SWE ran at least one mile every single day for 10 years straight, tracking 3,653 consecutive runs through sickness, injuries, and extreme weather conditions. He built an interactive dashboard visualizing the decade of data, sparking debate about whether such dedication crosses the line from healthy habit into dangerous obsession. MORE

Critical NVIDIA AI Vulnerability: A Three-Line Container Escape in NVIDIA Container Toolkit (CVE-2025-23266). New critical vulnerability with 9.0 CVSS presents systemic risk to the AI ecosystem, carries widespread implications for AI infrastructure. MORE

Former OpenAI employee shares insider perspectives on the company's rapid growth from 1,000 to 3,000 people in one year, revealing a bottoms-up culture where everything runs on Slack and good ideas can come from anywhere. The author details launching Codex in just 7 weeks and describes OpenAI as frighteningly ambitious, competing across dozens of areas while maintaining its commitment to distributing AI benefits widely. MORE

Curated information pipeline for staying current with rapidly evolving AI technology, featuring trusted sources from Simon Willison to official lab announcements. The guide helps avoid AI misinformation while building solid understanding of capabilities and limitations. MORE

Leaking IPs in Brave Tor Window & Chrome VPNs + Popunders + CSP Bypass. Find out how a few simple yet effective bugs affected almost all Chrome VPN Extensions as well as Brave's browser Tor window. MORE

Obsidian's bases syntax got another upgrade. This commit by Kepano improves how he displays and sorts notes, adding new formulas and data views for better organization. MORE

Slack is cracking down on non-Marketplace apps by slashing rate limits for conversation history APIs from unlimited to just 1 request per minute. The changes target potential data scraping while pushing developers toward Slack's official Marketplace for commercial distribution. MORE

OpenAI's experimental reasoning model just achieved gold medal performance on the 2025 International Math Olympiad, solving 5 of 6 problems and scoring 35/42 points. This breakthrough represents a major leap in AI's ability to handle complex, multi-hour mathematical reasoning tasks that require sustained creative thinking. MORE

Lee Robinson, former Vercel VP of Developer Experience, is joining Cursor to create educational content about AI-powered coding. MORE

Learn how to validate your startup idea in just 2 days using the Foundation Sprint methodology. This rapid testing framework helps entrepreneurs quickly determine if their concept has market potential before investing significant time and resources. MORE

Ali (software engineer) seeks advice on evaluating early-stage startups, asking about key interview questions and founder traits to look for. The Twitter thread reveals insights like asking about dev equipment quality, 30-day success metrics, and seeking founders with domain expertise who balance speed with employee needs. MORE

Junior designer’s career transformed after posting a single animated UI component recreation on Twitter, leading to jobs at top tech companies like Vercel and Linear. This story shows how sharing your work publicly can unlock unexpected opportunities and accelerate your career growth. MORE

Mozilla announced Pocket's shutdown, sparking a Hacker News discussion about alternatives. Users are migrating to options like Folio (built by ex-Pocket head of product), self-hosted Wallabag, Readwise Reader, and Instapaper, with many preferring self-hosted solutions to avoid future shutdowns. MORE

Bread shares a walkthrough of a complete Linux productivity workflow featuring essential programs, custom scripts, and notebook organization techniques. MORE

Bashbunni showcases how customizing the i3 window manager transformed Linux into her most productive operating system. Learn specific configuration tweaks and workflow optimizations that can dramatically boost your Linux desktop efficiency. MORE

Raycast AI Extensions let you interact with apps and services using natural language by typing @ to mention extensions like @calendar or @spotify in your AI chats and commands. You can install third-party extensions from the Raycast Store and customize them with instructions to automate tasks across your workflow seamlessly. MORE

The Fit Check Method offers a systematic approach to tackling complex technical problems without getting overwhelmed or burned out. MORE

Jack Dorsey's new Bluetooth messaging app Bitchat sparked fierce debate after security researchers found serious vulnerabilities. While the flaws are real and concerning, the polarized response reveals both the challenges of building secure messaging and problematic patterns in how we evaluate emerging security products. MORE

65% of hackers are not enjoying HackerOne's new UI. MORE

James Kettle shared hostile pushback from the creator of curl after he promoted his research with a website. MORE

Caido acquired the Shift Plugin by rez0 and Rhynorater. Shift is a a smart AI companion for your hacking. It can craft payloads, Match&Replace rules, HTTPQL queries and much more. MORE

How Much More Must We Bleed? - Citrix NetScaler Memory Disclosure (CitrixBleed 2 CVE-2025-5777). MORE

XBOW's AI-powered security testing discovered a sneaky arbitrary file read vulnerability in the popular WordPress Ninja Tables plugin. The autonomous pentester methodically mapped endpoints, found a hidden download function, and exploited it to access sensitive server files like /etc/os-release. MORE

How attackers can hide malicious instructions in emails that trick Google Gemini into displaying fake phishing warnings when users click "Summarize this email." The attack uses invisible HTML text that Gemini treats as admin commands, making victims believe Google is warning them about compromised accounts and urging them to call scammer phone numbers. MORE

Critical template injection vulnerability in Insomnia API Client that allows arbitrary code execution simply by importing malicious files or receiving crafted HTTP cookies from servers. MORE

FortiWeb Pre-Auth RCE (CVE-2025-25257). The flaw exploits an unsanitized Authorization header that gets directly concatenated into SQL queries, which can then be escalated to RCE using MySQL's file writing capabilities. MORE

Cate reveals a surprisingly simple performance hack: just pretend you're someone much better at the task. This mimicry technique works instantly across skills from conversation to chess, tapping into our natural ability to imitate excellence rather than overthinking the mechanics. MORE

Exploiting Self-XSS Using Disk Cache. Maybe you think the only way to do this is through a login CSRF — and if that’s the case, you’re wrong. MORE

Chrome extension that automatically replaces HackerOne's new dark theme colors with a custom color scheme for better visual consistency. MORE

TIL you can chain multiple AI extensions in Raycast to automate complex workflows with a single command, like starting a focus session while blocking calendar and updating Slack status. MORE

"The goal of life is to be excited to go to work and excited to go home." MORE

The Open Source Mindset Every Developer Needs: "Innovation is iteration." Travis Oliphant (creator of NumPy, SciPy) explains how it's not only code, but connection, that makes open source so powerful. MORE

Philosopher Alain de Botton explores how personal pain and hardship often drive the most powerful creative breakthroughs in art, literature, and innovation. He argues that suffering provides the emotional depth and urgency needed to produce truly meaningful work that resonates with others. MORE

Anne released her new ADHD-focused newsletter called Hypercurious. She was kicked out of school for disruptive behavior later discovered her ADHD diagnosis at 32, leading to groundbreaking research on "hypercuriosity" - an intense, impulsive drive to explore that thrives in our hyperconnected world. MORE

Older tweet from Patrick McKenzie sharing brutally honest tech industry insights that "everyone knows" but rarely says out loud, from why ideas are worthless without execution to how most job applicants can't actually code. His thread reveals uncomfortable truths about hiring, funding, and the reality that there's no secret reserve of competent people running things anywhere. MORE

CVE-2025-48927 found in TeleMessage TM SGNL in May, and reported by KEV in July, allows attackers to trivially extract sensitive credentials via an unauthenticated, exposed /heapdump endpoint. MORE

Collection of links to folks and firms sharing outstanding work on the web. MORE

Joey Melo released over 1,000 AI red teaming payloads aligned with OWASP's AI Testing Guide to help security researchers test LLM vulnerabilities like prompt injection and data leakage. MORE

A Free OSINT Lesson: The "Velvet Sundown" Squatter Who Duped the News Media. Andrew Frelon: A fake band manager pretending to manage a band that doesn't exist. MORE

The Pragmatic Engineer surveyed 3,000+ developers about their 2025 tech stacks, revealing GitHub Copilot leads AI tools while newcomer Cursor surges as the second most-used IDE. The results show developers quickly adopt innovative AI tools but stick with established choices for programming languages and infrastructure. MORE