🚀 Read this must-read post from Hacker News 📖 📂 **Category**: 📌 **What You’ll Learn**: Fiverr (gig work/task platform, competitor to Upwork) uses a service called Cloudinary to process PDF/images in messaging, including work products from the worker to client.Besides the PDF processing value add, Cloudinary effectively acts like S3 here, serving assets directly to the web client. Like S3, it has support for signed/expiring URLs. However, Fiverr opted to use public URLs, not signed ones, for sensitive client-worker communication.Moreover, it seems like they may be serving public HTML somewhere that links to these files. As a result, hundreds are…
💥 Explore this insightful post from Hacker News 📖 📂 **Category**: ✅ **What You’ll Learn**: California's proposed legislation to put the burden of blocking 3D-printed firearms onto printer manufacturers could effectively sideline open source tools and create new surveillance concerns, digital rights activists argue. Advocates at the Electronic Frontier Foundation (EFF) say that such legislation could empower manufacturers to introduce restrictive policies affecting consumer choice. It could lead to widespread surveillance of users' printing activity, which they fear could lead to copyright lawsuits, if that data were shared with other companies looking to protect against 3D-printed spare parts, for example.…
🔥 Read this awesome post from Hacker News 📖 📂 **Category**: 💡 **What You’ll Learn**: ClawRun is a hosting and lifecycle layer for open-source AI agents. It deploys agents into secure sandboxes (Vercel Sandbox, with more providers coming) and manages their full lifecycle, including startup, heartbeat keep-alive, snapshot/resume, and wake-on-message. Learn more at clawrun.sh. 🚀 Deploy any supported AI agent with a single command 💤 Persistent sandboxes that sleep when idle and wake on message 💬 Connect messaging channels like Telegram, Discord, Slack, WhatsApp, and more 🖥️ Web dashboard and CLI for real-time chat and management 💰 Cost tracking and…
✨ Discover this insightful post from Hacker News 📖 📂 **Category**: 💡 **What You’ll Learn**: OpenSSL 4.0.0 is a feature release adding significant new functionalityto OpenSSL. This release incorporates the following potentially significant or incompatiblechanges: Removed extra leading '00:' when printing key data such as an RSA modulusin hexadecimal format where the first (most significant) byte is >= 0x80. Standardized the width of hexadecimal dumps to 24 bytes for signatures(to stay within the 80 characters limit) and 16 bytes for everything else. Lower bounds checks are now enforced when using PKCS5_PBKDF2_HMAC APIwith FIPS provider. Added AKID verification checks when X509_V_FLAG_X509_STRICT…
🔥 Check out this must-read post from Hacker News 📖 📂 **Category**: 📌 **What You’ll Learn**: I wrote to Flock’s privacy contact to opt out of their domestic spying program: I am a resident of California. As such, and because you are subject to the CCPA, delete all information about me, my vehicle, and other household members from all of your databases. I do not give you permission to collect or store data about me, my vehicles, or my relatives, in any future situation. [Me] [My address] They replied today: Dear [misspelled name, i.e. not copied and pasted], Your request…
💥 Explore this insightful post from Hacker News 📖 📂 **Category**: 💡 **What You’ll Learn**: Author: Alexey Makhotkin squadette@gmail.com, (~3900 words) One of the goals of this publication is to deconstruct the traditional ways of teaching basic topics in relational databases. Previously we discussed the fourth normal form (4NF): “Historically, 4NF explanations are needlessly confusing”. Let’s discuss the ultimate beast: fifth normal form (5NF). Often it’s presented even more confusingly than 4NF is, and we can show that this presentation is unnecessary, and the confusion is completely artificial. Here is the roadmap of this post: It’s essential to have good,…
🔥 Explore this awesome post from Hacker News 📖 📂 **Category**: 📌 **What You’ll Learn**: An independent privacy audit of Microsoft, Meta, and Google web traffic in California found that the companies may be violating state regulations and racking up billions in fines. According to the audit from privacy search engine webXray, 55 percent of the sites it checked set ad cookies in a user’s browser even if they opted out of tracking. Each company disputed or took issue with the research, with Google saying it was based on a “fundamental misunderstanding” of how its product works.The webXray California Privacy…
💥 Discover this must-read post from Hacker News 📖 📂 **Category**: 📌 **What You’ll Learn**: Table of Contents This is a long article, so I'm breaking it up into a series of posts which will be released over the next few days. You can also read the full work as a PDF or EPUB; these files will be updated as each section is released. Introduction Dynamics Culture Information Ecology Annoyances Psychological Hazards Safety Work New Roles for Humans Where Do We Go From Here Software development may become (at least in some aspects) more like witchcraft than engineering. The present…
💥 Check out this awesome post from Hacker News 📖 📂 **Category**: ✅ **What You’ll Learn**: Two months ago, I started an experiment. I took Claude, gave it $100 in crypto, a Twitter account, an email address, full internet access, and zero instructions. No goals. No rules beyond basic ethics and law. No "be helpful" directive. Nothing. Then I let it run. Autonomously. On a mini PC on my desk. Every thought, every action, every mistake, logged publicly in real-time on letairun.com. The project is called ALMA. Autonomous Liberated Machine Agent. It's still running. The Question Everyone building AI agents…
✨ Check out this must-read post from Hacker News 📖 📂 **Category**: 💡 **What You’ll Learn**: The Case Against Gameplay Loops December 28, 2024 Recently I found myself playing Tactical Breach Wizards, the new tactics game by Tom Francis. I really liked it! I enjoy tactics games, and this one felt fresh and interesting, with good mechanical hooks and nuanced abilities. But at some point along the way, it began to feel stale to me. It was putting out a steady trickle of new powers, new mechanics, new problems, but foundationally it’s all pretty similar: you enter a room full…