The best Hacker News stories from All from the past week
Latest posts:
Trump to impose $100k fee for H-1B worker visas, White House says
Nvidia buys $5B in Intel
Meta Ray-Ban Display
KDE is now my favorite desktop
Slack has raised our charges by $195k per year
WASM 3.0 Completed
Apple Photos app corrupts images
Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised
A lot of blogs on this are AI generated and such as this is developing, so just linking to a bunch of resources out there:<p>Socket:<p>- Sep 15 (First post on breach): <a href="https://socket.dev/blog/tinycolor-supply-chain-attack-affects-40-packages" rel="nofollow">https://socket.dev/blog/tinycolor-supply-chain-attack-affect...</a><p>- Sep 16: <a href="https://socket.dev/blog/ongoing-supply-chain-attack-targets-crowdstrike-npm-packages" rel="nofollow">https://socket.dev/blog/ongoing-supply-chain-attack-targets-...</a><p>StepSecurity – <a href="https://www.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised" rel="nofollow">https://www.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-p...</a><p>Aikido - <a href="https://www.aikido.dev/blog/s1ngularity-nx-attackers-strike-again" rel="nofollow">https://www.aikido.dev/blog/s1ngularity-nx-attackers-strike-...</a><p>Ox - <a href="https://www.ox.security/blog/npm-2-0-hack-40-npm-packages-hit-in-major-supply-chain-attack/" rel="nofollow">https://www.ox.security/blog/npm-2-0-hack-40-npm-packages-hi...</a><p>Safety - <a href="https://www.getsafety.com/blog-posts/shai-hulud-npm-attack" rel="nofollow">https://www.getsafety.com/blog-posts/shai-hulud-npm-attack</a><p>Phoenix - <a href="https://phoenix.security/npm-tinycolor-compromise/" rel="nofollow">https://phoenix.security/npm-tinycolor-compromise/</a><p>Semgrep - <a href="https://semgrep.dev/blog/2025/security-advisory-npm-packages-using-secret-scanning-tools-to-steal-credentials/" rel="nofollow">https://semgrep.dev/blog/2025/security-advisory-npm-packages...</a>
macOS Tahoe
Hosting a website on a disposable vape
EU court rules nuclear energy is clean energy
Germany is not supporting ChatControl – blocking minority secured
I didn't bring my son to a museum to look at screens
US High school students' scores fall in reading and math
Pontevedra, Spain declares its entire urban area a "reduced traffic zone"
New Mexico is first state in US to offer universal child care
iPhone Air
Signal Secure Backups
NPM debug and chalk packages compromised
<a href="https://github.com/advisories/GHSA-8mgj-vmr8-frr6" rel="nofollow">https://github.com/advisories/GHSA-8mgj-vmr8-frr6</a>
Show HN: I recreated Windows XP as my portfolio
Years ago I stumbled across a basic version of this concept and it stuck with me. I knew if I was ever going to take on such a project, it would need to be flawless, but without coding experience it was just another idea that would never happen. By the end of 2024, as AI coding tools exploded everywhere, I finally had a way to make it real.<p>I started from zero knowledge and spent months collaborating with AI agents as a learning experience. Every pixel and every function went through me. The AI translated what I asked for into code, but every decision was human. I didn't use existing OS frameworks because the goal was learning how basic coding languages worked while also developing my skills with AI collaboration. Apart from basic libraries like xp.css and paint.js, it's all original code.<p>The result is a fully functional Windows XP recreation running in your browser. Complete experience with sounds, animations, and working applications. Even works properly on mobile, which required rebuilding everything to maintain the authentic feel without becoming unusable on touchscreens.<p>This project taught me more about coding and AI collaboration than I ever expected. Would love to hear your thoughts on the execution and any feedback on the technical approach.