Engineering &
Security Wire
Curated from Hacker News, Lobsters, Krebs on Security, and other top sources. Updated every 6 hours.
Creating a Color Palette from an Image
40 points, 5 comments on Hacker News
Laguna XS.2 and M.1
Article URL: https://poolside.ai/blog/laguna-a-deeper-dive Comments URL: https://news.ycombinator.com/item?id=47936511 Points: 55 # Comments: 24
GitHub RCE Vulnerability: CVE-2026-3854 Breakdown
Article URL: https://www.wiz.io/blog/github-rce-vulnerability-cve-2026-3854 Comments URL: https://news.ycombinator.com/item?id=47936479 Points: 45 # Comments: 18
Cybersec is a thankless job: expanding workload and shrinking pay packet
Article URL: https://www.theregister.com/2026/04/27/from_a_massive_skills_gap/ Comments URL: https://news.ycombinator.com/item?id=47936411 Points: 51 # Comments: 25
Anthropic Joins the Blender Development Fund as Corporate Patron
Article URL: https://www.blender.org/press/anthropic-joins-the-blender-development-fund-as-corporate-patron/ Comments URL: https://news.ycombinator.com/item?id=47936370 Points: 188 # Comments: 159
AISLE Discovers 38 CVEs in OpenEMR Healthcare Software
Article URL: https://aisle.com/blog/aisle-discovers-38-critical-security-vulnerabilities-in-healthcare-software-used-by-100000-providers Comments URL: https://news.ycombinator.com/item?id=47936347 Points: 136 # Comments: 82
Warp is now open-source
142 points, 50 comments on Hacker News
After Spain's blackout, its shift to renewables and grid evolution power on
Article URL: https://www.theguardian.com/world/2026/apr/28/blackout-spain-renewable-energy-grid-solar-wind Comments URL: https://news.ycombinator.com/item?id=47936236 Points: 47 # Comments: 9
FCC Funding Application Notes Paramount Will Be 49.5% Foreign-Owned Post-Merger
Article URL: https://deadline.com/2026/04/paramount-fcc-request-wbd-merger-middle-east-1236873732/ Comments URL: https://news.ycombinator.com/item?id=47936210 Points: 127 # Comments: 69
Auto Polo
42 points, 12 comments on Hacker News
Physicists Discover the Most Complex Forms of Ice Yet
Article URL: https://www.quantamagazine.org/physicists-discover-the-most-complex-forms-of-ice-yet-20260427/ Comments URL: https://news.ycombinator.com/item?id=47936167 Points: 8 # Comments: 4
Google and Pentagon reportedly agree on deal for 'any lawful' use of AI
Article URL: https://www.theverge.com/ai-artificial-intelligence/919494/google-pentagon-classified-ai-deal Comments URL: https://news.ycombinator.com/item?id=47936156 Points: 188 # Comments: 183
Illegal vs Unwanted States
Comments
Securing the git push pipeline: Responding to a critical remote code execution vulnerability
How we validated, fixed, and investigated a critical vulnerability in under two hours, and confirmed no exploitation. The post Securing the git push pipeline: Responding to a critical remote code execution vulnerability appeared first on The GitHub Blog.
Your phone is about to stop being yours
933 points, 460 comments on Hacker News
Show HN: Rocky – Rust SQL engine with branches, replay, column lineage
73 points, 11 comments on Hacker News
The Best (Query) Plans of Mice and Men
Comments
Babylon and the Square Root of 2 (2011)
Comments
VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi
Threat hunters are warning that the cybercriminal operation known as VECT 2.0 acts more like a wiper than a ransomware due to a critical flaw in its encryption implementation across Windows, Linux, and ESXi variants that renders recovery impossible even for the threat actors. The fact that VECT's locker permanently destroys large files rather than encrypting them means even victims who opt to
Show HN: Live Sun and Moon Dashboard with NASA Footage
Article URL: https://www.lumara-space.app/ Comments URL: https://news.ycombinator.com/item?id=47934261 Points: 114 # Comments: 38
Shutdowns, power outages, and conflict: a review of Q1 2026 Internet disruptions
The first quarter of 2026 saw a surge in Internet disruptions, from nationwide shutdowns in Uganda and Iran to unprecedented drone strikes on cloud infrastructure. We explore the data behind these events using Cloudflare Radar.
A Primer on Bézier Curves – So What Makes a Bézier Curve?
83 points, 19 comments on Hacker News
Bypassing DPI with eBPF, no VPN or proxy needed
Comments
GitHub Uses eBPF to Eliminate Deployment Risks and Prevent Circular Failures
GitHub has introduced a new approach to improving deployment safety by leveraging eBPF, enabling the company to detect and prevent hidden circular dependencies that could block recovery during outages. By Craig Risi
Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About
Every security program is betting on the same assumption: once a system is connected, the problem is solved. Open a ticket, stand up a gateway, push the data through. Done. That assumption is wrong. It is also a major reason Zero Trust programs stall. New research my team just published puts numbers on it. The Cyber360: Defending the Digital Battlespace report, based on a survey of 500 security
Microsoft VibeVoice: Open-Source Frontier Voice AI
11 points, 0 comments on Hacker News
Localsend: An open-source cross-platform alternative to AirDrop
74 points, 23 comments on Hacker News
Period tracking app has been yapping about your flow to Meta
34 points, 30 comments on Hacker News
New Gas-Powered Data Centers Could Emit More Greenhouse Gases Than Whole Nations
54 points, 52 comments on Hacker News
Who owns the code Claude Code wrote?
130 points, 133 comments on Hacker News
Aggregated from public RSS feeds & the Hacker News API · All links point to original sources · Clawship does not republish full articles