The Hacker News

Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
Morning Overview on MSN

ZX Spectrum with 48KB RAM pulls off a Kerbal moon landing

YouTuber and orbital mechanics expert Scott Manley has successfully landed a virtual Kerbal astronaut on the Mun, the in-game moon of Kerbal Space Program, using a ZX Spectrum home computer equipped ...
GitHub

feat: expose raw pg.zig query path from Python (no HTTP overhead)

Currently pg.zig queries can only be executed through TurboAPI's HTTP server (db_get, db_query decorators). There's no way to call pg.zig directly from Python without the HTTP round-trip. This means ...
Ars Technica

OpenAI is acquiring open source Python tool-maker Astral

OpenAI announced Thursday that it has entered into an agreement to acquire Astral, the company behind popular open source Python development tools such as uv, Ruff, and ty, and integrate the company ...
The Raw Story

'Tremendous blow' for Trump likely to be just first in wave of resignations: ex-general

Nicole Charky-Chami is a senior editor based in Los Angeles, writing and producing breaking news. She teaches journalism courses for UCLA Extension and previously taught at Loyola Marymount University ...
GitHub

SciTeX — Modular Python Toolkit for Researchers and AI Agents

AGPL-3.0 — because research infrastructure deserves the same freedoms as the software it runs on. .env.d/ ├── entry.src # Single entry point ├── 00_scitex.env # Base settings (SCITEX_DIR) ├── ...