Engineering &
Security Wire
Curated from Hacker News, Lobsters, Krebs on Security, and other top sources. Updated every 6 hours.
OpenAI Introduces Websocket-Based Execution Mode to Reduce Latency in Agentic Workflows
OpenAI introduces a WebSocket-based execution mode for its Responses API to improve agentic workflow performance in coding agents and real-time AI systems. The update reduces latency by up to 40 percent by replacing HTTP request-response cycles with persistent connections, improving streaming, tool execution, and multi-step orchestration in production-scale AI systems. By Leela Kumili
MPEG-2 Transport Stream Packaging for Media over QUIC Transport
Article URL: https://www.ietf.org/archive/id/draft-gregoire-moq-msfts-00.html Comments URL: https://news.ycombinator.com/item?id=48049963 Points: 7 # Comments: 0
The ROKR wooden typewriter: a closer look
22 points, 3 comments on Hacker News
The Serial TTL connector we deserve
65 points, 47 comments on Hacker News
Presentation: Engineering at AI Speed: Lessons from the First Agentically Accelerated Software Project
Adam Wolff discusses the evolution of Claude Code, explaining how AI shifts the SDLC bottleneck from implementation to architectural decision-making. He shares three "war stories" to show why dogfooding and rapid unshipping are vital. He explains that when coding costs drop to zero, the speed of learning becomes the only competitive advantage. By Adam Wolff
The map that keeps Burning Man honest
Article URL: https://www.not-ship.com/burning-man-moop/ Comments URL: https://news.ycombinator.com/item?id=48049653 Points: 214 # Comments: 67
The River Otter's Remarkable Comeback
38 points, 7 comments on Hacker News
One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches
The hardest part of cybersecurity isn't the technology, it’s the people. Every major breach you’ve read about lately usually starts the same way: one employee, one clever email, and one "Patient Zero" infection. In 2026, hackers are using AI to make these "first clicks" nearly impossible to spot. If a single laptop gets compromised on your watch, do you have a plan to stop it from taking down
From Buffon's Needle to Buffon's Noodle
20 points, 6 comments on Hacker News
PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026. The vulnerability in question is CVE-2026-0300 (CVSS score: 9.3/8.7), a buffer overflow vulnerability in the User-ID Authentication Portal service of Palo Alto Networks PAN-OS software that could allow an unauthenticated attacker
Child marriages plunged when girls stayed in school in Nigeria
Article URL: https://www.nature.com/articles/d41586-026-00796-2 Comments URL: https://news.ycombinator.com/item?id=48049208 Points: 115 # Comments: 62
Child marriages plunged when girls stayed in school in Nigeria
311 points, 230 comments on Hacker News
Looking at the data behind prediction markets
17 points, 1 comments on Hacker News
Scaling Trusted Access for Cyber with GPT-5.5 and GPT-5.5-Cyber
OpenAI expands Trusted Access for Cyber with GPT-5.5 and GPT-5.5-Cyber, helping verified defenders accelerate vulnerability research and protect critical infrastructure.
How Cloudflare responded to the “Copy Fail” Linux vulnerability
When a critical Linux kernel privilege escalation was publicly disclosed, Cloudflare's security and engineering teams detected, investigated, and mitigated the threat across our global fleet, confirming zero customer impact and no malicious exploitation.
The One Dollar Counterfeiter
125 points, 38 comments on Hacker News
How LEDs are made (2014)
66 points, 6 comments on Hacker News
Casio S100X Japanese Lacquer Edition (JP Page Only)
35 points, 11 comments on Hacker News
GovernGPT (YC W24) Is Hiring Engineers to Build Thinking Systems in Montreal
Article URL: https://www.ycombinator.com/companies/governgpt/jobs/hRyltS0-backend-engineer-thinking-systems Comments URL: https://news.ycombinator.com/item?id=48048339 Points: 0 # Comments: 0
Applying Best Simple System for Now for Software Design
Choosing between building up technical debt and missing delivery deadlines is a false dichotomy, Daniel Terhorst-North argued in his talk Best Simple System for Now. Programmers love to generalize rather than solve the immediate problem at hand, which can make future changes difficult. Instead, we need to build the skills and instincts for keeping things simple. By Ben Linders
ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories
Bad week. Turns out the easiest way to get hacked in 2026 is still the same old garbage: shady packages, fake apps, forgotten DNS junk, scam ads, and stolen logins getting dumped into Discord channels like it’s normal. Some of these attack chains don’t even feel sophisticated anymore. More like some tired guy with a Telegram account and too much free time. The worst part is how often this stuff
Grand Theft Oil Futures: Insider traders keep making a killing at our expense
Article URL: https://paulkrugman.substack.com/p/grand-theft-oil-futures Comments URL: https://news.ycombinator.com/item?id=48047981 Points: 338 # Comments: 228
LinkedIn profile visitor lists belong to the people, says Noyb
Article URL: https://www.theregister.com/offbeat/2026/05/05/noyb-cries-foul-on-linkedin-withholding-profile-visitor-data/5225338 Comments URL: https://news.ycombinator.com/item?id=48047970 Points: 160 # Comments: 83
Idempotency Is Easy Until the Second Request Is Different
28 points, 7 comments on Hacker News
Parloa builds service agents customers want to talk to
Parloa leverages OpenAI models to power scalable, voice-driven AI customer service agents, enabling enterprises to design, simulate, and deploy reliable, real-time interactions.
A PHP license change is imminent
Comments
Day Zero Readiness: The Operational Gaps That Break Incident Response
Having an incident response retainer, or even a pre-approved external incident response firm, is not the same as being ready for an incident. A retainer means someone will answer the phone. Operational readiness determines whether that team can do meaningful work the moment they do. That distinction matters far more than many organizations realize. In the first hours of a security incident
Potential Consequences of Using Postgres as a Job Queue
Comments
Agent-harness-kit scaffolding for multi-agent workflows (MCP, provider-agnostic)
Article URL: https://ahk.cardor.dev Comments URL: https://news.ycombinator.com/item?id=48047826 Points: 56 # Comments: 15
Google Announces GKE Agent Sandbox and Hypercluster at Next '26, Positioning Kubernetes as AI Agent
Google announced GKE Agent Sandbox and hypercluster at Cloud Next '26. Agent Sandbox uses gVisor kernel isolation for secure agent code execution at 300 sandboxes per second, built as an open-source Kubernetes SIG Apps subproject. It is currently the only native agent sandbox among the three major hyperscalers. Hypercluster manages a million chips from a single control plane. By Steef-Jan Wiggers
Aggregated from public RSS feeds & the Hacker News API · All links point to original sources · Clawship does not republish full articles