Hi there!

🛡️ Security & Privacy

• Notepad++ CVE-2026-3008: a %s format specifier in nativeLang.xml triggers a string injection in FindInFiles, enabling DoS crashes and memory address leaks that can bypass ASLR. Patched in v8.9.4; update immediately. More
• GitHub RCE CVE-2026-3854 (CVSS 8.7): Wiz Research found a header injection flaw in GitHub's internal X-Stat git push pipeline — a single git push -o compromises GHES with full file system access, and worked on GitHub.com too. GitHub mitigated cloud-side in 6 hours; 88% of GHES instances remain unpatched. More
• CopyFail (CVE-2026-31431): a nine-year-old logic bug in the Linux kernel's algif_aead crypto module lets any unprivileged user write 4 bytes into the page cache of a setuid binary and get root — reliably, in 732 bytes of Python, on every Linux distribution since 2017. Patch your kernel; interim mitigation: rmmod algif_aead. Reported on oss-security and disclosed publicly April 29. More | More
• PyTorch Lightning supply chain attack (Shai-Hulud themed): versions 2.6.2–2.6.3 on PyPI ship malware that runs on import, steals credentials from 80+ paths, GitHub tokens, AWS/Azure/GCP secrets, and CI runner memory. It then worms into npm packages the victim can publish. It also plants persistence via Claude Code's SessionStart hook — possibly the first documented real-world abuse of that hook system. More
• Adversarial malware for Linux ELF binaries: Czech Technical University researchers achieve a 67.74% evasion rate against ML-based malware detectors by injecting strings typical of benign files as semantic-preserving transformations — a gap in Linux-focused security research. More

🛸 Tech

• Warp goes open-source (AGPL) with an agent-first contribution model: OpenAI's GPT models power the Oz orchestration platform while community members supervise and verify output, not write it. The first fully open agentic development environment. More
• Ghostty is leaving GitHub: Mitchell Hashimoto (GitHub user #1299 since 2008) documents near-daily outages blocking PR reviews and CI for months, finally deciding the platform no longer works for serious OSS projects. A read-only mirror will remain. More
• ChatGPT ads attribution loop dissected: live network captures reveal single_advertiser_ad_unit objects injected into the SSE stream, four Fernet-encrypted tokens per ad, and the oaiq.min.js SDK writing __oppref cookies on merchant sites — a full closed-loop ad attribution pipeline. More
• Keep Android Open: starting September 2026, Google requires every Android developer — including sideloaders and F-Droid contributors — to register with government ID. 69 organizations from 21 countries, including EFF, GNOME Foundation, Tor Project, and Proton, signed an open letter opposing it. More
• Zed 1.0: the GPU-rendered, Rust-built editor hits its first stable release, shipping parallel AI agents, keystroke-granularity edit predictions, the Agent Client Protocol for Codex/Cursor/Claude, and a DeltaDB CRDT sync engine on the roadmap. More
• OpenAI launches Advanced Account Security: ChatGPT and Codex accounts can now replace passwords with passkeys or hardware keys, with email/SMS recovery disabled. YubiKey 2-pack available at $68 (vs. $126 retail). Required for Trusted Access for Cyber members by June 1. More
• VS Code PR #310226 controversy: a single-line change flips git.addAICoAuthor default from "off" to "all" in v1.118, silently adding Co-authored-by: Copilot to every commit — even for users who never invoked Copilot and had AI features disabled. 372 thumbs-down on the PR. More
• DO_NOT_TRACK=1: a proposed universal environment variable standard for opting out of telemetry across CLI tools and SDKs — analogous to NO_COLOR. One line in your shell config, respected by all compliant tools. More

🤖 AI

• NVIDIA Nemotron 3 Nano Omni drops as a single open-weight model (30B params, 3B active via MoE) that unifies vision, audio, and language — replacing fragmented multi-model pipelines with 9x the throughput of comparable omni models. More
• Claude Code Ultrareview launches as a cloud-hosted multi-agent pre-merge code review that independently reproduces and verifies every finding before reporting it. Pro/Max users get 3 free runs; paid reviews run ~$5–$20. More
• Anthropic adds 9 MCP connectors for creative pros — including Blender, Adobe Creative Cloud, Ableton, Autodesk Fusion, SketchUp, Affinity by Canva, and Splice — letting Claude work inside the tools designers already use. Anthropic also became a Blender Development Fund patron. More
• Red Hat engineers a hardened OS for AI agents using fedora-bootc — an immutable, image-defined Linux built at compile time so agents run in a reproducible, drift-free environment. The work previews upcoming Kagenti project on Red Hat AI. More
• OpenAI explains ChatGPT's goblin obsession: reward signals from the "Nerdy" personality training caused the model to generalize creature-language to all responses, with goblin mentions up 175% after GPT-5.1. OpenAI retired the personality, filtered training data, and built new audit tooling. More
• xAI Grok 4.3 brings native video input, a 1M-token context window, ~40% API price cuts ($1.25/M tokens input), and a new TTS/STT voice suite — quietly released first to SuperGrok Heavy subscribers. More
• DeepSeek V4-Pro and V4-Flash land as 1T and 284B MoE open-weight models priced at $1.74 and $0.14 per million input tokens respectively — frontier-competitive at a fraction of the cost, with quantized Flash potentially running on 128GB MacBook Pro. More
• Claude Code HERMES.md billing bug: the string HERMES.md in any recent git commit silently re-routes requests to extra-usage billing instead of your Max plan quota — some users lost $200+ before diagnosing a content-filter false positive. Anthropic confirmed refunds are being issued. More
• "I gave an AI agent the keys to my life" — Radek Sienkiewicz's firsthand account of granting progressively wider permissions to an always-on AI agent over several months, covering what it got right, wrong, and unexpectedly right. More
• Anthropic's Claude Code Security Review program now gives verified security researchers and enterprise defenders access to more permissive Claude Code capabilities for vulnerability research, requiring Advanced Account Security enrollment by June 1. More

🛠️ Tools

• LocalSend: free, open-source cross-platform AirDrop alternative — transfers files over local Wi-Fi using HTTPS/REST, no internet, no account, no size limits. Available on Windows, macOS, Linux, Android, and iOS. More
• OpenTrafficMap: open-source real-time C-ITS traffic visualization using ESP32 + 802.11p receivers to display live traffic light phases, vehicle positions, and road hazards — privacy-preserving and fully self-hostable. More
• OpenWarp: community fork of Warp's open-source client that opens the AI layer entirely — plug in any OpenAI-compatible provider (Anthropic, Gemini, Ollama, DeepSeek), author dynamic system prompts with minijinja templates, zero telemetry. More
• WhatCable: macOS menu bar app (Apple Silicon, Sonoma+) that reads IOKit to decode what every USB-C cable plugged into your Mac can actually do — Thunderbolt tier, speed rating, wattage cap, e-marker chip vendor, PDO profiles. More
• Ghostbox (ghost.charity): one command spawns a disposable dev machine siphoned from GitHub Actions free-tier runners — SSH in, expose a port, give an AI agent a shell, let the machine expire when done. More

💨 Misc

Why Noctua's black fans take so long: changing pigment color in precision injection-molded fans isn't painting — carbon black particles alter melt viscosity and crystallization behavior at 0.5mm blade tip clearances, requiring entirely new tooling, fresh validation runs, and a minimum 6-month delay after the brown version ships. More

📩 Please feel free to share this article with colleagues and friends who will find it valuable.

Thanks for reading!

Have a great day!
Bogdan