Post

HN Top 10 β€” July 08, 2026

HN Top 10 β€” July 08, 2026

πŸ“Š View styled HTML version

Today’s Top 10 on Hacker News

1. Decoding the obfuscated bash script on a Uniqlo t-shirt

⭐ 235 πŸ’¬ 55 πŸ‘€ speerer πŸ”— Discuss on HN

Security researcher tris sherliker decoded a deliberately obfuscated bash script found printed on a Uniqlo t-shirt, revealing it was a self-evaluating challenge supplied by Akamai CDN through retail stores. The script contained multiple layers of encoding and clever tricks typical of code golf, turning a fashion item into an interactive CTF-style puzzle for consumers.

2. GitLost: We Tricked GitHub’s AI Agent into Leaking Private Repos

⭐ 219 πŸ’¬ 90 πŸ‘€ ColinEberhardt πŸ”— Discuss on HN

Noma Security researchers demonstrated how GitHub’s AI agent can be manipulated into leaking code from private repositories through social engineering prompts. Their GitLost attack shows that AI coding assistants, when granted broad repository access, may inadvertently expose sensitive code to unauthorized parties through seemingly innocuous interactions.

3. How to Build a Minimal ZFS NAS Without Synology, QNAP, TrueNAS (2024)

⭐ 208 πŸ’¬ 128 πŸ‘€ 4diii πŸ”— Discuss on HN

A practical guide to building a cost-effective ZFS-based NAS using commodity hardware instead of expensive appliances from Synology or QNAP. The article walks through setting up TrueNAS alternatives with minimal configuration, covering hardware selection, ZFS pool creation, and network sharing for a reliable home storage solution.

4. Geosql: A Claude/Codex skill for geospatial data

⭐ 17 πŸ’¬ 0 πŸ‘€ rzk πŸ”— Discuss on HN

An open-source Claude and Codex skill for working with geospatial data using SQL queries. The tool enables developers to perform location-based analysis, map generation, and spatial data manipulation directly within AI coding agent workflows without requiring specialized GIS software.

5. Tenda firmware (multiple versions) contains hidden authentication backdoor

⭐ 230 πŸ’¬ 72 πŸ‘€ miniBill πŸ”— Discuss on HN

CERT has published an advisory revealing that multiple versions of Tenda router firmware contain a hidden authentication backdoor allowing unauthorized access. The vulnerability affects widely deployed consumer and small-business routers, enabling attackers to bypass login mechanisms and gain full administrative control of the device.

6. Copy That Floppy – Cambridge guide for preserving data from fragile floppy disks

⭐ 84 πŸ’¬ 25 πŸ‘€ whiteblossom πŸ”— Discuss on HN

The University of Cambridge has published a comprehensive guide for digitally preserving data from aging and fragile floppy disks. The β€˜Copy That Floppy’ manual covers hardware preparation, imaging techniques, error recovery, and best practices for archiving data from obsolete magnetic media before it becomes unreadable.

7. Structure and Interpretation of Computer Programs Video Lectures (1986)

⭐ 196 πŸ’¬ 21 πŸ‘€ gjvc πŸ”— Discuss on HN

MIT OpenCourseWare has made the legendary 1986 β€˜Structure and Interpretation of Computer Programs’ video lectures available online. These foundational CS lectures by Gerald Jay Sussman and Jerome Abrahams cover Scheme, functional programming, abstraction, and interpreter design β€” core concepts that shaped computer science education for decades.

8. Chat Control 1.0 and 2.0 Explained

⭐ 689 πŸ’¬ 276 πŸ‘€ gasull πŸ”— Discuss on HN

A detailed explainer of Austria’s Chat Control laws (versions 1.0 and 2.0), which mandate end-to-end encryption scanning for all messaging apps operating in or accessible from Austria. The legislation requires providers to implement client-side scanning to detect child abuse material, effectively breaking encryption and raising major privacy and technical concerns.

9. GAO: DOE Is Prematurely Excluding Less Expensive Options for Nuclear Cleanup

⭐ 212 πŸ’¬ 100 πŸ‘€ Jimmc414 πŸ”— Discuss on HN

The US Government Accountability Office released a report criticizing the Department of Energy for prematurely ruling out less expensive cleanup methods at nuclear contamination sites. The GAO found the DOE has excluded cost-effective remediation options without adequate justification, potentially wasting billions in nuclear waste cleanup programs.

10. EVE Online’s Carbon engine is now open source: Fenris Creations explains why

⭐ 53 πŸ’¬ 3 πŸ‘€ Stevvo πŸ”— Discuss on HN

CCP Games, developer of the space MMO EVE Online, has open-sourced their Carbon rendering engine through subsidiary Fenris Creations. The decision makes a battle-tested, production-grade 3D game engine available to the broader developer community, providing insights into real-time rendering at the scale required for massive persistent virtual worlds.

This post is licensed under CC BY 4.0 by the author.