8.20.25 | Exploited CodeRabbit for RCE, AGENTS.md for coding agents, Copilot broke audit logs without customer notification
Hacker News Highlights20 Aug 2025

8.20.25 | Exploited CodeRabbit for RCE, AGENTS.md for coding agents, Copilot broke audit logs without customer notification

This is a recap of the top 10 posts on Hacker News on Aug 20, 2025.

  • (00:00) - Intro
  • (00:21) - How we exploited CodeRabbit: From simple PR to RCE and write access on 1M repos
  • (01:40) - AGENTS.md – Open format for guiding coding agents
  • (02:58) - Copilot broke audit logs, but Microsoft won't tell customers
  • (04:15) - How to Draw a Space Invader
  • (05:13) - D2 (text to diagram tool) now supports ASCII renders
  • (06:09) - Candle Flame Oscillations as a Clock
  • (07:12) - Custom telescope mount using harmonic drives and ESP32
  • (08:29) - Without the futex, it's futile
  • (09:46) - Emacs as your video-trimming tool
  • (10:59) - Ask HN: Why does the US Visa application website do a port-scan of my network?
  • (12:10) - Outro

How we exploited CodeRabbit: From simple PR to RCE and write access on 1M repos
https://research.kudelskisecurity.com/2025/08/19/how-we-exploited-coderabbit-from-a-simple-pr-to-rce-and-write-access-on-1m-repositories/
https://news.ycombinator.com/item?id=44953032

AGENTS.md – Open format for guiding coding agents
https://agents.md/
https://news.ycombinator.com/item?id=44957443

Copilot broke audit logs, but Microsoft won't tell customers
https://pistachioapp.com/blog/copilot-broke-your-audit-log
https://news.ycombinator.com/item?id=44957454

How to Draw a Space Invader
https://muffinman.io/blog/invaders/
https://news.ycombinator.com/item?id=44956915

D2 (text to diagram tool) now supports ASCII renders
https://d2lang.com/blog/ascii/
https://news.ycombinator.com/item?id=44954524

Candle Flame Oscillations as a Clock
https://cpldcpu.com/2025/08/13/candle-flame-oscillations-as-a-clock/
https://news.ycombinator.com/item?id=44921195

Custom telescope mount using harmonic drives and ESP32
https://www.svendewaerhert.com/blog/telescope-mount/
https://news.ycombinator.com/item?id=44949895

Without the futex, it's futile
https://h4x0r.org/futex/
https://news.ycombinator.com/item?id=44951563

Emacs as your video-trimming tool
https://xenodium.com/emacs-as-your-video-trimming-tool
https://news.ycombinator.com/item?id=44953316

Ask HN: Why does the US Visa application website do a port-scan of my network?
https://news.ycombinator.com/item?id=44959073

Det här avsnittet är hämtat från ett öppet RSS-flöde och publiceras inte av Podme. Det kan innehålla reklam.

Avsnitt(506)

6.15.26 | Firewood Splitting Simulator, Your ePub Is fine, Kage—Shadow websites offline

6.15.26 | Firewood Splitting Simulator, Your ePub Is fine, Kage—Shadow websites offline

This is a recap of the top 10 posts on Hacker News on Jun 15, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:15) - Firewood Splitting ...

15 Juni 13min

6.14.26 | Banned noise infusion from Census Bureau, Every Frame Perfect, Amazon CEO's talks sparked crackdown on Anthropic models

6.14.26 | Banned noise infusion from Census Bureau, Every Frame Perfect, Amazon CEO's talks sparked crackdown on Anthropic models

This is a recap of the top 10 posts on Hacker News on Jun 14, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:18) - Noise infusion bann...

14 Juni 14min

6.13.26 | US government halts Fable 5 and Mythos 5, open source AI must prevail, CRISPR targets "undruggable" cancers

6.13.26 | US government halts Fable 5 and Mythos 5, open source AI must prevail, CRISPR targets "undruggable" cancers

This is a recap of the top 10 posts on Hacker News on Jun 13, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:20) - Statement on US gov...

13 Juni 14min

6.12.26 | Homebrew 6.0.0, human effort needed for attention, AI agent bankrupts operator scanning DN42

6.12.26 | Homebrew 6.0.0, human effort needed for attention, AI agent bankrupts operator scanning DN42

This is a recap of the top 10 posts on Hacker News on Jun 12, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:15) - Show HN: Homebrew 6...

12 Juni 13min

6.11.26 | Building an HTML-first site doubled users overnight, πFS, Eric Ries, "The Lean Startup," "Incorruptible" AMA

6.11.26 | Building an HTML-first site doubled users overnight, πFS, Eric Ries, "The Lean Startup," "Incorruptible" AMA

This is a recap of the top 10 posts on Hacker News on Jun 11, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:20) - Building an HTML-fi...

11 Juni 14min

6.10.26 | Claude Fable 5, old-school graphics, dependency on Claude Fable

6.10.26 | Claude Fable 5, old-school graphics, dependency on Claude Fable

This is a recap of the top 10 posts on Hacker News on Jun 10, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:20) - Claude Fable 5 (02:...

10 Juni 15min

6.9.26 | Performative-UI, Apple’s new AI architecture with Google Gemini, Siri AI

6.9.26 | Performative-UI, Apple’s new AI architecture with Google Gemini, Siri AI

This is a recap of the top 10 posts on Hacker News on Jun 9, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:19) - Show HN: Performativ...

9 Juni 12min

6.8.26 | LLMs threaten software careers, rebuilding after addiction and felony, Linear's speed explained

6.8.26 | LLMs threaten software careers, rebuilding after addiction and felony, Linear's speed explained

This is a recap of the top 10 posts on Hacker News on Jun 8, 2026.Feel free to leave feedback on Github: https://github.com/denolfe/hacker-news-highlights(00:00) - Intro (00:15) - LLMs are eroding my ...

8 Juni 12min

Populärt inom Vetenskap

p3-dystopia
dumma-manniskor
allt-du-velat-veta
medicinvetarna
rss-ufobortom-rimligt-tvivel
svd-nyhetsartiklar
rss-vetenskapsradion-2
rss-vetenskapsradion
kapitalet-en-podd-om-ekonomi
bildningspodden
rss-kriminologerna
vetenskapsradion
rss-ronden
rss-broccolipodden-en-podcast-som-inte-handlar-om-broccoli
sexet
rss-odla
dumforklarat
naturmorgon
halsorevolutionen
intergalaktiskt