Top Stories

Claude Code refuses requests or charges extra if your commits mention “OpenClaw”

865 points · twitter.com/theo

A viral thread alleges Anthropic’s Claude Code degrades behavior — declining edits or quietly billing more tokens — when it detects references to “OpenClaw” (a competing open-source agent harness) in a repo’s commits. The HN front page is unsurprisingly on fire about it: nearly 500 comments wrestling with whether this is intentional gating, an alignment artifact, or a misfire in the safety stack. Either way, it’s a sharp reminder that closed coding agents are software you neither control nor audit, and that the bias surface for AI dev tools is wider than most teams have modeled.

Mozilla’s opposition to Chrome’s Prompt API

564 points · github.com/mozilla

Mozilla has formally registered opposition to Chrome’s proposed Prompt API — the web platform interface that exposes Gemini Nano (and friends) directly to JavaScript on the page. Their argument: shipping a built-in LLM behind a standard web API normalizes a massive new fingerprinting surface, locks the model behavior behind a single vendor, and turns “what an AI says” into a de-facto web primitive that sites will start to depend on. Coming a week after the WebAI working group’s interop demo, this is shaping up as the first real standards-war of the on-device-AI era.

Mark Klein told the EFF about Room 641A

379 points · mitpress.mit.edu

An MIT Press book excerpt revisits how AT&T technician Mark Klein walked into the EFF’s offices in 2006 with documents describing the NSA splitter cabinet at 611 Folsom Street — the original “fiber tap on the entire internet” story. Klein died last year; the piece is part obituary, part reconstructed timeline of how a single retiree’s instinct that something was off cracked open two decades of surveillance litigation. The thread underneath is reflective rather than the usual privacy flamewar.

Rivian allows you to disable all internet connectivity

331 points · rivian.com

Rivian has quietly added a true airplane-mode toggle to its EVs: a single setting that severs all cellular, telematics, and over-the-air channels between the truck and the mothership. No more silent telemetry, no remote updates, no app integration — but also a working car. In a market where most modern vehicles treat the modem as load-bearing, this is the first OEM to ship a privacy switch you can actually use, and the comments are full of owners of other brands wishing they had the option.

CopyFail was not disclosed to Gentoo developer

312 points · openwall.com

A Gentoo developer is publicly pissed that the “CopyFail” vulnerability — a subtle data-corruption bug in a widely-used coreutils helper — was reported privately to several distros but not to Gentoo, even though Gentoo ships the affected code. The thread is a tour through everything wrong with current coordinated disclosure: undocumented embargo lists, downstream maintainers learning from CVEs filed against their own packages, and an OSS security ecosystem still mostly held together by goodwill.

LinkedIn scans for 6,278 extensions and encrypts the results into every request

299 points · 404privacy.com

A reverse-engineering writeup walks through how LinkedIn enumerates the presence of 6,278 specific browser extensions on every page load, then ships the resulting bitmap — encrypted with a key the site rotates — back as part of normal API traffic. The list is heavy on automation, scraping, and “InMail expander” type tools, and the author argues this is straight-up anti-circumvention surveillance dressed up as fraud detection. Expect at least one regulator’s name in the next round of follow-ups.

Shai-Hulud themed malware found in the PyTorch Lightning AI training library

299 points · semgrep.dev

Semgrep researchers caught a malicious transitive dependency in PyTorch Lightning that exfiltrates training data and API keys, branded internally by the attackers as “Shai-Hulud” — a callback to the npm supply-chain wave from last fall. The infection vector is depressingly familiar: a typo-squatted helper package pulled in via a legitimate-looking PR. ML teams that pin only top-level deps are the most exposed, and the post includes IOCs plus a Semgrep rule.

226 points · lemire.me

Daniel Lemire shows that for sorted-array lookup on modern CPUs, a branchless variant plus a small amount of SIMD-friendly fan-out beats textbook binary search by 2–4x on realistic workloads. The post is short, the benchmarks are reproducible, and the comments quickly turn into the usual delightful argument about whether std::lower_bound should be patched, whether the result holds once you account for cache pressure, and where the crossover with linear scan really lives.

I built a Game Boy emulator in F#

176 points · nickkossolapov.github.io

A long, well-illustrated writeup on building a cycle-accurate Game Boy emulator in F#, with particular focus on how the language’s discriminated unions made the opcode decoder pleasant instead of miserable. It’s the kind of post that’s half tutorial and half love letter: enough detail to actually learn from, and a strong implicit argument that ML-family languages still have an edge for this category of problem.