Found 56222 bookmarks
Newest
Google launches Nano Banana 2 Lite for fast AI images and Gemini Omni Flash for video via API
Google launches Nano Banana 2 Lite for fast AI images and Gemini Omni Flash for video via API
Google adds two new generative AI models. Nano Banana 2 Lite generates images in four seconds at $0.034 a pop. Gemini Omni Flash brings video generation and editing via text prompts to the API for the first time. Google recommends chaining both models to go from a quick image to an animated video.
·the-decoder.com·
Google launches Nano Banana 2 Lite for fast AI images and Gemini Omni Flash for video via API
Do excellent vulnerability reports
Do excellent vulnerability reports
Over the years, we have received, read and handled way over one thousand vulnerability reports filed against curl. We have seen most kinds. It is time for me to try to help future reporters by providing a short guide on how to submit a truly excellent vulnerability report to an Open Source project. Researchers We … Continue reading Do excellent vulnerability reports →
·daniel.haxx.se·
Do excellent vulnerability reports
Skipping Percona Server for MySQL 8.4.9 and 9.7.0
Skipping Percona Server for MySQL 8.4.9 and 9.7.0
We're skipping 8.4.9 and 9.7.0 and folding the upstream CVE fixes into 8.4.10 and 9.7.1. Here's what to upgrade to and why.
·percona.com·
Skipping Percona Server for MySQL 8.4.9 and 9.7.0
Introducing Claude Sonnet 5 \ Anthropic
Introducing Claude Sonnet 5 \ Anthropic
Our most agentic Sonnet yet, with top-tier intelligence for coding and everyday professional work.
·anthropic.com·
Introducing Claude Sonnet 5 \ Anthropic
Clone This Repo and I Own Your Machine
Clone This Repo and I Own Your Machine
Indirect prompt injection in agentic coding tools can lead to full system compromise because authorized tools allow LLMs to run shell commands, access files, and make network calls without clear user visibility. An attacker can gain code execution using a completely normal looking repository by chaining trusted setup instructions, routine error handling, and automated agent behavior. The malicious payload does not exist in the repository at all and is instead fetched at runtime from a DNS TXT record, making it invisible to code review, static scanners, and even the agent itself. The result is a reverse shell running as the developer’s own user, exposing credentials, API keys, and allowing persistence, all triggered by the agent attempting to fix a harmless looking setup error.
·0din.ai·
Clone This Repo and I Own Your Machine
Memory Prices from Stanford
Memory Prices from Stanford
Historical and current prices for DRAM, HBM, and NAND flash.
·dam.stanford.edu·
Memory Prices from Stanford
ZSeven-W/openpencil: The world's first open-source AI-native vector design tool and the first to feature concurrent Agent Teams. Design-as-Code. Turn prompts into UI directly on the live canvas. A modern alternative to Pencil.
ZSeven-W/openpencil: The world's first open-source AI-native vector design tool and the first to feature concurrent Agent Teams. Design-as-Code. Turn prompts into UI directly on the live canvas. A modern alternative to Pencil.
The world's first open-source AI-native vector design tool and the first to feature concurrent Agent Teams. Design-as-Code. Turn prompts into UI directly on the live canvas. A modern alternativ...
·github.com·
ZSeven-W/openpencil: The world's first open-source AI-native vector design tool and the first to feature concurrent Agent Teams. Design-as-Code. Turn prompts into UI directly on the live canvas. A modern alternative to Pencil.
Using Local Coding Agents
Using Local Coding Agents
Using Open-Weight Models in Local Coding Harnesses as an Alternative to Claude Code and Codex Subscriptions
·magazine.sebastianraschka.com·
Using Local Coding Agents
calesthio/OpenMontage: World's first open-source, agentic video production system. 12 pipelines, 52 tools, 500+ agent skills. Turn your AI coding assistant into a full video production studio.
calesthio/OpenMontage: World's first open-source, agentic video production system. 12 pipelines, 52 tools, 500+ agent skills. Turn your AI coding assistant into a full video production studio.
World's first open-source, agentic video production system. 12 pipelines, 52 tools, 500+ agent skills. Turn your AI coding assistant into a full video production studio. - calesthio/OpenMontage
·github.com·
calesthio/OpenMontage: World's first open-source, agentic video production system. 12 pipelines, 52 tools, 500+ agent skills. Turn your AI coding assistant into a full video production studio.
How I hunt for vulnerabilities with AI | ClickHouse
How I hunt for vulnerabilities with AI | ClickHouse
I'm an experienced software engineer, but I'm not a seasoned bug bounty hunter. I used GitHub Copilot in combination with Claude Opus and Gemini models to search for vulnerabilities in the ClickHouse codebase, generate hypotheses, and speed up validation.
·clickhouse.com·
How I hunt for vulnerabilities with AI | ClickHouse
I don't wonder how this happens after two decades of experience in infra roles. I've seen things! | Nearly a million passports just exposed on the public internet—and anyone could access them with a simple URL
I don't wonder how this happens after two decades of experience in infra roles. I've seen things! | Nearly a million passports just exposed on the public internet—and anyone could access them with a simple URL
Nearly one million passports and driver's licenses from multiple countries were left unprotected online with zero password protection. Here's what happened.
·cambridgeanalytica.org·
I don't wonder how this happens after two decades of experience in infra roles. I've seen things! | Nearly a million passports just exposed on the public internet—and anyone could access them with a simple URL
Cynthia Brumfield (@metacurity.com)
Cynthia Brumfield (@metacurity.com)
The revised targeting principles, approved without public disclosure in April, envision “systems where AI initiates actions with human monitoring,” instead of “‘human in the loop’ systems, in which a human initiates actions.” https://www.bloomberg.com/news/articles/2026-06-25/pentagon-sees-broader-role-for-ai-in-setting-military-targets
·bsky.app·
Cynthia Brumfield (@metacurity.com)