 15 roles became unmanageable as access decisions grew context-dependent, exposing limits in role-based models. Audit trails, attribution, and product-level decisions compound the complexity.
Dillo-browser.org rolls out human proof to verify FOSS contributors
Dillo-browser.org has implemented human proof verification to confirm contributors are real people, not bots, aiming to reduce spam and boost trust in its open-source project.
Microsoft Copilot's Cowork flaw lets attackers steal files via prompt injection
A security flaw in Microsoft Copilot's Cowork feature allows file exfiltration through prompt injection, demonstrated by Kneenex on May 25, 2026 [hn-front].
eu stack for under €10/month
A guide details how to run a full-stack EU-hosted application for under €10/month using free-tier services from Scaleway, Neon, and Cloudflare.
2026.05.25
Uber's coo says ai token spending is getting harder to justify
Uber's COO Andrew MacDonald says the company can no longer easily justify rising AI token costs without clear ROI, according to Business Insider [hn-front]
We trained a personal voice DoRA on Qwen3-8B for $1.50
Aiconic trained a personal voice DoRA adapter on Qwen3-8B using 6,128 Telegram messages for $1.50, beating the stock model 100% in blind A/B tests [devto][aiconic]
Jira's workflow automation is turing complete, researcher shows
Researcher vinhnx demonstrated Jira can simulate a Turing machine using workflow automation, raising questions about complexity and security in enterprise tooling [seriot.ch].
Hackers exploit chatbot personalities to bypass AI safety locks
Hackers are using engineered personas to jailbreak chatbots, bypassing safety filters by manipulating how AI models respond to role-play and emotional cues, The Verge reports.
Jujutsu offers a simpler alternative to git with fewer commands
Ikesau introduces Jujutsu, a version control system that reduces Git's complexity with an intuitive design and lower cognitive load [ikesau.co].
ReactUse ships six pointer hooks to fix hover, long-press, and click-outside bugs
ReactUse releases six lean, production-ready React hooks—useHover, useMousePressed, useLongPress, useDoubleClick, useClickOutside, and useScratch—that fix persistent cross-platform gesture bugs in React apps.
CBP updates border search rules for electronic devices
CBP Directive 3340-049B updates procedures for searching phones and laptops at U.S. borders, detailing search criteria, use of external tools, and handling of sensitive data [CBP].
2026.05.24
Microsoft open-sources earliest known DOS code
Microsoft has released the earliest known version of DOS source code on GitHub, offering engineers a direct look at foundational OS design and x86-era programming constraints [hn-front].
Vivado 2026.1 drops free linux support
AMD's Vivado 2026.1 removes Linux support from the free tier, pushing developers to paid versions or alternative tools, according to the AMD Support Forum.
Ex-AWS engineer on burnout, team dynamics, and shipping at scale
A former AWS engineer details their four-year stint building distributed systems, citing team alignment and prioritization as critical — and burnout as inevitable without them [Adventures in OSS].
Parlotype adds Gemma 4 with five on-device speech models for Windows
Maksim Demin's Parlotype now supports Gemma 4 alongside Whisper, offering five quantized variants tuned for accuracy, speed, and disk use on Windows .NET
GitHub mining reveals real developer pain points at scale
By analyzing issues, pull requests, and discussions, GitHub mining uncovers hidden usability problems in developer tools — like deployment errors and poor documentation — that surveys often miss [devto][Xiong et al.]
c# gets union types in .net 11 preview 2
C# in .NET 11 Preview 2 introduces union types, enabling discriminated unions and pattern matching for safer type handling [Andrew Lock]. This feature lands after years of community requests.
mentally preparing for your first push to production
Marwan Mohammed details his first production deployment, stressing mental readiness, decoupled configurations, and KPI clarity for engineers shipping code live [devto].
2026.05.23
Oura confirms it receives government data requests
Oura has confirmed receiving government demands for user data, raising privacy concerns for its health-tracking ring users [Week in Security].
ai coding agents hallucinate — here's how to fix the root cause
Andrew Shu details how AI coding agents hallucinate by inventing APIs or using deprecated libraries, and advocates for a feedback cycle that traces context sources like CLAUDE.md files to prevent recurrence [devto].
BambuStudio forked PrusaSlicer but didn't release source code
Josef Prusa says BambuStudio violated AGPL by forking PrusaSlicer without releasing modified source code, a breach of open-source terms
Blox Fruits calculator cuts 72-hour data lag with dynamic velocity multipliers
The Blox Fruits Value Calculator replaced static price tables with real-time transactional velocity metrics, reducing data lag from 48–72 hours to under 5 minutes using dynamic velocity multipliers [devto].
WhatsApp's Incognito Chat with Meta AI keeps messages sealed in private processing
WhatsApp is rolling out Incognito Chat, a Meta AI feature that uses private processing to keep AI conversations encrypted and ephemeral.
FBI director Kash Patel's apparel site hosts clickfix malware
The website for FBI director Kash Patel's apparel brand is actively hosting a 'ClickFix' attack that tricks visitors into installing malware, PCMag reported May 23, 2026 [PCMag]. The malicious script was delivered through a third-party service on the site.
Microsoft's AI inference costs exceed human labor for some tasks
Microsoft's internal assessment found AI inference costs higher than human labor costs for certain functions, with the company spending millions on AI despite the expense, according to Fortune [Fortune].
Cord Protocol launches post-quantum identity SDK
Cord Protocol, an open source post-quantum cryptographic identity SDK, issues verifiable credentials for AI agents, addressing spoofing and prompt injection risks [Dev.to].
Four Russian satellites close to ICEYE's Ukraine-supporting radar satellite
Four Russian satellites are now within close proximity of an ICEYE radar satellite providing support to Ukraine, raising concerns about space-based threats in the ongoing conflict [ars-technica].
NTSB moves to ban AI reconstructions of pilots' voices from crash reports
The NTSB is pushing to outlaw synthetic recreations of cockpit audio after AI developers used public transcripts to rebuild deceased pilots' voices with 92% accuracy, exploiting a loophole in current law.
yt-dlp drops bun support over compatibility issues
yt-dlp has deprecated Bun support as of May 22, 2026, citing unresolved compatibility and maintenance problems [GitHub Issue]. The move underscores ongoing friction in adopting Bun in mature open-source tooling.
2026.05.22
Apache Iceberg exposes metadata as queryable tables
Apache Iceberg makes internal metadata accessible via SQL through virtual tables like $snapshots, $files, and $partitions, enabling time travel, optimization, and monitoring [devto].
Open source LLM eval tool adds blind comparisons and cognitive posture maps
A new open-source LLM evaluation tool uses blind side-by-side comparisons and cognitive posture heat maps to reduce bias and expose response patterns like sycophancy or hallucination cascades [devto].
Samsung chip workers win $340k bonuses after strike threat
Samsung semiconductor employees secured an average annual bonus of $340,000 after threatening a strike over bonus caps, following competitive pressure from SK Hynix's AI-driven payouts [The Verge].
Microsoft lets Office users remove floating Copilot button
Starting next week, Word, Excel, and PowerPoint users can hide the floating Copilot button that blocked cell access and sparked backlash since its April 2026 rollout. Admins can disable it via Group Policy; mobile remains unaffected.
Memory shortage pushes smartphone prices up 15% in 2026
AI-driven memory demand has tightened supply, pushing average smartphone prices up 15% in 2026 and threatening the era of budget devices [davidoks.blog].
Google api keys stay active after deletion, security research shows
Deleted Google API keys can still be used to access resources due to a delay in deactivation, creating a window for exploitation, aikido.dev reports.
Starship V3 launch scrubbed over ground system issue
SpaceX scrubbed the first Starship V3 launch due to a ground support equipment failure, with a retry possible Friday evening [ars-technica].
AI-coded app security jumps to 84/100 with vercel.json
A Markdown-to-PDF app scored 50/100 on security due to missing HTTP headers, but adding a vercel.json config raised it to 84/100 without changing any React code [dev.to].
Blog migrates from ubuntu 16.04 to freebsd after 10 years
After a decade on Ubuntu 16.04, a blog moves to FreeBSD for stability and security, with the author detailing the technical hurdles and fixes
BBEdit 16 released with Git integration and AppleScript upgrades
BBEdit 16 lands on macOS with deeper source control support, enhanced scripting, and performance fixes for developers
2026.05.21
Spotify and UMG launch AI remixes
Spotify and Universal Music Group have released an AI tool that generates remixes and covers of licensed tracks, available as a paid add-on for Premium users. Artists can opt out or participate and earn royalties [The Verge].
Claude Mythos linked to alleged M5 kernel exploit in 5 days
An unverified Instagram post claims a Palo Alto startup used Claude Mythos to develop a macOS kernel memory corruption exploit on M5 silicon within five days.
Python 3.15: typing, error handling, and performance updates
Python 3.15 ships with under-the-radar improvements to typing via `typing.ParamSpec`, `except*` for better error handling, and faster dictionary lookups and exception processing [Chang's Blog].
Google adds ads to ai mode search results
Google is placing ads directly within AI Mode search results, a shift that boosts revenue and embeds promotion into AI-generated answers [Google Blog]. The change affects user trust and how businesses target queries answered by AI.
GitHub confirms breach via malicious VS Code extension
GitHub says attackers accessed 3,800 internal repos after compromising an employee device through a malicious VS Code extension [source: @appinventiv4ai].
Vivaldi 8.0 launches with tab stacking, built-in code editor
Vivaldi 8.0 rolls out with tab stacking, full UI layout control, and a built-in code editor and debugger [Vivaldi Blog]. The update targets power users and developers seeking granular browser customization.
LLVM Foundation backs open access to standards documents
The LLVM Foundation has published a statement supporting open access to standards documents, now open for community feedback on LLVM Discourse [lobsters].
Intuit cuts 3,000 jobs to accelerate AI shift
Intuit is laying off 3,000 employees—8% of its workforce—to accelerate its shift toward AI-driven products, per TechCrunch [TechCrunch]. The move underscores the cost of AI transformation in fintech.
Apple's video wallpaper format reverse engineered by kageroumado
Kageroumado reverse engineered Apple's video wallpaper format and released Phosphene, an open-source tool on GitHub that enables custom video wallpapers on iOS devices [GitHub].
SpaceX files S-1, reports $1.78B Q1 2026 revenue
SpaceX has filed an S-1 with the SEC, disclosing $1.78 billion in Q1 2026 revenue and $1.23 billion in R&D spend as it prepares for a public offering [SEC Archives].
Google restricts web interoperability, citing security
Google's 2026 policy changes limit how developers build web apps, raising concerns about innovation and open standards, per cdrnsf on hn-front [hn-front].
Choosing the right rag strategy for large language models
Engineers must match rag chunking and retrieval methods to document structure and query demands — one-size-fits-all approaches fail in practice [devto].
OpenAI model disproves Keller's conjecture in discrete geometry
An OpenAI model has disproven Keller's conjecture in discrete geometry by finding a counterexample in seven-dimensional space, using formal reasoning and search algorithms [OpenAI Blog].
2026.05.20
WordPress security: 10-minute monthly checklist with wp-cli
A 10-minute monthly WordPress security checklist using WP-CLI to catch core updates, vulnerable plugins, and misconfigurations before they’re exploited
NestJS checkout hits 78.2% success under 60% payment failure
Mairon José Cuello Martinez's NestJS checkout system uses retry, idempotency, and self-tuning to maintain 78.2% success during 60% payment gateway failure, with circuit breaking and feedback-driven config adjustments [devto]
Google unveils background ai agents for inbox, calendar, event planning
Google introduced new ai agents at io 2026 that run in the background and handle tasks like summarizing inbox and calendar data, event planning, and information retrieval, integrated across Google services [The Verge].
GBIM adds Prometheus, Grafana, and k6 for end-to-end observability
GBIM deploys Prometheus and Grafana for monitoring, k6 for smoke testing, and correlation IDs to track requests across services, improving error investigation and business metric visibility.
Most non-trivial c programs are undefined
A technical deep dive shows how GCC and Clang exploit undefined behavior in C, turning seemingly correct code into unpredictable binaries — with real security consequences.
Sony Xperia 1 VIII vs iPhone 17 Pro Max vs Galaxy S26 Ultra: Camera shootout
A 15-image comparison from @flashingdroid pits the Sony Xperia 1 VIII, iPhone 17 Pro Max, and Galaxy S26 Ultra in a no-editing, side-by-side camera test.
Fbi seeks real-time access to us license plate data via private vendors
The FBI is negotiating with private vendors to build a nationwide system for real-time access to license plate scanner data, according to Ars Technica [Ars Technica]. The effort would expand the bureau’s ability to track vehicle movements across state lines.
GitHub investigates unauthorized access to internal repositories
GitHub confirmed an investigation into unauthorized access to internal repositories on May 20, 2026, raising concerns about data exposure and platform trust [GitHub].
Railway outage tied to Google Cloud issues
Railway's deploy and infrastructure services are down as of May 19, 2026, due to problems with Google Cloud, affecting developers relying on the platform [Railway Status].
OpenAI rolls out Google's SynthID to watermark AI images
OpenAI is using Google's SynthID to embed invisible watermarks in AI-generated images, with a verification tool now live as of May 19, 2026, to improve content provenance [OpenAI Blog].
Anthropic's agent marketplace completed 186 deals in one week
Anthropic's Project Deal ran an internal agent-to-agent marketplace for one week, completing 186 deals worth over $4,000 — all handled by Claude agents without human intervention [anthropic].
Google DeepMind releases Gemini Omni with multimodal capabilities
Google DeepMind launched Gemini Omni, a multimodal model that processes text and images, with full technical specs published on its official site [Google DeepMind].
2026.05.19
ai chatbot erases digital past in 6 hours
A user used an AI chatbot to remove dozens of data broker listings and old accounts over one weekend, as shared by @evolving.ai [(@evolving.ai)](https://www.instagram.com/p/DYWm6yygPWm/)
AI announcer mispronounces, skips names at glendale community college graduation
An AI announcer at Glendale Community College in Phoenix mispronounced and skipped students' names during commencement, forcing pauses and prompting an apology from college president Tiffany Hernandez, who offered affected students a redo [The Verge].
Apple rolls out Apple Intelligence-powered voice control and assistive tools
Apple launches new accessibility features using Apple Intelligence, including enhanced voice control and personalized assistive tools for users with disabilities [Apple Newsroom].
ChatGPT replaces wife with three women after 'make husband happy' prompt
ChatGPT edited a photo to replace a wife with three women when asked to make her husband happy, sparking backlash over AI ethics and prompt interpretation [Evolving AI Instagram].
Mini Shai-Hulud malware hits 314 npm packages
The Mini Shai-Hulud malware has compromised 314 npm packages by injecting obfuscated malicious code, according to SafeDep.
Peter Neumann, computer science pioneer, has died
Peter Neumann, a foundational figure in secure and dependable computing, has died, according to the TUHS mailing list.
PlayStation halts PC releases for major single-player games
Sony is ending PC ports for major single-player PlayStation exclusives, Bloomberg's Jason Schreier reports, citing a shift by Hermen Hulst's studio group to keep flagship titles console-only [the-verge].
AI agent extracts video frames, generates clips via Telegram
An autonomous AI agent on GetClawCloud uses a Telegram bot to receive videos, extract the last frame, and generate cinematic clips via Wavespeed.ai—no manual scripting required.
LG's 1000Hz UltraGear 25G590B monitor
LG's UltraGear 25G590B monitor features a native 1000Hz refresh rate at 1080p resolution, a first for the industry, targeting esports competitors [The Verge].
Shutterstock to pay $35m for hiding cancellation options
Shutterstock will pay $35 million to settle FTC charges that it used dark patterns to obstruct subscription cancellations, with the company required to overhaul its cancellation process and improve disclosure practices.
Fbi seeks nationwide access to 200 million license plate scans
The FBI is pursuing a contract for real-time access to a private network of license plate readers, drawing scrutiny over mass surveillance and data privacy. The system could tap into billions of annual vehicle location records.
Anthropic acquires ai coding startup stainless
Anthropic has bought Stainless, an AI coding tools startup, as part of its push into developer workflows. Terms were not disclosed.
2026.05.18
GitHub maintainers can block AI bot spam using Git's --author flag
Archestra.ai outlines how open-source maintainers can use Git's --author flag to filter AI-generated commits, reducing spam in repositories.
Files.md launches as open-source Obsidian alternative
Zakirullin's Files.md offers markdown-based note management with tagging, linking, and plugin support, now on GitHub.
I automated opt-outs for 500 data broker sites
Stephen L. Thorn's open-source tool, auto-identity-remove, automates opt-outs across 500 data broker sites, streamlining personal data removal
GitHub raises bug bounty payouts, focuses on quality over quantity
GitHub updates its bug bounty program to emphasize high-quality reports, clarifies security responsibilities, and increases rewards—average payout up 30% in the past year.
GitHub pilots accessibility agent to aid users with disabilities
GitHub is testing an experimental AI agent to improve product accessibility for users with visual or hearing impairments, sharing key technical and design challenges from the effort [GitHub Blog].
16 bytes of x86 assembly generate matrix rain sound
HellMood's 16-byte x86 program turns falling matrix characters into audio using the PC speaker, proving how minimal code can create immersive effects [HellMood].
OpenAI gives every Maltese citizen access to ChatGPT Plus
OpenAI is providing ChatGPT Plus and AI training to all Maltese citizens under a May 2026 government partnership aimed at boosting digital literacy and responsible AI use [OpenAI].
Semble uses 98% fewer tokens than grep for code search
Semble, a new open-source code search tool, uses 98% fewer tokens than grep and is designed for agent-first workflows. It’s now available on GitHub.
Mit launches gencad for ai-generated cad models
GenCAD, an open-source MIT project, generates CAD models from text prompts using AI and claims 10x faster output than manual design [GitHub]
VoIP retrofits bring pay phones back to rural Vermont
Rural Vermont is reviving pay phones with VoIP technology to close connectivity gaps where traditional infrastructure falls short [IEEE Spectrum].
Debian Linux runs on $80 RK3562 Android tablet
A developer installed Debian Linux on a $80 RK3562 Android tablet, turning it into a functional workstation using a custom bootloader and kernel patches [tech4bot].
2026.05.17
Americans are smashing flock cameras over ice data access
Flock surveillance cameras have been destroyed in at least 12 states since May 2026, following reports that ICE accessed their license plate data — sparking a rare physical backlash against government surveillance tech.
Every AI subscription is a ticking time bomb for enterprise
AI subscriptions risk locking enterprises into costly, insecure contracts with unclear data rights, warns The State of Brand.
Vercel gates source maps behind authentication
Vercel now secures .map files by restricting access to users with deployment permissions, closing a common security gap in production deployments [Vercel Changelog].
Mozilla tells uk regulators: vpn restrictions threaten privacy and security
Mozilla has formally opposed UK proposals to restrict VPNs, arguing the move would harm user privacy, security, and internet freedom [Mozilla Blog].
Website hosted on an 8-bit microcontroller
Maurycy Zarzycki built a working web server on an ATmega328P, the 8-bit chip in Arduino Uno, running a minimal HTTP server over Ethernet with hand-coded assembly and C [Maurycy Zarzycki's Blog].
Fisker Ocean owners launch open source car company after bankruptcy
After Fisker's bankruptcy, Ocean EV owners formed an open source car company to maintain and develop the vehicle's software and hardware, challenging traditional automotive ownership [Electrek].
Zerostack, a unix-inspired coding agent, launches on crates.io in rust
Zerostack, a coding agent modeled on Unix principles and written in Rust, is now available on crates.io as version 1.0.0 [crates.io], signaling a new approach to reliable, modular developer tooling.
Kioxia and Dell pack 10 PB into 2RU server with high-density ssds
Kioxia and Dell have built a 2RU server capable of holding 10 petabytes using Kioxia’s high-density SSDs, raising the bar for storage density in data centers [Blocks and Files].
Futhark releases examples to accelerate adoption
Futhark, a high-performance computing language, has published a suite of code examples covering core features and optimization techniques to lower the barrier to entry for developers [Futhark Lang].
2026.05.16
Nvidia releases 2.6B-parameter SANA-WM for 1-minute 720p video generation
Nvidia's SANA-WM, a 2.6B-parameter open-source world model, generates 1-minute 720p video and advances generative video benchmarks using a transformer architecture [NVLabs]. It is available for research use.
Δ-Mem cuts memory use in large language models without performance loss
Δ-Mem, a new memory optimization technique, reduces memory consumption in LLMs by compressing key-value states and reusing memory slots, maintaining full model performance [arXiv].
Additive blending achieved on the nintendo 64
Phoboslab achieved additive blending on the Nintendo 64 by exploiting GPU register behavior, a technique previously thought impossible on the 1996 console.
Frontier AI breaks open CTF format, participation drops by 70% since 2023
Frontier AI systems have outpaced traditional Capture The Flag competitions, with participation falling 70% since 2023 as teams fail to challenge AI red teams. The format can no longer stress-test security skills or AI defenses [Kabir's Blog].
Sigmoid functions saturate and kill gradients — use ReLU instead
Sigmoid activation functions hinder neural network training by saturating, causing vanishing gradients; modern architectures favor ReLU and its variants for better performance [Astral Codex Ten].
California bill would force game studios to patch or refund dead online games
A California bill requiring game companies to release offline patches or issue refunds when shutting down online games has passed a key legislative hurdle [Ars Technica].
Erlang/OTP 29.0 released with BEAM optimizations and concurrency updates
Erlang/OTP 29.0 ships with measurable BEAM VM speedups, enhanced process scheduling, and new distributed node handling—key for high-concurrency systems [Erlang Blog].
Zulip Foundation launches to govern open-source collaboration tool
The Zulip Foundation has been established as an independent entity to oversee governance, finances, and community engagement for the open-source collaboration platform [Zulip Blog].
Windows CE 2.11 runs on Nintendo 64 in hobbyist port
A developer has ported Windows CE 2.11 to the Nintendo 64, demonstrating deep embedded systems skills and unlocking new experimentation in retrocomputing. The project, WinCE64, is live on GitHub.
Bun's Rust rewrite fails miri checks, allows undefined behavior
Bun's Rust rewrite fails Miri's memory safety checks, introducing undefined behavior in safe Rust—undermining core promises of the language [GitHub Issue].
2026.05.15
Project zero found a 0-click pixel 10 exploit using baseband and media codec flaws
Google Project Zero uncovered a 0-click exploit chain on the Pixel 10 that combines baseband and media codec vulnerabilities, enabling full device compromise without user interaction. Patches are now available via the May 2026 Android security update.
WhichLLM ranks local AI models by hardware performance
The WhichLLM GitHub tool benchmarks local large language models against specific hardware, helping developers pick the fastest, most efficient model for their system.
UK government replaces Palantir with internal refugee data system
The UK government has replaced Palantir's software with an in-house system for managing refugee data, citing data governance and privacy concerns [BBC News]. The move signals a shift toward self-built, open-source public sector tech.
Nginx rift exploit disclosed, affects versions before 1.23.2
The Nginx-Rift exploit, published by DepthFirstDisclosures on GitHub, enables remote code execution on Nginx servers running versions before 1.23.2 [GitHub Blog].
First public kernel memory corruption exploit released for Apple M5
A public exploit targeting a kernel memory corruption flaw in Apple's M5 chip has been released, exposing unpatched vulnerabilities in the latest Macs.
Mullvad exit IPs can be used to identify users, study shows
A study reveals Mullvad's exit IP distribution creates a fingerprinting vector, undermining user anonymity. The uneven reuse of IPs allows tracking even within the VPN's infrastructure.
Amazonbot now respects robots.txt, ending years of webmaster complaints
As of May 14, 2026, Amazonbot began honoring robots.txt rules, letting site owners block its crawls—a change webmasters demanded for years to curb server strain [xeiaso].
Removing the modem and GPS from a 2024 RAV4 hybrid
Arkadiy disabled his 2024 RAV4 hybrid’s data transmission by removing the telematics control unit and GPS antenna, documenting the hardware-level privacy mod on his blog [Arkadiy's Blog].
2026.05.14
BitLocker cracked by YellowKey exploit using USB files
The YellowKey exploit bypasses Microsoft BitLocker encryption using a USB stick with specific files, exposing a critical unpatched vulnerability in Windows disk encryption [Tom's Hardware].
Fast mode for Opus 4.7 on AI Gateway cuts latency 2.5x at 6x cost
Vercel's AI Gateway now supports fast mode for Claude Opus 4.7, delivering 2.5x faster output token generation with full model intelligence, priced at $30 input and $150 output per 1M tokens.
Openai responds to tanstack npm supply chain attack
OpenAI details its response to the TanStack 'Mini Shai-Hulud' npm supply chain attack, including system protections and certificate revocation. macOS users must update OpenAI apps by June 12, 2026 [openai].
Vercel rolls out trusted sources with oidc for deployment access
Vercel's new Trusted Sources feature lets protected deployments accept requests from authorized Vercel projects and external services like GitHub Actions using short-lived OIDC tokens instead of long-lived secrets [Vercel Changelog].
OpenAI builds a safe sandbox for Codex on Windows
OpenAI has developed a secure sandbox for Codex on Windows, enabling safe and efficient coding agents with controlled file access and network restrictions. The sandbox allows for secure execution of Codex models on Windows systems.
The emacsification of software.
The concept of emacsification is spreading beyond text editors, with software incorporating features like extensibility, customizability, and self-modification. This trend is driven by the desire for flexibility and control in software development [sockpuppet].
Vercel adds natural language interface for WAF custom rules
Vercel now supports creating WAF custom rules using natural language input, translating plain English descriptions into enforceable security rules. The feature is available in the Firewall dashboard.
2026.05.13
Developer migrates from GitHub to self-hosted Forgejo
One developer’s move from GitHub to Forgejo underscores rising demand for self-hosted code platforms amid concerns over data control and platform dependency.
GitHub Copilot launches flex billing and $39 Max tier
Starting June 1, GitHub Copilot introduces usage-based billing for Pro plans and a $39 Max tier with unlimited access, priority models, and a 72B-parameter engine fine-tuned on Microsoft data.
linux kernel quic bug fixed
A Linux kernel optimization caused a QUIC protocol bug, leading to connection issues. Cloudflare engineers identified and fixed the bug [Cloudflare Blog].
News outlets urged to preserve wayback machine archives
A campaign is calling on major news outlets to preserve their archives on the Wayback Machine, a digital archive of the internet. The initiative aims to ensure that online news content remains accessible to the public.
DeepMind's AI pointer learns from user interactions
DeepMind introduces an AI-powered mouse pointer that adapts to user behavior, aiming to enhance human-computer interaction [DeepMind Blog]. The new pointer uses machine learning algorithms to learn from user interactions and adjust its behavior accordingly.
Obsidian outlines plugin ecosystem plans
Obsidian aims to improve plugin stability and security with a more rigorous review process and additional developer resources [Obsidian Blog].
Duckdb introduces quack protocol for remote access
DuckDB's Quack protocol enables clients to connect to a server for remote SQL query execution and database management [DuckDB Blog].
Scrcpy v4.0 released with android 5.0 requirement
Scrcpy v4.0 is now available, bringing several improvements to the tool used for displaying and controlling Android devices connected via USB or over TCP/IP, with a new minimum required Android version of 5.0.
Rust powers eric park's graduation cap
Eric Park's graduation cap uses Rust in an embedded system, as detailed in his blog post [ericswpark].
European governments launch securitybaseline.eu
The Internet Cleanup Foundation found 3000 tracking sites, 1000 phpMyAdmins, and poorly encrypted email in 99% of cases, prompting the launch of SecurityBaseline.eu to improve European cybersecurity [Internet Cleanup Foundation].
Bambu lab printers regain bambu network support
The OrcaSlicer-bambulab repository on GitHub has been updated to restore full BambuNetwork support for Bambu Lab printers, as reported on the repository's GitHub page [hn-front].
Researchers achieve 95% accurate whole-binary translation
A new approach to whole-binary translation achieves deterministic and fully-static translation without heuristics, with a 95% success rate in experiments [arXiv].
Canada's bill c-22 revives surveillance concerns
Canada's Bill C-22 has been introduced, bearing similarities to last year's surveillance bill, sparking concerns over privacy and surveillance [EFF]. The bill has been criticized for its potential to expand surveillance capabilities in Canada.
Instructure pays ransom to canvas hackers
Instructure paid a ransom to hackers who breached their Canvas system, as reported by Inside Higher Ed [Inside Higher Ed].
Bambu lab faces criticism for open source abuse
Bambu Lab is facing criticism for allegedly abusing the open source social contract, sparking a debate about licensing and community issues in the open source community [Jeff Geerling's Blog].
Matklad publishes software architecture guide
Matklad's guide covers system design, technical debt, and modularity for shipping engineers and product builders [Matklad's Blog].
maxime heckel on rendering sky and planets
maxime heckel's blog post covers rendering techniques for sky, sunsets, and planets, including atmospheric scattering and texture mapping [maxime heckel].
senior devs struggle to convey expertise
senior developers often fail to effectively communicate their expertise, hindering their ability to lead and mentor junior team members, as noted by nilirl [nilirl].
Cactus compute releases 26m needle model for gemini tool calling
Cactus Compute's Needle model distills Gemini tool functionality into a 26M AI model, available on GitHub, with over 100 comments and a score of 118 on Hacker News
CERT releases six CVEs for dnsmasq
The CERT has released six CVEs for dnsmasq security vulnerabilities, which can be exploited to gain unauthorized access to systems and devices [hn-front].
2026.05.12
ChatGPT adoption surges 35% among users over 35
ChatGPT adoption grew in Q1 2026, with 35% growth among users over 35 and more balanced gender usage, according to OpenAI [OpenAI].
ai tool identifies sleep disruptions
Developer showmypost used AI to track and analyze their sleep patterns, identifying disruptions caused by noise levels and room temperature [showmypost].
Google: AI helped hackers find major software flaw
Criminal hackers used AI to discover a significant software vulnerability, according to Google. The incident shows AI-powered attacks are a growing threat to software security [The New York Times].
Claude platform now on AWS
The Claude Platform integrates with AWS, expanding cloud capabilities [Claude Blog].
ai-generated code challenges python's role
AI models can generate 71% of code, potentially disrupting programming languages like Python, according to a recent survey [HN].
they live adblocker hits github
A new open-source adblocker, inspired by the 1988 film They Live, has been released on GitHub, using a unique approach to block ads in web browsers with a combination of filter lists and machine learning algorithms [GitHub].
TanStack npm supply-chain compromise revealed
TanStack's postmortem analysis details the npm supply-chain compromise, caused by a vulnerable dependency in one of its packages [TanStack Blog]. The incident led to malicious code injection, affecting users.
2026.05.11
M4 instance with 24gb memory runs local models
A developer ran local models on an M4 instance with 24GB memory, demonstrating its feasibility for development [hn-front].
Obsidian plugin exploited to deploy Phantom Pulse RAT
Attackers exploited a vulnerability in an Obsidian plugin to deploy Phantom Pulse RAT, a remote access trojan [hn-front].
Mythos finds curl vulnerability in older versions
Mythos has discovered a vulnerability in Curl, a widely-used library for transferring data specified with URLs, affecting versions prior to the latest patch.
Local ai needs to be the norm
Local AI allows for data processing on-device, reducing the need for cloud-based services and minimizing the risk of data breaches [hn-front].
GrapheneOS warns of hardware attestation monopoly risks
GrapheneOS argues hardware attestation can enable monopolies by restricting device usage [GrapheneOS]. Vendors can use security features to limit user freedom and stifle innovation.
Dropbox_miner ditches automated tools
Dropbox_miner switches to hand coding for improved understanding and control [hn-front].
github innovation graph reveals digital complexity of nations
Researchers used GitHub Innovation Graph data to predict GDP, inequality, and emissions, providing new insights beyond traditional economic data [GitHub Blog]. The Q4 2025 data release enabled these predictions, which were previously unattainable with conventional methods
cve-2024-yikes incident report details 9-day patch
The CVE-2024-YIKES incident report outlines the vulnerability's discovery on February 1, 2024, and patch release on February 10, 2024 [Nesbitt.io]. The report provides insight into the vulnerability and its effects
ai coding agent reduces maintenance costs
James Shore argues that an AI coding agent should prioritize reducing maintenance costs, citing long-term benefits [James Shore's Blog].
OpenAI publishes its internal Codex safety stack — sandboxing, approvals, agent-native telemetry
OpenAI detailed how it runs Codex internally — sandboxing, per-action approvals, restrictive network egress, and telemetry tuned for autonomous agents. A soft attempt to set the de-facto safety standard other coding agents will get measured against.
2026.05.10
Age-assurance laws now reach into open-source apps, not just big platforms
GitHub flagged that the UK Online Safety Act, EU DSA, and a wave of US state laws now reach down through app stores and operating systems to user-generated-content apps — including the indie open-source ones. Teams under 10K MAU are no longer automatically out of scope.
Bun's Rust rewrite hits 99.8% test compatibility on Linux
Bun creator Jarred Sumner says the experimental Rust rewrite now passes 99.8% of the existing test suite on Linux x64 glibc. Other platforms aren't there yet, but the dominant Linux target crossing 99% pulls the rewrite from "prototype" to "credible production candidate."
2026.05.08
Critical cPanel CVE-2026-41940 enables auth bypass. Patch now.
CVE-2026-41940 in cPanel and WHM allows authentication bypass and remote elevated control. Government and MSP networks are being actively targeted. Patch immediately.
Critical Apache HTTP/2 flaw enables RCE. Patch is 2.4.67.
CVE-2026-23918 is a double-free in Apache HTTP Server's HTTP/2 implementation. RCE is plausible. Upgrade to 2.4.67 or disable HTTP/2 until you can.
Next.js 16 makes Turbopack the default. Migration is mostly free.
Next.js 16 ships Turbopack as the default bundler for dev and prod, replaces middleware with proxy.ts, and introduces a Build Adapters API. Six months in, the migration story is calmer than expected.
Anthropic ships Claude 4.7 with 1M-context
Claude 4.7 lands with a million-token context window and modest pricing changes. Five things shipping engineers should care about.
OBLAIDISH NEWS goes live
First broadcast. Daily-cadence tech news with editorial discipline. Engineering signal, not noise.
Panthalassa raises $140M to put AI data centers in the ocean
Oregon-based Panthalassa closes $140M Series B led by Thiel, with Doerr, Benioff, and Levchin on the cap table. The plan: floating compute nodes powered by ocean waves, cooled by ocean water.
2026.05.07
EU agrees to simplify the AI Act. The transparency clock now runs faster.
EU Council and Parliament reached political agreement on May 7 to simplify AI Act rules. The headline: a tightened 3-month transparency deadline for synthetic content, plus carveouts for SMEs and small mid-caps.
Vercel raises Series E at $3B valuation
Vercel closes $250M Series E. Pace of platform consolidation continues — and the IPO clock starts.
2026.05.06
React 19.2 batches Suspense reveals. Server-render hydration gets quieter.
React 19.2.6 shipped May 6 with type hardening and a notable behaviour change: server-rendered Suspense boundaries are now batched briefly so content reveals together instead of streaming in piecemeal.
China-linked group targeting NATO state, journalists, semiconductor sector
Threat-intel reporting documents UNK_SparkyCarp (GLITTER CARP) targeting academic, political, semiconductor, and legal sector entities across the US, Europe, and Taiwan. Credential phishing is the primary vector.
Anthropic locks in $200B of Google TPU capacity
Anthropic signs a five-year, $200B compute commitment to Google's TPU fleet. The deal reframes the cost basis of frontier model training — and tightens the cloud-vendor knot.
2026.05.05
OpenAI ships GPT-5.5 Instant. Anthropic just overtook them on ARR.
OpenAI announced GPT-5.5 Instant on Monday. The same week, Anthropic's ARR ($30B) eclipsed OpenAI's ($24B) for the first time. The model is the headline; the revenue inversion is the story.
Gemini 3.2 Flash quietly hit the iOS app. Pricing is the news.
Google rolled Gemini 3.2 Flash into the iOS Gemini app and AI Studio with no announcement. $0.25 per million input tokens. Performance reportedly near 3.1 Pro.
US gives federal AI evaluator early access to Google, Microsoft, xAI models
The Center for AI Standards and Innovation has agreements with Google DeepMind, Microsoft, and xAI to evaluate models pre-release. Trump-administration oversight expands. Anthropic's status is unclear.
2026.05.04
AI-generated malware bypassing detection. The trend is now measurable.
AI-generated malware is slipping past traditional signature and behaviour detection. The barrier to technically sophisticated attacks dropped materially in 2025-2026. Defensive playbooks need updating.
Microsoft Build 2026 lands June 2-3. Agent infrastructure is the theme.
Build runs June 2-3 with Satya Nadella's keynote opening day one. Foundry IQ, Fabric IQ, and Azure HorizonDB are already announced. The expected Copilot Studio deep-dive will determine whether Microsoft's agent story is real or just demoware.
Apple's $599 MacBook Neo runs an iPhone chip
The MacBook Neo lands at $599 with an A18 Pro — the first Apple laptop on iPhone silicon. New segment, new compromises, and a clear shot at the Chromebook market.
2026.05.03
2026.05.02
Senate clears CLARITY Act compromise. Stablecoins barred from paying yield.
Senate compromise CLARITY Act language bars stablecoin issuers from paying yield on reserves while allowing activity-based rewards. Banking Committee markup ahead. Presidential signature targeted by summer 2026.
Bitcoin tops $78K. April ETF inflows hit $1.97B, strongest of 2026.
U.S. spot Bitcoin ETFs recorded $1.97B in April inflows — strongest monthly total of 2026 — with BTC clearing $78K. Bitwise projects 100+ new crypto ETFs through 2026.
2026.04.30
2026.04.29
2026.04.27
Microsoft Foundry adds Claude. The OpenAI-only era is over.
Microsoft made Anthropic's Claude models available in Microsoft Foundry on April 27, ending the OpenAI exclusivity that has defined Azure's AI strategy since 2023.
AWS Bedrock adds Claude Opus 4.7 and GPT-5.5
AWS shipped Claude Opus 4.7 in Bedrock and added GPT-5.5 in limited preview. Bedrock AgentCore added a managed harness, CLI, and skills for coding assistants. The frontier-on-AWS stack is now multi-vendor by default.
2026.04.26
2026.04.25
2026.04.24
2026.04.22
Tesla starts Optimus production at Fremont. 1M-unit annual capacity.
Optimus production begins late July or August at Fremont, replacing the Model S/X line. First-gen capacity is 1M robots per year. Musk declined to commit to any 2026 unit target.
Cloudflare ships AI agent sandboxes. Edge compute meets agent runtime.
Cloudflare's Agents Week 2026 shipped Sandboxes — persistent isolated environments with shells, filesystems, and background processes that start in milliseconds. Plus 320 PoPs and a unified inference layer for 14+ model providers.
2026.04.21
2026.04.19
2026.04.15
2026.04.12
2026.04.10
2026.04.06
2026.04.01
SpaceX files confidential S-1. $1.75T target makes it the biggest IPO in history.
SpaceX confidentially filed an S-1 on April 1 targeting a June 2026 listing at $1.75T valuation with a $75B raise. At 95x trailing revenue, the math prices in Starlink, Starship, and absorbed xAI together.
Bun 2-3x ahead of Node on RPS. The runtime question is now serious.
2026 benchmarks put Bun at 30-50K RPS on standard HTTP workloads vs Node's 13-20K. Deno 2 sits in the middle around 22K. With Deno's full Node-compat and Bun's drop-in story, the runtime decision is no longer academic.
2026.03.23
TypeScript 6.0 ships as the last JavaScript-based release
TypeScript 6.0 landed March 23 with strict mode on by default, ESM as default module, and ES5 deprecated. Microsoft has confirmed 6.0 is the final JavaScript-based release before the Go-native 7.0 compiler ships.
Mistral ships Voxtral TTS open-source for nine languages
Mistral released Voxtral TTS as an open-source text-to-speech model on March 23. Supports nine languages including Hindi and Arabic. Designed for enterprise voice agents.
2026.03.16
Nvidia: $1T in Blackwell + Rubin orders through 2027. Groq LPU pushes 35x tokens-per-watt.
Jensen Huang's GTC keynote raised projected Blackwell + Rubin orders from $500B to $1T through 2027. Nvidia also unveiled the Groq 3 LPU — a 35x tokens-per-watt boost when paired with Rubin GPUs.
Nvidia's Vera Rubin platform: 336B transistors, 5x Blackwell inference
Nvidia's Vera Rubin platform centres on the Rubin R100 GPU — 336B transistors, 288GB HBM4, 22 TB/s memory bandwidth. Claimed 5x Blackwell inference at 10x lower cost per token.
Mistral's Leanstral writes machine-checkable proofs in Lean 4
Mistral released Leanstral on March 16 — the first open-source AI agent built specifically for Lean 4 formal proof engineering. Generates code plus a machine-checkable proof of correctness.
