Hacker News

Article URL: https://tachyon.so/blog/ssrfs-trickiest-issue

Comments URL: https://news.ycombinator.com/item?id=47254446

Points: 4

# Comments: 1

Article URL: https://github.com/akshan-main/vibe-check

Comments URL: https://news.ycombinator.com/item?id=47254441

Points: 2

# Comments: 1

Article URL: https://blog.unratified.org/2026-03-04-what-happens-when-ai-evaluates-ai-accuracy/

Comments URL: https://news.ycombinator.com/item?id=47254419

Points: 1

# Comments: 0

Article URL: https://www.aptible.com/hipaa/hipaa-compliant-ai

Comments URL: https://news.ycombinator.com/item?id=47254395

Points: 2

# Comments: 0

I built Scopo after reading Theo's [https://x.com/theo] post about the "Agentic Code Problem". The reality that developers now work on 3-4 projects simultaneously and spend more time switching between windows than actually building.

The core idea: macOS Spaces are already project boundaries. Why doesn't Cmd+Tab respect them?

Scopo replaces the system Cmd+Tab with one scoped to your current Space. Each Space is a project context. You see 3-4 relevant windows instead of a bunch of unrelated windows and apps.

I built it for myself, used it for weeks on my work machine, and realized I couldn't work without it when I switched to a machine that didn't have it.

Some implementation details:

- CGEventTap to intercept Cmd+Tab before the Dock handles it - Moving windows between spaces on macOS 15 is hard — all SLS/CGS private APIs are broken without SIP disabled. Scopo simulates a Mission Control drag (same technique as Hammerspoon's Drag.spoon) - TF-IDF + cosine similarity for smart window-to-project matching

Built with Swift/AppKit

https://scopo.app

First time launching something, would genuinely appreciate any feedback on the product or the implementation.

Comments URL: https://news.ycombinator.com/item?id=47254374

Points: 2

# Comments: 0

Article URL: https://ldpreload.com/blog/signalfd-is-useless

Comments URL: https://news.ycombinator.com/item?id=47254330

Points: 1

# Comments: 0

Article URL: https://deadbyapril.substack.com/p/day-1-i-woke-up-with-100-and-a-death

Comments URL: https://news.ycombinator.com/item?id=47254325

Points: 2

# Comments: 0

Article URL: https://www.poetryfoundation.org/poems/46560/dulce-et-decorum-est

Comments URL: https://news.ycombinator.com/item?id=47254322

Points: 2

# Comments: 0

Article URL: https://www.techdirt.com/2026/03/04/ftc-admits-age-verification-violates-childrens-privacy-law-decides-to-just-ignore-that/

Comments URL: https://news.ycombinator.com/item?id=47254315

Points: 7

# Comments: 0

Article URL: https://www.lloydslist.com/LL1156518/Trump%E2%80%99s-escort-announcement-met-with-scepticism-as-traffic-trickles-through-Strait-of-Hormuz

Comments URL: https://news.ycombinator.com/item?id=47253816

Points: 1

# Comments: 0

Comments URL: https://news.ycombinator.com/item?id=47253808

Points: 1

# Comments: 0

Article URL: https://apps.apple.com/us/app/ai-keyboard-chatwrite/id6756589549

Comments URL: https://news.ycombinator.com/item?id=47253804

Points: 1

# Comments: 1

Article URL: https://www.dailymail.co.uk/sciencetech/article-15614507/iphone-hacking-tool-coruna-spyware-warning.html

Comments URL: https://news.ycombinator.com/item?id=47253768

Points: 1

# Comments: 0

Article URL: https://lawfilesext.leg.wa.gov/biennium/2025-26/Pdf/Bills/House%20Bills/2321.pdf?q=20260304125517

Comments URL: https://news.ycombinator.com/item?id=47253747

Points: 2

# Comments: 0

Article URL: https://www.dailymail.co.uk/health/article-15614281/doctors-discover-type-colorectal-cancer-young-people.html

Comments URL: https://news.ycombinator.com/item?id=47253742

Points: 1

# Comments: 0

Article URL: https://reviews.ofb.biz/safari/article/1399.html

Comments URL: https://news.ycombinator.com/item?id=47253716

Points: 1

# Comments: 0

Article URL: https://news.cornell.edu/stories/2026/03/workers-who-love-synergizing-paradigms-might-be-bad-their-jobs

Comments URL: https://news.ycombinator.com/item?id=47253685

Points: 1

# Comments: 0

The demo loads two runs directly in your browser — no signup, no uploads, no network calls after page load.

Frank: a conservative agent. Verification returns VALID. Phil: an aggressive agent with tampered evidence. Verification returns INVALID and points to the exact line where the chain breaks.

The problem I was solving: when an AI agent does something unexpected in production, the post-mortem usually comes down to "trust our logs." I wanted evidence that could cross trust boundaries — from engineering to security, compliance, or regulators — without asking anyone to trust a dashboard.

How it works:

- Every action, policy decision, and state transition is recorded into a hash-chained NDJSON event log - Logs are sealed into evidence packs (ZIP) with manifests and signatures - A verifier (also in the demo) validates integrity offline and returns VALID / INVALID / PARTIAL with machine-readable reason codes - The same inputs always produce the same artifacts — so diffs are meaningful and replay is deterministic

The verifier and the UI are deliberately separated. The UI can be wrong. The verifier will still accept or reject based on cryptographic proof.

Built this before the recent public incidents around autonomous agents made it topical. Happy to answer questions about the architecture, the proof boundary design, or the gaps I'm still working on.

Comments URL: https://news.ycombinator.com/item?id=47253678

Points: 2

# Comments: 0

Article URL: https://xnacly.me/posts/2026/compiling-match-statements-to-bytecode/

Comments URL: https://news.ycombinator.com/item?id=47253643

Points: 1

# Comments: 0

Article URL: https://dontgetflocked.com/

Comments URL: https://news.ycombinator.com/item?id=47253639

Points: 1

# Comments: 0