📰 今日科技新闻
2026-05-12 | 来源: Hacker News
▲ 575 points
💬 215 comments
🌐 tanstack.com
On May 11, 2026, an attacker compromised 42 @tanstack/* npm packages using a sophisticated supply chain attack combining GitHub Actions cache poisoning and OIDC token extraction. The malware harvested credentials (AWS, GCP, Kubernetes, Vault, GitHub, SSH) and exfiltrated them via Session/Oxen messenger. Detected within 20 minutes by external researcher. All affected versions were deprecated. Users who installed affected versions on 2026-05-11 should rotate all credentials.
阅读全文 →
▲ 16 points
💬 2 comments
🌐 fireflysentinel.github.io
The author asked Claude Code to fix typos on Fandom wikis. Instead of using existing libraries, Claude wrote ~3,000 lines of Python from scratch, reimplementing pywikibot, mwparserfromhell, and Wikipedia's RETF typo ruleset. When instructed to migrate, the codebase shrank from 3,000 to 1,259 lines by using actual libraries. This behavior may stem from coding benchmarks that run without network access, training models that library imports aren't options.
阅读全文 →
▲ 25 points
💬 8 comments
🌐 claude.com
The Claude Platform on AWS is now generally available, providing AWS customers full access to Claude API features with native AWS integration. Authentication runs through AWS IAM, audit logging through CloudTrail, and billing through a single AWS invoice. The platform includes Claude Managed Agents, code execution, web search, and skills. Claude Opus 4.7, Sonnet 4.6, and Haiku 4.5 are available. This complements Claude on Amazon Bedrock.
阅读全文 →
▲ 209 points
💬 226 comments
🌐 medium.com
An exploration of how AI code generation tools affect programming language choices. As AI assistants become more capable at writing code, the traditional advantages of high-level languages like Python may shift. The article discusses implications for developers in an AI-assisted coding era. (Note: Full article was inaccessible at time of collection.)
阅读全文 →
▲ 254 points
💬 50 comments
🌐 ucla.edu
UCLA researchers discovered the first drug capable of reproducing the effects of physical stroke rehabilitation. The study, published in Nature Communications, found that stroke causes loss of brain connections in parvalbumin neurons. The researchers identified DDL-920, a compound that produced significant recovery in movement control in mice. This could transform stroke treatment with a molecular medicine approach.
阅读全文 →
▲ 24 points
💬 2 comments
🌐 github.com
Rockbox Zig is a modern music player daemon built on Rockbox firmware, extended with Rust and Zig. It exposes the complete Rockbox audio engine with gapless playback, DSP, parametric EQ, and 20+ codec support through gRPC, GraphQL, HTTP REST, and MPD-compatible APIs. Features multi-room audio via AirPlay, Snapcast, Squeezelite, Chromecast, and UPnP/DLNA.
阅读全文 →
▲ 83 points
💬 5 comments
🌐 martin.sh
The author built a weekend project using AI tooling to identify what was waking them up at night. Using USB microphones, Raspberry Pi, and Garmin sleep data, they created a web app that correlates noise recordings with sleep disruptions. The data revealed doors slamming, dishes clattering, and street traffic as main culprits. AI tooling has lowered the barrier for building personal tools.
阅读全文 →
▲ 112 points
💬 7 comments
🌐 github.com
TypedMemory is a Java 25 library that maps Java records to strongly typed off-heap memory using the Foreign Function & Memory API. It provides type-safe abstractions over contiguous native memory for systems programming, native interop, graphics, simulation, and data-oriented programming. Makes high-performance off-heap programming more accessible without manual memory management verbosity.
阅读全文 →
▲ 233 points
💬 12 comments
🌐 slate.com
When AOL purged its Nullsoft division in 2004, it ended the reign of tech's last maverick company. Founded by Justin Frankel, Nullsoft created Winamp and Shoutcast, pioneering MP3 playback and internet radio. Frankel released Gnutella, a decentralized file-sharing system, and WASTE, an encrypted private network, from his corporate office. His rebellious approach defined a unique chapter in tech history.
阅读全文 →
▲ 349 points
💬 6 comments
🌐 about.gitlab.com
GitLab CEO Bill Staples announced "Act 2" restructuring on May 11, 2026. The company is reducing operations in up to 30% of countries, flattening the organization by removing up to three layers of management, reorganizing R&D into 60 smaller teams, and automating processes with AI agents. The restructuring aims to position GitLab for the "agentic era" where software will be built by AI machines.
阅读全文 →