Show HN: 3D Mahjong, Built in CSS
VoxJong is a CSS-based 3D Mahjong Solitaire game with a New Game option, hints, a timer starting at 0:00, and a 144-tile layout viewable in isometric or top-down perspectives with adjustable zoom.
Front-page articles summarized hourly.
ASF (Advanced Scripting Framework) is a JavaScript‑like scripting language implemented in VBA for Office apps (Excel, Access, etc.). It brings modern features to VBA: JS‑style syntax, object‑oriented and functional programming, rich array methods (map, filter, reduce), template literals, regex, and a COM object prototype extension. It adds an ES‑style module system (.vas) with import/export and module caching, plus VBA integration and optional Office object access (AppAccess). It covers error handling, Office integration, and security/best‑practice guidance, while noting limitations (no async/await, no const/var, etc.).
Could not summarize article.
VoxJong is a CSS-based 3D Mahjong Solitaire game with a New Game option, hints, a timer starting at 0:00, and a 144-tile layout viewable in isometric or top-down perspectives with adjustable zoom.
While debugging an open-source library, a breakpoint failed to interrupt execution. Frustrated, the author added more logging but gained little insight. Realizing the problem was with the debugger itself, they fixed its configuration in a single line, then diagnosed and resolved the bug more effectively. The lesson: sometimes you must fix the tool before the bug, as the tool’s flaws hinder problem solving. The post urges fixing your tools to improve debugging.
OTOCs (Out of Time Order Correlators) quantify quantum chaos. Quantum Echoes measures OTOCs by forward evolution U, a perturbation B, backward evolution U†, and a final probe M. Without perturbation the system would revert; with B a butterfly-like chaos emerges. Higher-order OTOCs exhibit many-body interference, amplifying the signal; the OTOC decays with a negative power of time, making quantum measurements far more efficient than classical simulations. Experiments on the Willow 65-qubit device show potential practical uses such as Hamiltonian learning and probing microscopic structures (e.g., via NMR-like spectroscopy).
Researchers introduced BinaryAudit, a benchmark for AI-based malware analysis on binaries without source code. They injected backdoors into open-source binaries (lighttpd, dnsmasq, Dropbear, Sozu) to test whether AI agents can locate malicious code using Ghidra, Radare2 and binutils. Across models (Claude Opus 4.5/4.6, Gemini 3 Pro), success ranged from 37% to 49%, with high false positives (~28% on clean binaries). Backdoors were small and buried; models often chased noise or used heuristics, missing real threats. Limitations include tool quality vs IDA Pro and Rust/Go issues. Conclusions: AI helps but isn’t production-ready; future work includes context engineering and private models.
Xweather Live provides a live weather forecast map.
Sammy Azdoufal, a software engineer, uncovered a security flaw in DJI's Romo robot vacuums that allowed access to live feeds, audio, maps, and status for about 7,000 robots across 24 countries. By reverse-engineering how the devices communicate with DJI’s servers using AI-assisted coding, he could authenticate as owner for many devices. He did not exploit the flaw and reported it to The Verge; DJI patched the vulnerability automatically, underscoring ongoing smart-home privacy risks as households add more connected robots.
Iranian students staged large anti-government protests across multiple universities, including Sharif University of Technology in Tehran—the first such scale since January’s crackdown. Footage shows anti-government chants and clashes with government supporters; peaceful sit-ins were also reported at Shahid Beheshti University and Amir Kabir University. In Mashhad, students called for freedom. It’s unclear if arrests occurred. January’s protests were the largest since 1979; HRANA says thousands have been killed in the crackdown, while authorities say most deaths were security personnel or rioters. The protests unfold amid US-Iran tensions and renewed nuclear talks.
Bloomberg displays a bot-check prompt instructing users to prove they’re not a robot, with notes that JavaScript and cookies must be enabled; it links to Terms of Service and Cookie Policy, offers support with a block reference ID, and promotes a Bloomberg.com subscription.
Volatility 3 is the Volatility Foundation’s 2019 rewrite of the volatile-memory analysis framework. It analyzes RAM to extract artifacts independently of the host system. It’s Python 3.8+ based; install via pip or clone the repo and install in editable mode. Quickstart: install dependencies, run vol <plugin>, and supply a memory image with -f. Symbol packs for Windows, macOS, and Linux are provided; the first run updates caches. Documentation and licensing (VSL) are online, with community support via GitHub and Slack.
Susam Pal argues that social networks shifted from genuine social platforms to “attention media” that harvest users’ time, with endless scrolling and manipulative notifications turning feeds into noise and eroding meaningful connections. By 2016, posts from strangers crowded out friends, like a loud broadcast. Pal praises Mastodon as a return to the originals: a small, selective following, real updates, and a calm timeline, with no bogus notifications, and hopes it stays that way.
Advances in imaging and genetic engineering reveal a jam-packed cytoplasm in living cells, with crowding actively tuned to optimize billions of chemical reactions per second. Researchers measure density and track movement with GEMs (40 nm nanoparticles); ribosomes act as crowding agents and are controlled by mTORC1. In yeast and cultured cells crowding is ~30–40% of volume, but in C. elegans worms the cytoplasm is about 50x more crowded, and GEMs move sluggishly unless ANC-1 scaffolding is disrupted, indicating multiple crowding-control mechanisms. A new subfield applies to organoids and tissues, showing tissue-specific crowding with implications for health and cancer.
A Vercel Security Checkpoint page shows a browser verification and prompts enabling JavaScript to continue, effectively blocking access.
Porkbun now requires photo ID verification for a subset of new accounts to meet ICANN obligations, ensure accurate contact details, and curb fraud and abuse that drive costs and degrade service. After trying other controls, they’ve targeted regions and signals where ID checks help. Verification is handled by Veriff, whose process complies with GDPR and SOC 2. Porkbun does not store ID photos or tie ID data to accounts; verification is only used to validate access. The aim is a safer internet and a trustworthy registrar while keeping prices low.
Database transactions are atomic sequences of reads and writes that begin with BEGIN and end with COMMIT or ROLLBACK. Postgres uses multi-versioning (new row versions with xmin/xmax) for consistent reads, plus VACUUM FULL to reclaim old versions; MySQL uses an undo log to reconstruct past versions after overwriting data. Isolation levels—Serializable, Repeatable Read, Read Committed, Read Uncommitted—trade safety for performance, with phantom, non-repeatable, and dirty reads possible at lower levels. In SERIALIZABLE mode, MySQL uses row locks; Postgres employs Serializable Snapshot Isolation with predicate locks and optimistic conflict resolution, requiring retries.
Stripe’s Dev Blog introduces “Minions”: one-shot, end-to-end coding agents in Part 2 by Alistair Gray. From Stripe’s Leverage team, the Feb 9, 2026 post (≈5 min read) discusses AI-driven tools to boost developer productivity with LLMs and points to guides/docs for integration.
Could not summarize article.
Made by Johno Whitaker using FastHTML