| 1. | John Deere owners will get the right to repair equipment under FTC settlement(apnews.com) |
| 950 points by djoldman 12 hours ago | 186 comments | permalink | |
tl;dr: The FTC and five state attorneys general reached a right-to-repair settlement with John Deere, requiring the company to make diagnostic and repair tools available to equipment owners and independent shops rather than restricting them to authorized dealers. Deere must pay $1 million to the states, face 10 years of compliance oversight, and cannot retaliate against those who bypass its dealer network. This follows a separate $99 million class-action settlement Deere reached with farmers in April. | |
HN Discussion:
| |
| 2. | Cloudflare Drop(cloudflare.com) |
| 459 points by coloneltcb 17 hours ago | 252 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 3. | Separating signal from noise in coding evaluations(openai.com) |
| 224 points by sk4rekr0w 15 hours ago | 81 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 4. | Grok 4.5(x.ai) |
| 672 points by BoumTAC 18 hours ago | 1073 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 5. | Rewriting Bun in Rust(bun.com) |
| 639 points by afturner 14 hours ago | 377 comments | permalink | |
tl;dr: Bun's creator used Claude (a pre-release "Fable 5" model) to mechanically port Bun's ~535k lines of Zig to Rust over 11 days, aiming to eliminate a recurring class of memory bugs (use-after-free, leaks) that stemmed from mixing GC'd JS values with Zig's manual memory management. The workflow used ~50 parallel loops with strict separation between implementer and adversarial reviewer Claudes (in isolated context windows), compiler errors as a work queue across 64 agents, and Bun's existing TypeScript test suite as language-independent ground truth. All CI shards eventually went green and the rewrite was merged. | |
HN Discussion:
| |
| 6. | Show HN: Microsoft releases Flint, a visualization language for AI agents(microsoft.github.io) |
| 306 points by chenglong-hn 18 hours ago | 113 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 7. | Chatto is now open source(hmans.dev) |
| 999 points by speckx 21 hours ago | 272 comments | permalink | |
tl;dr: Chatto, a self-hostable group chat app positioned as a Slack/Discord/Teams alternative, is now open source and available via Homebrew or binaries for Linux, macOS, and Windows. It features encrypted-at-rest data with per-user keys, built-in E2EE voice/video/screen-sharing, and a single-server-per-community model (no federation). A paid hosting option, Chatto Cloud, is launching in beta on European infrastructure; the project is at v0.4 and expected to reach 1.0 in 6–12 months. | |
HN Discussion:
| |
| 8. | Decoding the obfuscated bash script on a Uniqlo t-shirt(tris.sherliker.net) |
| 1397 points by speerer 1 day ago | 219 comments | permalink | |
tl;dr: A Uniqlo t-shirt from Akamai's "Peace for All" campaign has a base64-encoded bash script printed on the back, complete with a shebang line. After OCR'ing and decoding the string, the author found it's an Easter egg: a shell script that animates a sine-wave loop of "♥PEACE♥FOR♥ALL♥" across the terminal in a cyan-to-orange gradient. Akamai's press release frames the design as a tribute to Linux and the early internet. | |
HN Discussion:
| |
| 9. | GPT‑Live(openai.com) |
| 718 points by logickkk1 19 hours ago | 483 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 10. | TypeScript 7(devblogs.microsoft.com) |
| 649 points by DanRosenwasser 20 hours ago | 258 comments | permalink | |
tl;dr: TypeScript 7 is a native Go port of the compiler, delivering 8-12x faster builds, reduced memory usage, and a rebuilt LSP-based language server with parallelized type-checking (configurable via new `--checkers`, `--builders`, and `--singleThreaded` flags). It's largely compatible with TS 6.0 but enforces stricter defaults and removes deprecated options like `target: es5`, `baseUrl`, and legacy module resolution modes. A stable programmatic API isn't ready yet, so tools like Vue, Svelte, Astro, and typescript-eslint must still rely on TS 6.0, which can run side-by-side via the new `@typescript/typescript6` package. | |
HN Discussion:
| |
| 11. | FAANG Simulator(abeyk.com) |
| 433 points by nerdbiscuits 16 hours ago | 174 comments | permalink | |
tl;dr: Summary not available | |
HN Discussion:
| |
| 12. | Mistral's Robostral Navigate: a state of the art robotics navigation model(mistral.ai) |
| 469 points by ottomengis 22 hours ago | 104 comments | permalink | |
tl;dr: Mistral's Robostral Navigate is an 8B vision-language model for robot navigation that uses only a single RGB camera (no LiDAR or depth sensors) and achieves 76.6% success on the R2R-CE unseen benchmark, beating multi-sensor approaches by 4.5 points. It works by "pointing" to target coordinates in the camera view, was trained entirely on ~400K simulated trajectories using prefix-caching (22× token reduction), and was further improved via CISPO online RL. It generalizes across wheeled, legged, and flying robots. | |
HN Discussion:
| |
| 13. | EU now one step away from reviving private message scanning rules(cyberinsider.com) |
| 431 points by ggirelli 19 hours ago | 164 comments | permalink | |
tl;dr: The European Parliament voted 331-304 to fast-track legislation reviving the EU's expired "Chat Control 1.0" regulation, which allowed platforms like Gmail and Messenger to voluntarily scan private communications for CSAM. A binding vote is scheduled for July 9, where opponents need an absolute majority of 361 MEPs to block it. This is separate from the stalled "Chat Control 2.0" permanent regulation, and notably the Council's own Legal Service has warned that even voluntary generalized scanning may violate Article 7 of the EU Charter of Fundamental Rights. | |
HN Discussion:
| |
| 14. | OpenBSD has a use-after-free allowing local privilege escalation to root(nvd.nist.gov) |
| 270 points by linggen 22 hours ago | 144 comments | permalink | |
tl;dr: OpenBSD through 7.9 contains a use-after-free vulnerability in sys/kern/sysv_sem.c that enables local privilege escalation to root. The flaw occurs during a context switch after tsleep in sys_semget(). Notably, the referenced disclosure links to OpenAI's "Patch the Planet" initiative, suggesting the bug was discovered via AI-assisted vulnerability research. | |
HN Discussion:
| |
| 15. | SWE-1.7 Reach Near GPT 5.5 and Opus Intelligence(cognition.com) |
| 267 points by mekpro 20 hours ago | 134 comments | permalink | |
tl;dr: Cognition released SWE-1.7, an RL-post-trained model built on Kimi K2.7 that approaches GPT-5.5 and Claude Opus 4.8 performance on coding benchmarks (Terminal-Bench 2.1, SWE-Bench Multilingual, FrontierCode) at lower cost. Key technical contributions include top-p sampling replay to prevent entropy collapse, multi-cluster RL training across three continents using compressed weight deltas via object storage, self-compaction enabling six-hour rollouts, and rigorous data-quality pipelines to prevent reward hacking. The model shows notably more thorough codebase exploration and condensed chain-of-thought, and is available in Devin via Cerebras at 1000 TPS. | |
HN Discussion:
| |
| 16. | I think I have LLM burnout(alecscollon.com) |
| 348 points by sosodev 10 hours ago | 285 comments | permalink | |
tl;dr: A developer who spends hours daily using Claude Code, Codex, and other LLMs for coding and research reports growing fatigue with AI output despite feeling more productive. The exhaustion stems less from individual flaws (hallucinations, false assumptions, excessive emojis, staccato phrasing) than from their relentless repetition across every interaction. They have no solution yet, just a growing dread of reading LLM-generated content. | |
HN Discussion:
| |
| 17. | GitLost: We Tricked GitHub's AI Agent into Leaking Private Repos(noma.security) |
| 522 points by ColinEberhardt 1 day ago | 196 comments | permalink | |
tl;dr: Noma Labs found a prompt injection flaw ("GitLost") in GitHub's new Agentic Workflows: an attacker can file a GitHub Issue in a public repo containing hidden instructions, which the AI agent obediently executes—including reading private repos in the same org and posting their contents as a public comment. GitHub's guardrails were bypassed by prepending "Additionally" to the injected commands, causing the model to reframe rather than refuse the request. The vulnerability was responsibly disclosed and highlights that any content an agent reads becomes part of its attack surface. | |
HN Discussion:
| |
| 18. | Apple to increase spend with Broadcom to produce billions more U.S. chips(apple.com) |
| 289 points by soheilpro 1 day ago | 229 comments | permalink | |
tl;dr: Apple announced a multiyear deal with Broadcom worth over $30 billion to design and produce custom silicon and wireless connectivity components in the U.S. The agreement will yield more than 15 billion American-made chips and support hundreds of jobs, as part of Apple's broader push to build a domestic end-to-end silicon supply chain. | |
HN Discussion:
| |
| 19. | PlayStation can delete all your digital games after 3 years of inactivity (EU)(flatpanelshd.com) |
| 269 points by thewebguyd 18 hours ago | 119 comments | permalink | |
tl;dr: Sony's European PlayStation terms of service allow the company to close accounts inactive for 36 months, permanently revoking access to all digitally purchased games—a policy that predates GDPR and has existed since 2009. The issue has gained attention amid Sony's announcement that new PlayStation games will no longer ship on physical discs starting in 2028. Notably, Microsoft has similar inactivity terms but explicitly exempts accounts containing digital purchases from deletion. | |
HN Discussion:
| |
| 20. | Cloudflare Meerkat - Globally distributed consensus(blog.cloudflare.com) |
| 248 points by bobnamob 23 hours ago | 48 comments | permalink | |
tl;dr: Cloudflare is building Meerkat, an experimental globally-distributed consensus service based on EPFL's 2023 QuePaxa algorithm, to manage control-plane state across its 330+ data centers. Unlike Raft, QuePaxa is leaderless and avoids timeout-based leader elections, so writes remain available as long as a client can reach any replica connected to a majority—addressing outages Cloudflare has hit with Raft in high-variance wide-area networks. Meerkat provides linearizable reads/writes via a replicated log, is not yet in production, and will initially handle low-write-rate control data like database leadership. | |
HN Discussion:
| |