Hacker News

4
complaint Postmortem: TanStack NPM supply-chain compromise

TanStack's NPM packages were compromised in a supply-chain attack, exposing a systemic vulnerability in the NPM ecosystem's trust model. The postmortem details how the compromise occurred and its downstream impact on dependent projects.

↑ 749 💬 276 posted 21:08 UTC
discussion If AI writes your code, why use Python?

Debate about whether language choice matters when AI is generating most of the code, raising questions about the role of developer tooling, language ecosystems, and AI code generation quality across different languages.

↑ 394 💬 401 posted 20:45 UTC

GitHub

5
complaint [BUG] tqdm does not work inside Claude Code terminals.

Claude Code's terminal strips ANSI escape sequences, breaking tqdm progress bar animations so they render as one line per iteration instead of an in-place animated bar; Claude itself cannot fix the issue.

↑ 0 💬 0 posted 00:08 UTC

Lobsters

3
discussion Mythos finds a curl vulnerability

An AI system (Mythos) autonomously found a real exploitable vulnerability in curl, raising discussion about the security implications of AI-assisted offensive vulnerability research and what it means for open-source software maintainers.

↑ 132 💬 55 posted 07:24 UTC
discussion Moving from lsp-mode in GNU Emacs to Eglot

Developer documents friction and trade-offs when migrating from lsp-mode to Eglot in Emacs, indicating ongoing pain points with LSP client configuration and behavior differences between the two implementations.

↑ 25 💬 21 posted 15:35 UTC
discussion Local AI Needs to be the Norm

Argument that reliance on cloud-hosted AI services creates privacy, availability, and cost friction that makes local AI models a necessary default, highlighting pain around data sovereignty and dependency on external API providers.

↑ 25 💬 6 posted 09:09 UTC

Stack Exchange

0

no items

Reddit

0

no items