No one owes you supply-chain security (purplesyringa.moe)
Brocards for vulnerability triage (blog.yossarian.net)
Writing design docs (blog.ceejbot.com)
Bringing Rust to the Pixel Baseband (security.googleblog.com)
fakecloud – Free, open-source AWS emulator (LocalStack alternative) (github.com)
Replacing Lenovo’s WWAN Unlock Blob with a 100-Line Bash Script (blog.hofstede.it)
Investigating Split Locks on x86-64 (chipsandcheese.com)
High-Level Rust: Getting 80% of the Benefits with 20% of the Pain (hamy.xyz)
EU''s EES fingerprint and photo travel rules come into force (www.bbc.com)
Git fixup is magic (and Magit is too) (arialdomartini.github.io)
Using Wireshark to reverse-engineer a USB device (crescentro.se)
Analyzing KDE Project Health With git (pointieststick.com)
How passive radar works (www.passiveradar.com)
SQLite 3.53.0 (sqlite.org)
Windows Defender is being used to hack Windows (hackingpassion.com)
I Just Want Simple S3 (blog.feld.me)
Why Do We Tell Ourselves Scary Stories About AI? (www.quantamagazine.org)
Linux Kernel AI Coding Assistants Policy (github.com)
Write less code, be more responsible (blog.orhun.dev)
How Rust is susceptible to supply chain attacks and what we can do to mitigate the inevitable (kerkour.com)
20 Years on AWS and Never Not My Job (www.daemonology.net)
With AI, you barely need a frontend framework (dlants.me)
Advanced Mac Substitute (www.v68k.org)
A bet on whether ML-KEM-768 or X25519 will break first (github.com)
In defense of GitHub''s poor uptime (evanhahn.com)
The difficulty of making sure your website is broken (letsencrypt.org)
Meet Kiki - an array language (eli.li)
Put your SSH keys in your TPM chip (raymii.org)
Ursa - a new Iceberg-first storage engine for Kafka (topicpartition.io)
Capsicum vs seccomp: Process Sandboxing (vivianvoss.net)
The Honest Climate Case for AI (dev.to)
Selective Test Execution at Stripe: Fast CI for a 50M-line Ruby monorepo (stripe.dev)
Why Aren''t We uv Yet? (aleyan.com)
Git Repositories as a Module System (alnewkirk.com)
Total.js RCE gadgets all around (criticalthinkingpodcast.github.io)
watgo - a WebAssembly Toolkit for Go - Eli Bendersky''s website (eli.thegreenplace.net)
Installing every* Firefox extension (jack.cab)
Protecting Cookies with Device Bound Session Credentials (security.googleblog.com)
Favorite programmer website? (lobste.rs)
Repository Pattern with Hygienic Macros in Scheme – Lisp (jointhefreeworld.org)
Protecting rubygems.org from the outside in: DoS prevention and compromised passwords (blog.rubygems.org)
The acyclic e-graph: Cranelift''s mid-end optimizer (cfallin.org)
ELF & Dynamic Linking (fmdlc.github.io)
maki - the efficient coder (AI agent) (maki.sh)
Installing OpenBSD on the Pomera DM250{,XY?} (jcs.org)
Incremental compilation with LLVM (ziglang.org)
How do we tell truths that might hurt? (www.cs.virginia.edu)
Yacc is Not Dead (2010) (research.swtch.com)
My Login Shell in Assembly (isene.org)
preact-react-reconciler: turn preact into a react reconciler (github.com)
Fixing AMDGPU''s VRAM management for low-end GPUs (pixelcluster.github.io)
Elastic tabstops (nick-gravgaard.com)
Running NixOS Micro VMs on MacOS (abhinavsarkar.net)
Entering The Architecture Age (blog.mempko.com)
Wastrel milestone: full hoot support, with generational gc as a treat (wingolog.org)
I made a productivity device for less than 50 bucks (thelibre.news)
You can absolutely have an RSS dependent website in 2026 (matduggan.com)
How NASA Built Artemis II’s Fault-Tolerant Computer (cacm.acm.org)
Let’s talk about LLMs (www.b-list.org)
But what about K? (tony-zorman.com)
TIL that Helix and Typst are a match made in heaven (ergaster.org)
Embedding EYG in Gleam programs (github.com)
The Internet needs an antibotty immune system, stat (anil.recoil.org)
What are your pgoramming "hunches" you haven''t yet investigated? (lobste.rs)
How Much Linear Memory Access Is Enough? (solidean.com)
Understanding Traceroute (tech.stonecharioteer.com)
Runahead Execution vs. Conventional Data Prefetching in the IBM POWER6 Microprocessor (2010) (pages.cs.wisc.edu)
WikiMapped – 1.3M geolocated Wikipedia articles on an interactive world map (wikimapped.mukul-mehta.in)
Post-Quantum Cryptography for the PHP Community (paragonie.com)
The AI Great Leap Forward (leehanchung.github.io)
Keychron’s hardware source (github.com)
Understanding Pin (for C and C Developers) (2019) (dpzmick.com)
Myth Engine Architecture: Building an SSA-Based Declarative Render Graph (github.com)
Flatpak: Complete Sandbox Escape (github.com)
How Pizza Tycoon simulated traffic on a 25 MHz CPU (pizzalegacy.nl)
Keychron-Keyboards-Hardware-Design: All the industrial design files for Keychron keyboards and mice (github.com)
Giving LLMs a Formal Reasoning Engine for Code Analysis (yogthos.net)
And now for something completely different: IngoDB (blog.nyrkio.com)
Little Snitch for Linux (obdev.at)
Zsh: select generated files with (om[1]) glob qualifiers (adamj.eu)
Tailslayer: A technique for reducing tail latency in DRAM operations (www.youtube.com)
AWS Engineer Reports PostgreSQL Performance Halved By Linux 7.0, But A Fix May Not Be Easy (www.phoronix.com)
Borrow-checking surprises (www.scattered-thoughts.net)
tailslayer: Library for reducing tail latency in RAM reads (github.com)
Porting Mac OS X to the Nintendo Wii (bryankeller.github.io)
Verifying human authorship with human.json (joelchrono.xyz)
Open source security at Astral (astral.sh)
On Vinyl Cache and Varnish Cache (vinyl-cache.org)
The Future of Everything is Lies, I Guess (aphyr.com)
Audio Reactive LED Strips Are Diabolically Hard (scottlawsonbc.com)
Full Text Search with IndexedDB (blog.jmp.chat)
When the compiler lies: breaking memory safety in safe Go (ciolek.dev)
Dadroit V Web – Fast & Private JSON Viewer (dadroit.com)
Under the hood of MDN''s new frontend (developer.mozilla.org)
stricline: A meta-framework to help you easily build robust CLI apps with stricli (npmx.dev)
Applying "Programming Without Pointers" to an mbox indexer using Zig (simonhartcher.com)
The Apple Charging Situation (randsinrepose.com)
1SubML: Plan vs Reality (blog.polybdenum.com)
[RFC] JSIR: A High-Level IR for JavaScript (discourse.llvm.org)
Nix security advisory: Privilege escalation via symlink following during FOD output registration (discourse.nixos.org)
All of the String types (lambdalemon.gay)
Blackholing My Email (www.johnsto.co.uk)
Cloudflare targets 2029 for full post-quantum security (blog.cloudflare.com)
S3 Files and the changing face of S3 (www.allthingsdistributed.com)
No-JS web IRC client that uses forms and a persistent HTTP connection (github.com)
Project Glasswing: Securing critical software for the AI era (www.anthropic.com)
Assessing Claude Mythos Preview’s cybersecurity capabilities (red.anthropic.com)
The Last Quiet Thing (www.terrygodier.com)
another memory corruption case (trofi.github.io)
The Great Nix Flake Check (goldstein.lol)
Wet Sidewalks and Odd Numbers (philcrissman.net)
Hazmat: OS-level containment for AI coding agents on macOS (github.com)
Nash Equilibrium for Terminal Maneuvers (r6.ca)
defuddle: Get the main content of any page as Markdown (github.com)
Two Years of Valkey (redmonk.com)
Add CONCURRENTLY option to REPACK (PostgreSQL) (github.com)
What text editor (cli or gui) are you using for writing non-code? (lobste.rs)
the value of a performance oracle (wingolog.org)
A Conversation with Paul Masurel, Creator of Tantivy (www.paradedb.com)
Plan 9 is a Uniquely Complete Operating System (posixcafe.org)
What next for the compute crunch? (martinalderson.com)
Terragrunt v1.0.0 (github.com)
Floating point from scratch: Hard Mode (essenceia.github.io)
OpenSSH begins warning for non-PQC key exchanges (www.openssh.com)
The Cult Of Vibe Coding Is Insane (bramcohen.com)
The pinnacle of enshittification, or Large Language Models (blogs.gentoo.org)
Death of the IDE? (addyo.substack.com)
Oatmeal - The Seed Beneath the Snow (eli.li)
Multi-agentic Software Development is a Distributed Systems Problem (AGI can''t save you) (kirancodes.me)
Optimising a Pipelined RISC-V Core: From Naive Pipeline to Near-Superscalar Performance (mummanajagadeesh.github.io)
Clojure on Fennel part one: Persistent Data Structures (andreyor.st)
Retargeting JIT compilers by using C-compiler generated executable code (2004) (www.cs.arizona.edu)
We Found a Ticking Time Bomb in macOS TCP Networking — It Detonates After Exactly 49 Days (photon.codes)
clmystery: A command-line murder mystery (github.com)
The Downfall and Enshittification of Microsoft in 2026 (caio.ca)
BrowserStack local leaking private key (infosec.exchange)
Git’s Magic Files (nesbitt.io)
Returning to work after a year-long illness - what AI tools & workflows are you using nowadays? (lobste.rs)
Accumulated Test Vectors (words.filippo.io)
Someone good at CSS help, my website design is dying (ahti.space)
A Cryptography Engineer’s Perspective on Quantum Computing Timelines (words.filippo.io)
OverlayFS for RedoxOS (scientiac.space)
I Tried Vibing an RSS Reader and My Dreams Did Not Come True (blog.jim-nielsen.com)
Building a DIY OpenClaw (ben.page)
Using Discord on Plan 9 (pmikkelsen.com)
A real-world case of property-based verification (ochagavia.nl)
Growing Yggdrasil, the World Tree, with Ash (www.newresalhaider.com)
The machines are fine. I''m worried about us (ergosphere.blog)
Introducing profiling-explorer (adamj.eu)
Someone at BrowserStack is Leaking Users'' Email Address (shkspr.mobi)
An Elm-inspired language that compiles to Go, Hindley-Milner types, server-driven UI, single binary output (github.com)
The Free Market Lie: Why Switzerland Has 25 Gbit Internet and America Doesn''t (sschueller.github.io)
Easters - an adventofcode-like challenge for easter (easters.dev)
It has never been about code (www.ufried.com)
dev.css: tiny, simple, classless CSS framework inspired by new.css (tangled.org)
Should developer tooling be reinvented for AI-assisted programming? (lobste.rs)
Gabe Newell Is Shitting Yacht Money into Flatpak and You''re Still Arguing about Init Systems (s3kshun8.games)
Make your own ColecoVision at home, part 5 (www.leadedsolder.com)
Loading... [13 kB] (maurycyz.com)
Best Paper Awards in Computer Science over the past 30 years (jeffhuang.com)
Endian wars and anti-portability (dalmatian.life)
Turn-Based Collaboration: AI Agents with Multiple Personalities (alnewkirk.com)
Agentic coding at Clickhouse (clickhouse.com)
Parsing AsciiDoc in Prolog (github.com)
Can We Measure Software Slop? An Experiment (pscanf.com)
unnix: Reproducible Nix environments without installing Nix (github.com)
neomd: A minimal email TUI where you read with Markdown and write in Neovim (github.com)
(Artificial) Intelligence saturation and the future of work (www.brookings.edu)
Stamp It! All Programs Must Report Their Version (michael.stapelberg.ch)
Components of A Coding Agent (magazine.sebastianraschka.com)
Mvidia: A game where you build a GPU (jaso1024.com)
Eight years of wanting, three months of building with AI (lalitm.com)
Building a dry-run mode for the OpenTelemetry Collector (simme.dev)
DPI bypass using eBPF sock_ops and fake TLS ClientHello injection (github.com)
A tail-call interpreter in (nightly) Rust (www.mattkeeter.com)
Building slogbox (alexrios.me)
Roogle: A Rust API search engine (github.com)
Sam text editor tips (9lab.org)
Rethinking open source mentorship in the AI era (github.blog)
Writing Lisp is AI Resistant and I''m Sad — Dan''s Musings (blog.djhaskin.com)
If you thought the speed of writing code was your problem - you have bigger problems (debuggingleadership.com)
setting up the atkey.pro usb fingerprint reader in linux -- this should also work for any fido2 u2p usb fingerprint reader; maybe even those 20 ones (gist.github.com)
What are Senders Good For, Anyway? (2024) (ericniebler.com)
Making Gamedev Tooling For Windows 3.1 in Turbo C (www.youtube.com)
Value numbering (bernsteinbear.com)
The Cathedral, the Bazaar, and the Winchester Mystery House (www.dbreunig.com)
Mathematical methods and human thought in the age of AI (arxiv.org)
CVA6-CFI: A First Glance at RISC-V Control-Flow Integrity Extensions (arxiv.org)
The nvim-treesitter repository was archived (github.com)
What kind of productivity tools do you use, if any? (lobste.rs)
Where can I find the old internet? (lobste.rs)
Days Since Openclaw CVE (days-since-openclaw-cve.com)
Embarrassingly Simple Self-Distillation Improves Code Generation (arxiv.org)
Absurd In Production (lucumr.pocoo.org)
Why Lean? (leodemoura.github.io)
Legibility is Ruining You (jimmyhmiller.com)
The Feature That Has Never Worked · A broken auto-live poller, and what perceived urgency does to Claude Code (christophermeiklejohn.com)
Your code is worthless (nathanielfishel.substack.com)
Functional Algorithms, Verified (www21.in.tum.de)
c89cc.sh - standalone C89/ELF64 compiler in pure portable shell (gist.github.com)
Private Open Source (brokenco.de)
A Proposal for Voluntary AI Disclosure in OCaml Code (anil.recoil.org)
Rails on the BEAM (intertwingly.net)
Why Nobody Can Verify What Booted Your Server (unmitigatedrisk.com)
Understanding the Ultrahonk Verifier (hashcloak.com)
The Design of AI Memory Systems (tombedor.dev)
Making a Type Checker/LSP for Nix (johns.codes)
Build your own Dial-up ISP with a Raspberry Pi (www.jeffgeerling.com)
Lisette — Rust syntax, Go runtime (lisette.run)
Baby’s Second Garbage Collector (www.matheusmoreira.com)
Signals, the push-pull based algorithm (willybrauner.com)
Claude Code Found a Linux Vulnerability Hidden for 23 Years (mtlynch.io)
Slap: Functional Concatenative Language... with a Borrow Checker? (taylor.town)
apfel: Free AI already on your Mac (apfel.franzai.com)
Big-Endian Testing with QEMU (www.hanshq.net)
Idiomatic Lisp and the nbody benchmark (www.stylewarning.com)
Open Source, Incentives, and Why ''Monetize Later'' Often Backfires (kaluvuri.com)
Adobe wrote to my hosts file (www.reddit.com)
SSH certificates: the better SSH experience (jpmens.net)
800 Rust terminal projects in 3 years (blog.orhun.dev)
Offensive Cybersecurity Time Horizons (lyptusresearch.org)
1SubMl: experimental ML-like programming language with a unified module and value language, and more (github.com)
A CSS Engine in OCaml (gazagnaire.org)
samply: Command-line sampling profiler for macOS, Linux, and Windows (github.com)
Gentoo GNU/Hurd (www.gentoo.org)
A Rave Review of Superpowers (for Claude Code) (emschwartz.me)
I used AI. It worked. I hated it (taggart-tech.com)
landdown - Simple sandboxing for shell scripts (git.sr.ht)
How we built a virtual filesystem for our Assistant (www.mintlify.com)
LinkedIn Is Illegally Searching Your Computer (browsergate.eu)
Rewrites.bio: 60x speedup in Genomics QC AI rewrite guidelines for Science (rewrites.bio)
Activating Two Trap Cards at Once, or: A Gentle Response to the Popularity of Vibecoding (gist.github.com)
Euro-Office, ONLYOFFICE, and their licensing dispute (blog.ensko.at)
Validating Hare’s Sort Module using Symbolic Execution (notes.8pit.net)
I may have solved a long standing problem with Object Oriented systems (blog.mempko.com)
Taking multi-master MariaDB for a spin, reproducing a Jepsen report (theconsensus.dev)
jj v0.40.0 released (github.com)
A quick look at __pledge_open(2) (dustri.org)
Reverse Engineering Crazy Taxi (wretched.computer)
Evolving the Node.js Release Schedule (nodejs.org)
Every dependency you add is a supply chain attack waiting to happen (benhoyt.com)
Martian time in Hare (harelang.org)
We built Postgres compatibility for our database and made it reusable libraries (greptime.com)
pGenie – SQL-first code generator for PostgreSQL (Haskell, Rust, Java) (pgenie.io)
Running out of Disk Space on Launch (alt-romes.github.io)
Packaging 128 languages with Nix (invariant.club)
Libinput Hit By Worrying Security Issues With Its Lua Plug-In System (www.phoronix.com)
Quantum computing bombshells that are not April Fools (scottaaronson.blog)
Ruby 3.2 Is EOL: What You Actually Need to Do (piechowski.io)
Email obfuscation: What works in 2026? (spencermortensen.com)
Python Yet Reforged Entirely (pyre-lang.org)
Cutting Python Web App Memory Over 31% (mkennedy.codes)
Blogging in Typst is not that hard (natri.fyi)
pgit: I Imported the Linux Kernel into PostgreSQL (oseifert.ch)
What Would You See Changed in Haskell? (blog.haskell.org)
git_bayesect: Bayesian git bisect (github.com)
Indexical: Private, local-first memory for everything you read on the web (github.com)
A game with programmable space combat written in Go (store.steampowered.com)
Institutional AI, Surrogacy, and the Future of Work (alnewkirk.com)
I Traced My Traffic Through a Home Tailscale Exit Node (tech.stonecharioteer.com)
Timesliced reservoir sampling: a new(?) algorithm for profilers (pythonspeed.com)
FlowG - Road to 1.0 (link-society.github.io)
coreutils: a comprehensive review (2023) (ratfactor.com)
Watch out for missed warnings on vendor C toolchains (blog.poly.nomial.co.uk)
Linear types proposal for Hare (yerinalexey.srht.site)
GHC community update March 2026 (discourse.haskell.org)
Review: Measuring AI Ability to Complete Long Software Tasks (emptysqua.re)
Don''t Let AI Write For You (alexhwoods.com)
Why Don’t You Use String Views Instead of Passing strings by const&? (giodicanio.com)
CSS or BS? (www.keithcirkel.co.uk)
SQLite DB: simple, in-process, reliable, fast (2024) (binaryigor.com)
Rubysyn: clarifying Ruby''s syntax and semantics (github.com)
Red-black tree in Lean 4 prover with everything proved (rentry.co)
Reconstructing full Linux history (rentry.co)
The Self-Cancelling Subscription (predr.ag)
After 40 years, arbitrary code execution has been achieved in Super Mario Bros (youtu.be)
DSTs Are Just Polymorphically Compiled Generics (faultlore.com)
Early observations from Interviews with Engineering Teams Adopting AI (jonathannen.com)
I Made a Keyboard Nobody Asked For: My Experience Making TapType (fireborn.mataroa.blog)
Reading leaked Claude Code source code (lr0.org)
Gaim 3 Exists (gaim.imfreedom.org)
wastrelly wabbits (wingolog.org)
plakar openbsd (x61.sh)
your hex editor should color-code bytes (simonomi.dev)
Pidgin 3.0 Alpha 1 2.95.0 has been released (discourse.imfreedom.org)
[RFC] clang-reforge: Automatic whole-codebase source code rewriting tool for security hardening (discourse.llvm.org)
Pipevals: Evaluation pipelines for every LLM application (www.pipevals.com)
Historical GitHub Uptime Charts (damrnelson.github.io)
Runtime type checking is great (2023) (blog.jez.io)
February in Servo: faster layout, pause and resume scripts, and more (servo.org)
Objections to systemd age-attestation changes go overboard (lwn.net)
Software You Can Love 2026 tickets are on sale (mattnite.net)
The Subprime Technical Debt Crisis (blog.happyfellow.dev)
RubyGems Fracture Incident Report (rubycentral.org)
Data Indexing in Golang (hister.org)
Autoscaling CI for Gitea in Rust (rustunit.com)
Trivially breaking confidential VMs (katexochen.aro.bz)
Why Your Engineering Team Is Slow (It''s the Codebase, Not the People) (piechowski.io)
ONLYOFFICE flags license violations in “Euro-Office” project (www.onlyoffice.com)
JSSE: A JavaScript Engine Built by an Agent (p.ocmatos.com)