📚 Beginning January 2026, all ACM publications will be made open access
🔗 Read more 🔗
🛡️ We Pwned X, Vercel, Cursor, and Discord Through a Supply-Chain Attack
An impressive example of ethical hacking by young researchers exposing critical supply-chain risks in AI ecosystems—underscoring how transparency and rapid disclosure can strengthen cybersecurity resilience.
A 16-year-old security researcher details how his team uncovered severe XSS vulnerabilities in Mintlify, an AI documentation platform used by companies like Discord, Vercel, and X (Twitter). The flaw allowed malicious SVG uploads to execute scripts and steal credentials across multiple organizations. Their responsible disclosure led to rapid fixes and roughly $11,000 in bounties.
🔗 Read more 🔗
📺 Texas Sues Major TV Makers for Spying on Viewers
A pivotal case that could reshape privacy standards for connected devices, highlighting how data-driven business models increasingly blur the line between user convenience and surveillance.
Texas Attorney General Ken Paxton has sued Samsung, Sony, LG, Hisense, and TCL, claiming their smart TVs use Automatic Content Recognition to secretly collect viewing habits and even visuals from connected devices. The lawsuits allege deceptive practices and violations of consumer privacy laws to enable targeted advertising.
🔗 Read more 🔗
⚡ Please Just Try HTMX
A refreshing manifesto for simplicity in frontend engineering—championing hypermedia-driven design over bloated client-side stacks and rekindling appreciation for the elegance of HTML.
This essay passionately urges developers to try HTMX as a lightweight alternative to complex JavaScript frameworks like React and Vue. By leveraging HTML attributes to create dynamic, interactive pages, HTMX simplifies architecture, shortens build times, and reduces maintenance overhead while preserving interactivity.
🔗 Read more 🔗
🎨 Classical Statues Were Not Painted Horribly
An insightful critique revealing how flawed reconstructions shape cultural perception—reminding us that technical fidelity and artistic nuance often diverge in historical interpretation.
The article challenges misconceptions about vividly painted reconstructions of ancient Greek and Roman statues. It argues that modern replicas appear garish due to poor craftsmanship and incomplete pigment data, while ancient artists actually employed color with sophistication and restraint.
🔗 Read more 🔗
🧪 Your Job Is to Deliver Code You’ve Proven Works
A strong call for accountability in software craftsmanship—reminding engineers that testing isn’t bureaucracy, it’s proof of integrity in the development process.
Simon Willison argues that developers must personally verify their code’s correctness through both manual and automated testing rather than delegating that responsibility to others or AI assistants. He frames testing as an ethical cornerstone of professional software engineering in an era increasingly influenced by AI tools.
🔗 Read more 🔗
🔐 Hardware-Attested Nix Builds
A landmark step toward tamper-proof software pipelines—demonstrating how combining Nix and hardware attestation could redefine trust in open-source infrastructure.
Garnix engineers describe achieving one of the first hardware-attested Nix builds—where cryptographic hardware verifies that the build process occurred exactly as intended. The post explains how Trusted Execution Environments enhance reproducibility and protect against tampering, paving the way for more secure and transparent build systems.
🔗 Read more 🔗