Top stories

  1. Anonymous GitHub account dumps exploit PoCs framed as undisclosed 0-days An anonymous GitHub account ("exploitarium") published a single archive of working exploit proof-of-concepts with a note that none were reported at posting time, inviting readers to report them and claim any assigned CVE. A FemtoSec threat-intelligence writeup assessed the archive as rederived public exploits for already documented vulnerabilities, not genuine unpatched 0-days, naming CVE-2026-55200 (libssh2 heap overflow, CVSS 9.2), CVE-2026-20896 (Gitea auth bypass, CVSS 9.8), and CVE-2025-62408 (c-ares DoS), and noting the PoCs remain highly functional against unpatched systems.
  2. Asian AI labs ship Mythos-style cyber models as Anthropic export ban persists TechCrunch reported 2026-06-27 that at least two non-US labs launched security-focused models into the gap left by the US foreign-access ban on Anthropic Mythos 5 and Fable 5: Tokyo-based Sakana AI released Fugu, an agent-oriented model it claims stands alongside Fable 5 and Mythos Preview and can orchestrate other models through their APIs, and Chinese security firm 360 unveiled Tulongfeng for vulnerability discovery. The capability claims are the vendors' own and are not independently verified.
  3. Codeberg offline after power loss at primary location Codeberg, the nonprofit Forgejo-based code-hosting platform, went fully offline early 2026-06-28 (reported from ~00:18 CEST) after a power outage at its primary location took down most of its servers. The provider attributed the outage to the power event on its status page; no restoration time was given at run time.

ML research

  1. RiVER trains LLMs with reinforcement learning and no ground-truth answers A preprint introduces RiVER (Ranking-induced VERifiable framework), which applies reinforcement learning to score-based tasks without ground-truth solutions by using deterministic execution feedback as continuous-valued reward. The authors identify and address two failure modes of group-relative RL on continuous rewards: scale dominance, where uncalibrated score magnitudes across instances distort updates, and a calibration issue in reward normalization.

Agentic coding

  1. Codex still lacks a built-in way to exclude sensitive files from agent reads A long-open OpenAI Codex enhancement request, "A way to exclude sensitive files" (opened 2025-08-28, labeled enhancement and sandbox, 84 comments, still open), resurfaced on Hacker News on 2026-06-28. The request asks for a mechanism to keep files such as .env and credential stores out of the set the coding agent can read, so secrets do not enter the agent context or get sent to the model. No resolution had shipped at run time.

Linux and kernel

  1. One developer maintains parallel RISC-V kernel ports The Register profiled a maintainer carrying two kernel codebases for RISC-V targets, detailing the duplication burden and the upstreaming friction behind keeping a less common architecture working. The piece is reporting and practitioner context rather than a kernel release.

Infrastructure

  1. ClickHouse rewrites WAL-G PostgreSQL backups in Rust as WAL-RUS ClickHouse published WAL-RUS on 2026-06-25, a Rust port of the Go-based WAL-G PostgreSQL backup and write-ahead-log archival tool, built to bound memory use on no-overcommit hosts through streaming I/O without full-segment buffering. ClickHouse's own benchmark reports WAL-RUS held virtual memory under 1 GB where WAL-G reached about 2.8 GB, a reduction above 70 percent, while both kept minimal WAL backlog under four concurrent workers. It reuses the existing WALG configuration variables, reads and writes WAL-G-compatible archives, and supports file, S3, and GCS backends with zstd, brotli, lz4, lzma, and gzip compression.

Engineering posts

  1. Fintech Engineering Handbook A practitioner write-up collecting patterns for payment and financial systems, covering idempotency keys, monetary-amount representation, and ledger design. It reached the Hacker News front page with substantive technical discussion.
  2. Teardown of Reddit's anti-spam internals Independent researcher Lyra (rebane2001) published a 2026-06-27 reconstruction of Reddit's spam-detection stack, assembled partly from an accidental internal exposure encountered while moderating subreddits in 2021. It describes layered systems: an integration of Google's Perspective API scoring an experimental spam attribute, a likelihood scorer the author calls Spammit, a Lua rules engine with a keyword-filter subsystem, and newer streaming pipelines built on Flink Stateful Functions with OCR, alongside TLS and browser fingerprinting and live URL inspection that follows redirects to correlate embedded analytics identifiers.
  3. Clustering two AMD Strix Halo machines over RDMA for local LLM inference A practitioner setup guide documents clustering two AMD Strix Halo machines (Framework Desktop boards, 128 GB unified memory each) over RDMA using ConnectX-5 100G NICs to run larger open-weight models such as DeepSeek V4 Flash and GLM 5.2 via tensor parallelism. The guide notes the PCIe 4.0 x4 slot (about 64 Gbps) bottlenecks the 100G NIC and that Strix Halo memory bandwidth (around 300 GB/s) trails Apple Silicon (600+ GB/s), with Thunderbolt offered as a lower-latency alternative interconnect.

Markets and companies

  1. Google caps Meta's Gemini capacity amid compute shortage The Financial Times reported 2026-06-28 that Google limited Meta's use of its Gemini models after Meta sought more capacity than Google could supply, telling Meta around March it could not meet the full purchase. The shortfall disrupted and delayed some Meta AI projects, and Meta told staff to use AI tokens more efficiently. Other Google cloud customers faced capacity limits too, but Meta was hit hardest because its demand was especially high. Reuters and CNBC carried the FT report; Google and Meta did not confirm specifics.
  2. Austria lobbies EU to host Anthropic after US foreign-access curbs Bloomberg reported 2026-06-28 that Austrian State Secretary for Digitalization Alexander Proell wrote to European Commission Executive Vice President Henna Virkkunen proposing the EU explore "the strategic establishment and participation of Anthropic within the European Union," offering legal certainty, market access, and capital. The move responds to the 2026-06-12 US export-control directive that blocked all foreign-national access to Anthropic Fable 5 and Mythos 5.

Hacker News

  1. DeepSeek DSpark speculative-decoding paper tops Hacker News The DSpark speculative-decoding paper PDF reached the top of Hacker News (728 points, ~300 comments), extending the 2026-06-27 coverage of DeepSeek's DeepSpec release and the DSpark draft module for DeepSeek-V4 checkpoints. The new signal is the paper itself and the practitioner discussion; speculative decoding is lossless and DeepSeek frames DSpark as a module attached to an existing checkpoint, not a new model.
  2. Crates.io maintainer dissects a fake-recruiter supply-chain lure Matt Mastracci (crates.io maintainer) published a teardown of a fake-VC ("Lua Ventures") job-interview lure delivering a TypeScript "ferry app" repo whose patched typescript dependency ran a staged loader (base64/XOR stub, hidden image chunk, WebAssembly, a detached Node RAT) on execution. He avoided compromise by inspecting the repo with an AI agent before running it. The thread reinforces the recurring developer-targeted fake-recruiter supply-chain vector tracked since the 2026-06-16 npm-backdoor item.