Hi there!

🛡️ Security & Privacy

• Glassworm Returns with Unicode Attacks - Invisible PUA Unicode characters exploiting 150+ GitHub repositories, npm packages & VS Code extensions simultaneously using AI-crafted commits. More
• DarkSword iOS Exploit in Infostealer Campaign - New vulnerability targeting iPhones via malicious apps stealing credentials and sensitive data at scale. More
• Firefox 149 Built-in VPN Launch - Mozilla deploying free, native VPN functionality directly in upcoming browser for enhanced privacy without extensions. More
• CVE-2026-3888: Critical Snap Privilege Escalation - Important vulnerability enabling local privilege escalation to root on snap-based Linux systems via snap configuration. More
• CISA Warns of Zimbra SharePoint Flaws - Active exploitation of messaging platform vulnerabilities leading to urgent patching recommendations across enterprises. More

🛸 Tech

• Chrome DevTools MCP Auto-Connection - Coding agents can now debug live browser sessions directly, selecting network requests/elements for AI investigation without re-authentication. More
• eBPF Spinlock Race Conditions in Linux Kernel - Deep-dive investigation exposing NMI interrupt vulnerabilities causing 250ms system freezes, fixed in kernel 6.19 via race condition patches. More
• Home Assistant Voice Guide - Comprehensive setup for locally-hosted voice control using LLM integration. More
• Open Hardware Directory: 630+ Devices - Extensive catalog of open-source development boards, IoT devices, robotics & smart home hardware with detailed specifications. More
• Astral + OpenAI - Astral's Python toolchain (Ruff, uv, ty) acquired by OpenAI for Codex integration; open-source tools maintained under Apache 2.0 license. More
• Google Android 24-Hour Sideload Process - New streamlined workflow for installing unverified Android apps securely through desktop integration. More
• UNC Computer Science Rules Guide - Academic perspective on robust software engineering practices and coding standards for development teams. More

🤖 AI

• Leanstral: Mistral's Open Proof Assistant - First open-source code agent for Lean 4 achieving 26.3 FLTEval score at $36 cost vs Sonnet's $549, bringing affordable formal verification to developers. More
• Anthropic Interviews - 80,508-person multilingual qualitative study spanning 159 countries examining AI visions, experiences, concerns through Claude-powered adaptive interviews with multi-label classification. More
• NVIDIA NemoClaw: Safe Autonomous Agents - Open-source stack with resilient spinlocks and privacy controls for running self-evolving AI agents locally using Nemotron models. More
• Claude Code Channels - New communication layer for Claude integration enabling seamless developer workflows and tool interoperability in coding environments. More
• Google DeepMind's AGI Measurement Framework - Establishing cognitive science principles for evaluating artificial general intelligence capabilities and reasoning benchmarks. More

🛠️ Tools

• Unsloth Studio Launch (Beta) - No-code local web UI for training/running 500+ AI models 2x faster with 70% less VRAM using optimized kernels. More
• Kalpa Desktop - Lightweight desktop environment optimizing resource usage for productive development workflows across Linux distributions. More
• OpenRocket Model Rocket Simulator - Open-source engineering tool for designing, simulating & optimizing model rockets with physics-based calculations. More
• NVIDIA NemoClaw GitHub - Repository containing safety controls, OpenShell runtime & Agent Toolkit for building trustworthy autonomous systems. More
• Cook CLI - Orchestrates multi-agent AI coding workflows via loop operators (xN, review, ralph) and composition operators (vN, vs) managing parallel git worktrees. More
• OpenCode AI Development - Collaborative platform for AI-assisted coding combining code completion with intelligent refactoring suggestions. More

🥢 Misc

• Visual ML Introduction Part 1 - Interactive educational content explaining decision trees, overfitting & statistical learning through animated illustrations. More
• ACM Turing Award: Quantum Information Science - Bennett & Brassard honored for foundational contributions to quantum cryptography and information theory. More
• French Aircraft Carriers Location Exposed via Strava - Security incident highlighting location tracking vulnerabilities when military personnel share fitness data publicly. More
• arXiv Declares Independence from Cornell - Preprint repository establishes independent governance structure maintaining scientific open-access principles. More
• Chopsticks Etiquette - Japanese dining glossary cataloging 48 chopstick faux pas behaviors, from structural violations to spatial transgressions, including two serious funeral taboos. More
• Chest Fridge - Chest fridges consume 0.1 kWh/day vs. traditional 1.0+ kWh/day; passive cold stratification with inverter compressors enable 10x efficiency gains, minimal power draw. More

📩 Please feel free to share this article with colleagues and friends who will find it valuable.

Thanks for reading!

Have a great day!
Bogdan