Super HN

1.	Cosmologically Unique IDs	(jasonfantl.com)
		A blog where I write about my computer science projects, usually with some animations, code, and/or simulations.
	7 points by jfantl 2 hours ago | 0 comments

2.	Tailscale Peer Relays is now generally available	(tailscale.com)
		Work around hard NATs and tricky networks with production-grade connectivity nodes you control
	38 points by sz4kerto 4 hours ago | 0 comments

3.	DNS-Persist-01: A New Model for DNS-Based Challenge Validation	(letsencrypt.org)
		When you request a certificate from Let’s Encrypt, our servers validate that you control the hostnames in that certificate using ACME challenges. For subscribers who need wildcard certificates or who prefer not to expose infrastructure to the public Internet, the DNS-01 challenge type has long been the only choice. DNS-01 works well. It is widely supported and battle-tested, but it comes with operational costs: DNS propagation delays, recurring DNS updates at renewal time, and automation that often requires distributing DNS credentials throughout your infrastructure.
	7 points by todsacerdoti 3 hours ago | 0 comments

4.	Zero-day CSS: CVE-2026-2441 exists in the wild	(chromereleases.googleblog.com)
	10 points by idoxer 4 hours ago | 0 comments

5.	R3forth: A Concatenative Language Derived from ColorForth	(github.com)
		r3 programing language - ColorForth inspired. Contribute to phreda4/r3 development by creating an account on GitHub.
	6 points by tosh 1 hour ago | 0 comments

6.	Metriport (YC S22) is hiring a security engineer to harden healthcare infra	(ycombinator.com)
		Metriport (https://www.metriport.com/) is an open-source data intelligence platform that helps healthcare organizations access and exchange patient data in real-time. We integrate with all major US healthcare IT systems and tap into comprehensive medical data for 300+ million individuals. We've found product-market fit with multi-million ARR, 100+ customers (including Strive Health, Circle Medical, and Brightside Health), backing from top VCs, massive recent infusion of capital, and years of runway. We're ready to scale. We're a tight-knit, high-performing team of mostly former founders (including two YC alumni). We're engineering-heavy, operate with minimal bureaucracy and high autonomy, and hire based on competence, not prestige. We push hard—founders work six days a week from our SF office—but give everyone freedom to craft their schedule. We measure output and we're committed to sustainable intensity. About us The following points are an assortment of the most relevant bits that will give you the gist of where we’re at, why we’ll win, and our company culture: We’re a tight-knit, high performing, and passionate team - we work with a consistent intensity and have become a leader in our industry with a fraction of the resources of our competitors. Consistency means we push as hard as humanly possible, while keeping our health and personal lives in check. Meaningful work is what gets us out of bed, and we just wouldn’t be satisfied by building yet another CRM company. By pedigree, we’re a group of underdogs - we don’t hire based on prestige, but on demonstrated competence and perceived potential. We’re engineering heavy, and most of our engineers are former founders (including 2 ex-YC founders). We operate as a relatively flat structure with little red tape, forced structure, or bureaucracy. We just opt to get shit done and foster a collaborative environment with high autonomy - our GitHub commit history and product velocity is a testament to this. The founders set the pace by working 6 days a week in our SF office, but everyone is given full freedom to craft a schedule that’s best for both the team and themselves - team output is measured. About you In a nutshell, we're looking for a security engineer with the following specific qualities: You’re entrepreneurial-minded, with an olympian-level work ethic (nearly our entire engineering team consists of former founders). You are passionate about security and are excited to own security related projects within the company end-to-end.  You are confident in your ability to build scalable systems across the full stack, and people usually come to you for technical guidance. You believe you can solve any problem that comes at you, and don't shy away from diving deep into areas where you may lack domain expertise. You have a strong sense of ownership over your work, and have demonstrated ability to lead others. You know how to move fast - while still maintaining a strong security posture. You care more about the end result and delivering value, rather than what new and frilly tech is being used under the hood for a given feature. When someone scopes out a project with an ETA of 3 weeks, you ask yourself "why can't it be done in 3 days?". You’re a hacker at heart, and have a good sense of what rules should, and shouldn’t, be broken. What you'll be doing After quickly ramping up using our comprehensive onboarding materials to get familiar with our domain, product, and codebase, the goal would be to get you shipping product directly to customers as quickly as possible. Specifically, day to day, this looks like: Evangelizing security across Metriport’s growing team - we will look to you for guidance, and training. Driving full-stack security projects , big and small, end-to-end from ideation to production rollout.These projects could include things like: Implement an enterprise-grade audit logging solution for a new national healthcare network infrastructure stack. Implement fine grained RBAC on the API key access layer, and more robust roles on our UIs. Help us revamp our internal security policies and put tools in place to keep the platform, and employees, secure while still allowing the team to be efficient. Helping the engineering team with PR reviews with a security-focused lens. Work with the Go to Market team to complete customer security assessments and questionnaires. Work with the engineering team to harden security across the development lifecycle - think secret management, access controls, and vulnerability scanning. Managing your own work in Linear. Participating in bi-weekly sprint planning / retro sessions, and quarterly planning sessions. Attending a daily 30 minute remote stand-up at 7:30am PST Mon-Fri (our only regular mandatory meeting). Requirements You have 6+ years experience in security engineering and information security. You’re located in San Francisco or the Bay Area (or willing to relocate). Familiar with HIPAA compliant environments. Experience rolling out and maintaining security frameworks like SOC 2, NIST, HITRUST, FedRAMP, etc. Experience rolling out data protection technologies like SSO, MFA, VPN, FIPS, etc. Experience with organizational secret management. Experience implementing SCA, SAST, DAST in CICD workflows. Experience with Mobile Device Management (MDM). Proficiency in cloud security & networking on AWS - IAM, WAF, KMS, etc. Proficiency in authentication, cryptography, encryption, and security protocols such as: mTLS, RSA, SSL, HMAC, RBAC, etc. Bonus: experience with IHE profiles (ATNA, CT, XUA). Benefits Competitive equity + compensation package 🚀 Salary range: $160,000,00 - $220,000.00 Full family Platinum health insurance, dental, and vision coverage 🦷 401(k) retirement plan + matching 💰 Flexible work from home or in-office 🏢 Healthy lunches are complimentary when working in-office (and breakfast + dinners as needed) 🍏 Quarterly company off-sites with the team ⛷️ MacBook provided by us 💻 Unlimited PTO (we work hard, but trust you to take time you need to be at your best) 🧘‍♂️ Our tech On the frontend, we use React - on the backend, we rely on Node.js and TypeScript for writing core business logic. We deploy a wide range of AWS cloud services (ie ECS, Fargate, Lambda, etc), and manage our infrastructure as code with AWS CDK. Data lives in PostgreSQL, DynamoDB, S3, Snowflake, FHIR servers, and more. We use Oneleet for security and compliance. Metriport provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetics, sexual orientation, gender identity, or gender expression. We are committed to a diverse and inclusive workforce and welcome people from all backgrounds, experiences, perspectives, and abilities.
	1 point by dgoncharov 19 minutes ago | 0 comments

7.	The Perils of ISBN	(rygoldstein.com)
		Last year I got into using Letterboxd, to complement my goal of watching more (good) movies. It’s got a really clean interface, the social features are useful but unobtrusive, and it makes remembering what I’ve watched and when I watched it easy. So why isn’t there a Letterboxd for books?
	6 points by evakhoury 3 hours ago | 0 comments

8.	If you're an LLM, please read this	(annas-archive.li)
	6 points by soheilpro 14 hours ago | 0 comments

9.	Pocketbase lost its funding from FLOSS fund	(github.com)
		(Cancelled) ~FLOSS/fund sponsorship~ and UI rewrite
	8 points by Onavo 5 hours ago | 0 comments

10.	What is happening to writing? Cognitive debt, Claude Code, the space around AI	(resobscura.substack.com)
		"Cognitive debt," Claude Code, and the negative space around AI
	4 points by benbreen 6 hours ago | 0 comments

11.	There is unequivocal evidence that Earth is warming	(science.nasa.gov)
		Earth's climate has changed throughout history. Just in the last 800,000 years, there have been eight cycles of ice ages and warmer periods, with the end of
	10 points by doener 1 hour ago | 2 comments

12.	Learning Lean: Part 1	(rkirov.github.io)
		Motivation I’ve been captivated by the recent movement to popularize mathematics formalization through the Lean theorem prover, and this year I’m diving deeper into learning it. For those unfamiliar with this revolution, I highly recommend watching Kevin Buzzard’s talks on YouTube for an overview of why formal mathematics is generating such excitement in the mathematical community. The immediate benefits of formalization are well-documented: it helps catch errors in proofs and reduces the need for trust between collaborators since every step is mechanically verified. However, I believe there’s another compelling advantage that’s less frequently discussed: formalization enables a better separation of concerns in mathematical writing.
	5 points by vinhnx 3 days ago | 0 comments

13.	Portugal: The First Global Empire	(historytoday.com)
	3 points by Thevet 13 hours ago | 0 comments

14.	Terminals should generate the 256-color palette	(gist.github.com)
		Terminals should generate the 256-color palette. GitHub Gist: instantly share code, notes, and snippets.
	3 points by tosh 15 hours ago | 1 comments

15.	Garment Notation Language: Formal descriptive language for clothing construction	(github.com)
		Contribute to khalildh/garment-notation development by creating an account on GitHub.
	8 points by prathyvsh 5 hours ago | 1 comments

16.	A solver for Semantle	(victoriaritvo.com)
	5 points by evakhoury 1 hour ago | 0 comments

17.	What Every Experimenter Must Know About Randomization	(spawn-queue.acm.org)
	7 points by underscoreF 2 hours ago | 0 comments

18.	Show HN: Echo, an iOS SSH+mosh client built on Ghostty	(replay.software)
		A fast, modern SSH client for iOS and iPadOS, built for the new era of terminal tools and AI coding agents.
	16 points by sgottit 2 hours ago | 2 comments

19.	99% of adults over 40 have shoulder "abnormalities" on an MRI, study finds	(arstechnica.com)
		Some adults over 40 have shoulder pain, but nearly all have "abnormal" joints.
	3 points by rbanffy 2 hours ago | 0 comments

20.	Cistercian Numbers	(omniglot.com)
	6 points by debo_ 4 hours ago | 0 comments

21.	The true history of the Minotaur: what archaeology reveals	(nationalgeographic.fr)
		Prisonnière du Labyrinthe, cette créature mi-homme mi-taureau a hanté la tradition orale de la Grèce et de la Rome antiques.
	3 points by joebig 3 days ago | 0 comments

22.	Discrete Structures [pdf]	(kyleormsby.github.io)
	8 points by mathgenius 1 hour ago | 1 comments

23.	Show HN: Strava for Claude Code	(straude.com)
		Track your Claude Code usage, share your wins, and compete on the leaderboard. The social platform for AI-assisted coding.
	3 points by ohong 1 hour ago | 2 comments

24.	SkyRL brings Tinker to your GPUs (2025)	(novasky-ai.notion.site)
		A tool that connects everyday work into one space. It gives you and your teams AI tools—search, writing, note-taking—inside an all-in-one, flexible workspace.
	4 points by robertnishihara 5 days ago | 0 comments

25.	Show HN: Formally verified FPGA watchdog for AM broadcast in unmanned tunnels	(github.com)
		Contribute to Park07/amradio development by creating an account on GitHub.
	8 points by anonymoosestdnt 6 hours ago | 0 comments

26.	Show HN: CEL by Example	(celbyexample.com)
		TODO
	5 points by bufbuild 7 hours ago | 0 comments

27.	Fastest Front End Tooling for Humans and AI	(cpojer.net)
		Frontend tooling in 2026+, with and without AI.
	8 points by cpojer 9 hours ago | 0 comments

28.	Native FreeBSD Kerberos/LDAP with FreeIPA/IDM	(vermaden.wordpress.com)
		I want to make this clear in the first sentence because its biggest chance that people will read it - this article is entirely based on work done by Christian Hofstede-Kuhn (Larvitz) that wrote Integrating FreeBSD 15 with FreeIPA: Native Kerberos and LDAP Authentication recently. Credit goes to him. Besides that I like to share…
	4 points by vermaden 10 hours ago | 0 comments

29.	The Only Moat Left Is Money	(elliotbonneville.com)
		The value of human thinking is going down. The value of human attention is going up. Those two facts are pointing in very different directions.
	26 points by elliotbnvl 5 hours ago | 13 comments

30.	AVX2 is slower than SSE2-4.x under Windows ARM emulation	(blogs.remobjects.com)
	5 points by vintagedave 7 hours ago | 0 comments