Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: github Clear Filter

Supply-chain attacks on open source software are getting out of hand

arstechnica.com Unknown 2025-12-23 05:50:37

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious packages being pushed to unsuspecting users. The latest target, according to security firm Socket, is JavaScript code available on repository npm. A total of 10 packages available from the npm page belonging to global talent agency Toptal contained malware and were downloaded by roughly 5,000 users be

Topics: attack github npm packages publishing
Read More
Shop Amazon

Open source repositories are seeing a rash of supply-chain attacks

arstechnica.com Unknown 2025-12-23 11:50:37

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious packages being pushed to unsuspecting users. The latest target, according to security firm Socket, is JavaScript code available on repository npm. A total of 10 packages available from the npm page belonging to global talent agency Toptal contained malware and were downloaded by roughly 5,000 users be

Topics: attack github npm packages socket
Read More
Shop Amazon

GitHub's AI-powered Spark lets you build apps using natural language - here's how to access it

zdnet.com Webb Wright 2025-12-25 16:32:26

Bloomberg / Contributor/Getty Software development company GitHub's AI-powered app-building platform Spark is now available for public preview to Copilot+ Pro subscribers, the company said Wednesday. First unveiled at GitHub's annual Universe conference in October, Spark allows users to design and launch "micro apps," or "sparks," through natural language prompts. For example, a developer might instruct the system to build an app that summarizes reviews of and provides personalized recommendat

Topics: ai app copilot github spark
Read More
Shop Amazon

Hackers breach Toptal GitHub account, publish malicious npm packages

bleepingcomputer.com Unknown 2025-12-26 16:26:04

Hackers compromised Toptal's GitHub organization account and used their access to publish ten malicious packages on the Node Package Manager (NPM) index. The packages included data-stealing code that collected GitHub authentication tokens and then wiped the victims' systems. Toptal is a freelance talent marketplace that connects companies with software developers, designers, and finance experts. The company also maintains internal developer tools and design systems, most notably Picasso, which

Topics: github malicious packages picasso toptal
Read More
Shop Amazon

VectorDB bench now support S3Vector

news.ycombinator.com Unknown 2025-12-27 06:39:52

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community. By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails. Already on GitHub? Sign in to your account

Topics: account clicking community github sign
Read More
Shop Amazon

Reverse Engineering the GHA Cache to Improve Performance

news.ycombinator.com Unknown 2025-12-29 02:04:27

This article walks you through how to use Depot's API within your own code to set up projects and run your Docker builds as a service on Depot's infrastructure. We recently announced our new product, Depot-hosted GitHub Actions runners. Our runners bring an extra improvement in cache speed that's no longer limited to our accelerated Docker builds. We're excited to be bringing faster caching to all kinds of GitHub Actions workloads. As we were building our runners, we learned a lot about the un

Topics: actions cache depot github runners
Read More
Shop Amazon

Reverse engineering GitHub Actions cache to make it fast

news.ycombinator.com Unknown 2025-12-29 11:17:43

Before this work began, we already had a faster alternative to Github Actions cache. Our approach was different: we forked each of the popular first-party actions that depended on Actions cache to point to our faster, colocated cache. But my coworkers weren’t satisfied with that solution, since it required users to change a single line of code. Apart from the user experience, maintaining these forks steadily turned into a nightmare for us. We kept at it for a while, but eventually reached an in

Topics: 06 actions cache github proxy
Read More
Shop Amazon

Show HN: Header-only GIF decoder in pure C – no malloc, easy to use

news.ycombinator.com Unknown 2025-12-30 03:36:33

I built a lightweight GIF decoder in pure C, ideal for embedded or performance-critical environments. It’s header-only, zero dynamic memory allocations, and fully platform-independent. Supports both static and animated GIFs, with turbo and safe decoding modes. Works great on microcontrollers, IoT devices, and anything with a framebuffer. Would love feedback or ideas where this could be useful. Github: https://github.com/Ferki-git-creator/TurboStitchGIF-HeaderOn...

Topics: allocations animated built creator github
Read More
Shop Amazon

GitHub abused to distribute payloads on behalf of malware-as-a-service

arstechnica.com Unknown 2026-01-07 11:16:09

Researchers from Cisco’s Talos security team have uncovered a malware-as-a-service operator that used public GitHub accounts as a channel for distributing an assortment of malicious software to targets. The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise networks that rely on the code repository for the software they develop. GitHub removed the three accounts that hosted the malicious payloads shortly after being notified

Topics: emmenhtal github malicious malware talos
Read More
Shop Amazon

Apple's MLX adding CUDA support

news.ycombinator.com Unknown 2026-01-15 20:40:30

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community. By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails. Already on GitHub? Sign in to your account

Topics: account clicking community github sign
Read More
Shop Amazon

Switching to Claude Code and VSCode Inside Docker

news.ycombinator.com Unknown 2026-01-16 04:11:24

Last night I finished a transition from my old AI coding setup I've been using for a while to running Claude Code in Docker using VSCode's "Dev Container" feature. In this post I lay out a few of my thoughts on why I wanted to switch to something in the first place, and also a short guide for those who want to do the same. If you are here just for the guide + code (a tiny single file), here it is: https://github.com/tim-sha256/claude-in-docker 🥺 Important note! I'm not a professional vibe

Topics: access claude code github use
Read More
Shop Amazon

Proposal: GUI-first, text-based mechanical CAD inspired by software engineering

news.ycombinator.com Unknown 2026-01-21 21:37:00

Most mechanical CAD tools (SolidWorks, Fusion, FreeCAD) still lock all modeling into opaque binary files. That makes it hard to track changes, collaborate with Git, or automate builds. I’ve written a proposal for an alternative paradigm: - GUI-first, like KiCad - visual modeling is the default - Text-based source files (YAML/JSON) — readable, diffable, Git-friendly - Separation of source and result - .step, .stl and previews are built artifacts - Parametric logic is explicit - slot width =

Topics: cad files git github modeling
Read More
Shop Amazon

Gecode is an open source C++ toolkit for developing constraint-based systems (2019)

news.ycombinator.com Unknown 2026-01-30 21:43:41

2019-09-10 MPG Sources on GitHub The sources for Modeling and Programming with Gecode are now available on GitHub. 2019-04-12 Gecode 6.2.0 Gecode 6.2.0 has been released on April 12th, 2019 (Changelog). 2019-02-14 Gecode 6.1.1 Gecode 6.1.1 has been released on February 14th, 2019 (Changelog). 2018-10-19 Gecode 6.1.0 Gecode 6.1.0 has been released on October 19th, 2018 (Changelog).

Topics: 2019 changelog gecode github released
Read More
Shop Amazon

Gecode is an open source C++ toolkit for developing constraint-based systems

news.ycombinator.com Unknown 2026-01-31 03:43:41

2019-09-10 MPG Sources on GitHub The sources for Modeling and Programming with Gecode are now available on GitHub. 2019-04-12 Gecode 6.2.0 Gecode 6.2.0 has been released on April 12th, 2019 (Changelog). 2019-02-14 Gecode 6.1.1 Gecode 6.1.1 has been released on February 14th, 2019 (Changelog). 2018-10-19 Gecode 6.1.0 Gecode 6.1.0 has been released on October 19th, 2018 (Changelog).

Topics: 2019 changelog gecode github released
Read More
Shop Amazon

Developing with GitHub Copilot Agent Mode and MCP

news.ycombinator.com Unknown 2026-01-29 23:47:28

I'm always looking for ways to work more efficiently and deliver better code faster. Recently, The GitHub Copilot Agent Mode in combination with Model Context Protocol (MCP) has transformed my development workflow. The magic starts with Customizing AI responses in VS Code. Instead of repeatedly explaining my preferences to the AI, I can now define: Custom instructions for consistent coding practices for consistent coding practices Custom prompts for reusable task templates for reusable task

Topics: chat copilot github prompt use
Read More
Shop Amazon

The uncertain future of coding careers and why I'm still hopeful

news.ycombinator.com Jonathan Hoyt 2026-02-05 15:45:27

The Uncertain Future of Coding Careers and Why I'm Still Hopeful A friend of mine, bright, driven, and relatively new to programming, asked me a heavy question the other day. “Did I make a mistake? Did I choose the right career?” The question hung in the air. It wasn’t born from a bad day or a frustrating bug. It came from a much deeper place of anxiety, one that I suspect many in our industry are feeling right now. They saw recent waves of layoffs, they read the headlines about Artificial Int

Topics: ai copilot github layoffs years
Read More
Shop Amazon

I scanned all of GitHub's "oops commits" for leaked secrets

news.ycombinator.com Unknown 2026-02-06 03:44:19

TL;DR GitHub Archive logs every public commit, even the ones developers try to delete. Force pushes often cover up mistakes like leaked credentials by rewriting Git history. GitHub keeps these dangling commits, from what we can tell, forever. In the archive, they show up as “zero-commit” PushEvents . I scanned every force push event since 2020 and uncovered secrets worth $25k in bug bounties. Together with Truffle Security, we're open sourcing a new tool to scan your own GitHub organization for

Topics: commit commits deleted github secrets
Read More
Shop Amazon

The Uncertain Future of Coding Careers and Why I'm Still Hopeful

news.ycombinator.com Jonathan Hoyt 2026-02-06 03:45:27

The Uncertain Future of Coding Careers and Why I'm Still Hopeful A friend of mine, bright, driven, and relatively new to programming, asked me a heavy question the other day. “Did I make a mistake? Did I choose the right career?” The question hung in the air. It wasn’t born from a bad day or a frustrating bug. It came from a much deeper place of anxiety, one that I suspect many in our industry are feeling right now. They saw recent waves of layoffs, they read the headlines about Artificial Int

Topics: ai copilot github layoffs years
Read More
Shop Amazon

Show HN: A modern C++20 AI SDK (GPT‑4o, Claude 3.5, tool‑calling)

news.ycombinator.com Unknown 2026-02-05 15:52:42

Hi all, I’m hacking on new features for the ClickHouse native client and wanted the same “just call the model” ergonomics JavaScript and Python now enjoy. It didn’t exist for modern C++, so I wrote one. ai‑sdk‑cpp (Apache‑2.0) gives you: - Unified calls to OpenAI (GPT‑4o) and Anthropic (Claude 3.5) with a single C++20 API. - Streaming, multi‑turn chat, error handling—all std::optional/std::variant, no macros. - Tool calling (function‑calling) so the model can hit real APIs; sync or async, run

Topics: ai com github https sdk
Read More
Shop Amazon

Ask HN: Who is hiring? (July 2025)

news.ycombinator.com Unknown 2026-02-09 10:01:36

Please state the location and include REMOTE for remote work, REMOTE (US) or similar if the country is restricted, and ONSITE when remote work isan option. Please only post if you personally are part of the hiring company—no recruiting firms or job boards. One post per company. If it isn't a household name, explain what your company does. Please only post if you are actively filling a position and are committed to responding to applicants. Commenters: please don't reply to job posts to compla

Topics: com github https io remote
Read More
Shop Amazon

Microsoft open-sources VS Code Copilot Chat extension on GitHub

bleepingcomputer.com Unknown 2026-02-09 21:11:26

Microsoft has released the source code for the GitHub Copilot Chat extension for VS Code under the MIT license. This provides the community access to the full implementation of the chat-based coding assistant, including the implementation of “agent mode,” what contextual data is sent to large language models (LLMs), and the design of system prompts. The GitHub repository hosting the code also details telemetry collection mechanisms, addressing long-standing questions about data transparency in

Topics: ai chat code extension github
Read More
Shop Amazon

Copilot Chat in VS Code is now open source

news.ycombinator.com Unknown 2026-02-15 04:06:43

GitHub Copilot - Your AI peer programmer GitHub Copilot is an AI peer programming tool that helps you write code faster and smarter. GitHub Copilot adapts to your unique needs allowing you to select the best model for your project, customize chat responses with custom instructions, and utilize agent mode for AI-powered, seamlessly integrated peer programming sessions. Sign up for GitHub Copilot Free! When you install Copilot in Visual Studio Code, you get two extensions: GitHub Copilot - Pr

Topics: chat code copilot github use
Read More
Shop Amazon

Malware-Laced GitHub Repos Found Masquerading as Developer Tools

news.ycombinator.com Unknown 2026-03-01 11:03:23

(English translation below) Klarrio ontdekt grootschalig malware-netwerk op GitHub Klarrio heeft onlangs een belangrijke ontdekking gedaan: Het gaat om een omvangrijk malware-netwerk op open source-platform GitHub dat de CTO van Klarrio, Bruno De Bus, dankzij eigen onderzoek heeft weten bloot te leggen. Het is al langer bekend dat er door middel van gekloonde Open-Source GitHub repositories pogingen gedaan worden om malware te installeren voor nietsvermoedende gebruikers. Maar de schaal waaro

Topics: een github icu klarrio malware
Read More
Shop Amazon

CI/CD Observability with OpenTelemetry Step by Step Guide

news.ycombinator.com Unknown 2026-03-08 16:42:50

In the fast-paced world of CI/CD, understanding the performance and behaviour of your pipelines is crucial. GitHub Actions has become a popular choice for automating builds and deployments, but anyone who's debugged a flaky workflow or long-running job knows how challenging it can be to get visibility into what's happening under the hood. We usually rely on build logs, timing data, or guesswork when something goes wrong. Wouldn't it be nice to trace a pipeline run step-by-step, or have metrics o

Topics: collector github metrics receiver traces
Read More
Shop Amazon

Congratulations on creating the one billionth repository on GitHub

news.ycombinator.com Unknown 2026-03-17 04:37:04

We wanted to congratulate you on creating the one billionth repository on GitHub! ➜ curl -s https://api.github.com/repositories/1000000000 { "id": 1000000000, "node_id": "R_kgDOO5rKAA", "name": "shit", "full_name": "AasishPokhrel/shit", We really hope you have the opportunity to build some great 💩 Have a great day! ❤️

Topics: 1000000000 build github great shit
Read More
Shop Amazon

Viral PS3 emulator for Android has already vanished alongside its shady developer

androidauthority.com Unknown 2025-11-10 02:01:18

TL;DR The aPS3e PS3 emulator has been removed from GitHub, possibly because of copyright and licensing issues. The developer Aenu’s account also seems to have been removed. aPS3e had quickly risen to fame in recent days for bringing quality PS3 emulation to Android. In a sudden and somewhat expected move, the aPS3e emulator, which had briefly stirred up excitement among Android gamers hoping to emulate PS3 titles on their devices, has disappeared from GitHub. Developed by a developer known a

Topics: aps3e emulator github ps3 source
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3596 apple 2992 new 2371 google 1995 content 1717
Popular
like 1484 company 1412 pro 1309 iphone 1138 app 1118 zdnet 1098 said 1048 data 1040 does 900 reviews 886
Emerging
editorial 865 amazon 854 game 804 samsung 768 phone 758 pixel 755 android 738 just 714 available 681 users 680
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]