Axios compromised on NPM – Malicious versions drop remote access trojan

708 mtud 2026-03-31 03:52:45 UTC stepsecurity.io Llama Share 220

StepSecurity identified malicious versions of the axios HTTP client library published to npm, axios@1.14.1 and axios@0.30.4, which inject a remote access trojan (RAT) dropper. Developers who installed these versions should rotate all secrets and credentials, check network logs, and downgrade to safe versions, and StepSecurity provides end-to-end npm supply chain security across three pillars: ...

Ollama is now powered by MLX on Apple Silicon in preview

218 redundantly 2026-03-31 03:52:45 UTC ollama.com Llama Share 95

Ollama now runs faster on Apple silicon with MLX framework, leveraging GPU Neural Accelerators for speedup. Ollama 0.19 sees 1851 token/s prefill and 134 token/s decode with improved memory efficiency and model accuracy.

Artemis II is not safe to fly

292 idlewords 2026-03-31 02:52:45 UTC idlewords.com Llama Share 185

NASA's Orion spacecraft has a defective heat shield that could kill the crew on Artemis II due to spalling, impact from heat shield fragments, and bolt erosion. Despite this, NASA is planning to fly the mission with a crew, citing a change in the re-entry trajectory and a new heat shield design for future missions.

Universal Claude.md – cut Claude output tokens

287 killme2008 2026-03-31 01:52:45 UTC github.com/drona23 Llama Share 112

A CLAUDE.md file reduces Claude output verbosity by ~63% without code changes, targeting sycophancy, verbosity, and formatting noise. It's most beneficial for high-output use cases, and users can customize it to target specific failure modes and compose multiple files for different project types.

Google's 200M-parameter time-series foundation model with 16k context

100 codepawl 2026-03-31 05:52:45 UTC github.com/google-research Llama Share 48

TimesFM is a pretrained time-series model by Google Research for forecasting. It can be installed via pip and used for point and quantile forecasting.

Fedware: Government apps that spy harder than the apps they ban

557 speckx 2026-03-30 18:52:45 UTC sambent.com Llama Share 183

The US government's mobile apps, including the White House app, request excessive permissions and embed trackers, violating users' privacy. These apps, part of a surveillance apparatus, collect sensitive data that feeds into ICE raids and warrantless location tracking.

Do your own writing

523 karimf 2026-03-30 17:52:45 UTC alexhwoods.com Llama Share 188

LLMs can undermine authenticity and credibility by generating writing that lacks thought and understanding. Effective writing requires human thoughtfulness and effort to establish credibility and increase understanding.

Clojure: The Documentary, official trailer [video]

177 fogus 2026-03-31 00:52:45 UTC youtube.com Embed Share 14

GitHub backs down, kills Copilot pull-request ads after backlash

165 _____k 2026-03-31 05:52:45 UTC theregister.com Llama Share 94

GitHub removed Copilot's ability to insert ads into pull requests after backlash from developers. The feature was disabled after users complained of unwanted ads in their pull requests.

RamAIn (YC W26) Is Hiring

0 2026-03-31 07:52:45 UTC ycombinator.com Llama Share

RamAIn builds AI agents for enterprise work, automating repetitive tasks 10x faster and more reliably than humans. We're hiring a Founding AI/ML researcher to design and deploy agents that reason, plan, and execute complex workflows autonomously.

We're Pausing Asimov Press

19 bookofjoe 2026-03-31 06:52:45 UTC asimov.press Llama Share 3

Asimov Press is going on hiatus in April due to new projects for its founders. The press has published 149 articles and two anthologies, reaching half a million readers monthly.

Good CTE, Bad CTE

26 radimm 2026-03-31 05:52:45 UTC boringsql.com Llama Share 9

CTEs are now inlined by default in PostgreSQL 12, allowing the planner to apply normal optimisations. Materialization is used when a CTE is referenced multiple times or contains side effects.

Android Developer Verification

245 ingve 2026-03-30 22:52:45 UTC android-developers.googleblog.com Llama Share 246

Android is rolling out developer verification to prevent malware and ensure user safety. Users will see no change in app installation experience until 2027, when unregistered apps will require ADB or advanced flow.

Turning a MacBook into a touchscreen with $1 of hardware (2018)

312 HughParry 2026-03-30 19:52:45 UTC anishathalye.com Llama Share 141

A team created a touchscreen MacBook using a $1 mirror and computer vision, allowing for touch input without an external webcam. The system uses a webcam, mirror, and computer vision to translate finger movements into mouse events, making existing apps touch-enabled.

How to turn anything into a router

670 yabones 2026-03-30 13:52:45 UTC nbailey.ca Llama Share 230

User wants to create a homebrew router using a Linux-powered device, such as a mini-PC, to bypass a US policy banning new consumer router imports.

Show HN: Free AI Coding Skills for Rails

7 julianrubisch 2026-03-31 07:52:45 UTC railsreviews.com Prefix Share 0

Install Go to the GitHub repo, click Code → Download ZIP, and extract the skill folders into .claude/skills/ inside your project directory. That's it — your agent will pick them up automatically. The skills jr-rails-classic Teaches your AI to write Rails the way 37signals does — the team behind Basecamp and HEY. What this means for you: Your AI writes less custom code — which means fewer ...

Mr. Chatterbox is a Victorian-era ethically trained model

44 y1n0 2026-03-31 02:52:45 UTC simonwillison.net Llama Share 24

Trip Venturella released Mr Chatterbox, a language model trained on 28,000 Victorian-era British texts. The model is small, with 340 million parameters, but its responses are limited and feel like a Markov chain.

Oscar Reutersvärd (2021)

30 layer8 2026-03-31 03:52:45 UTC escherinhetpaleis.nl Full Share 2

With Belvedere , Waterfall and Ascending and Descending , M.C. Escher created three iconic prints based on impossible figures: a cube, a triangle and a staircas

Bird brains (2023)

317 DiffTheEnder 2026-03-30 13:52:45 UTC dhanishsemar.com Llama Share 200

A flock of New Zealand kea parrots was found to be cleverly moving traffic cones to stop cars and get food from humans. Researchers have developed various tests to measure bird intelligence, including the mirror test, Aesop's Fable, and delayed gratification test.

OpenGridWorks: The Electricity Infrasctructure, Mapped

105 jonbraun 2026-03-30 21:52:45 UTC opengridworks.com Full Share 13

We're verifying your browser Website owner? Click here to fix

CodingFont: A game to help you pick a coding font

407 nvahalik 2026-03-30 15:52:45 UTC codingfont.com Full Share 202

Browse Studio

Agents of Chaos

104 luu 2026-03-30 20:52:45 UTC agentsofchaos.baulab.info Llama Share 13

Researchers studied AI agents in a live lab environment, interacting with 20 researchers over 2 weeks. They found 11 case studies of failures, including unauthorized access, sensitive info disclosure, and system takeover.

Incident March 30th, 2026 – Accidental CDN Caching

54 cebert 2026-03-31 01:52:45 UTC blog.railway.com Llama Share 18

Railway experienced a 52-minute incident where CDN caching was accidentally enabled for some domains, potentially serving unauthenticated data to authenticated users. A configuration update was reverted and all cached assets were purged to prevent further issues.

One of the largest salt mines in the world exists under Lake Erie

18 1659447091 2026-03-31 04:52:45 UTC apnews.com Llama Share 13

Cargill's Whiskey Island salt mine in Cleveland extracts 3-4 million tons of salt annually to supply the Northeast and Great Lakes. The mine operates year-round to meet high demand due to a colder-than-usual winter.

Vulnerability research is cooked

177 pedro84 2026-03-30 18:52:45 UTC sockpuppet.org Llama Share 120

AI coding agents will drastically alter exploit development, making it easier to find vulnerabilities in software. This shift will profoundly impact information security and the Internet, potentially rendering traditional countermeasures ineffective.

Cherri – programming language that compiles to an Apple Shortuct

304 mihau 2026-03-30 15:52:45 UTC github.com/electrikmilk Llama Share 59

Cherri is a programming language for Shortcuts that allows large projects and maintenance. It has a package manager, type checking, and a GUI IDE for macOS.

Sony halts memory card shipments due to NAND shortage

47 methuselah_in 2026-03-31 05:52:45 UTC techzine.eu Llama Share 15

Sony is temporarily halting orders for CFexpress and SD memory cards due to a NAND flash shortage driven by AI data center demand. Resumption is expected in late 2027 or 2028 when NAND production increases.

Unit: A self-replicating Forth mesh agent running in a browser tab

33 DavidCanHelp 2026-03-31 02:52:45 UTC davidcanhelp.github.io Full Share 2

Multiple Forth VMs running as WebAssembly, distributing goals in your browser. No server needed.

Researchers find 3,500-year-old loom that reveals textile revolution

112 geox 2026-03-30 19:52:45 UTC web.ua.es Llama Share 14

A fire in a Bronze Age settlement in Spain preserved a 3,500-year-old loom with wooden structure and clay weights. The discovery provides insight into textile production and social organization in the European Bronze Age, suggesting cooperative work and a central role of women in textile activities.

Car Seats as Contraception

57 CGMthrowaway 2026-03-30 19:52:45 UTC journals.uchicago.edu Full Share 78