Gavin Newsom surges in 2028 presidential primary poll
Posted on r/politics |
Score: 25728 |
Comments: 2933
A new Echelon Insights poll shows California Governor Gavin Newsom has surged in support as a potential 2028 Democratic presidential candidate, moving from sixth place with 4% in April to second place with 13% in August. His rise is attributed to his aggressive stance against former President Donald Trump and Republicans, particularly on redistricting issues. Former Vice President Kamala Harris remains the frontrunner with 26% support.
Key Points:
Gavin Newsom surged from 6th place (4%) to 2nd place (13%) in Democratic primary polling between April and August 2025
Kamala Harris remains the frontrunner with 26% support, followed by Pete Buttigieg (11%) and Alexandria Ocasio-Cortez (6%)
Newsom's rise is linked to his aggressive opposition to Donald Trump and Republican initiatives like Texas redistricting
Newsom's press office has employed a social media strategy of memes and pop culture parodies aimed at mocking Trump
Experts caution that polls this far from a primary are more indicative of name recognition than predictive of actual outcomes
"polls this far out from a primary were 'informative but not necessarily instructive,' largely indicating name recognition or reflecting a stated interest in running in 2028."
Posted on r/politics |
Score: 12229 |
Comments: 766
During a Fox and Friends interview, President Trump, 79, appeared to forget the name of the Atlantic Ocean while discussing the geographic separation between the US and Europe/Russia. This is presented as the latest in a series of recent cognitive gaffes, including a previous instance where he said he was 'going to Russia' for a meeting that was actually held in Alaska.
Key Points:
President Trump could not recall the name of the Atlantic Ocean during a live interview, referring to it only as 'a big, beautiful ocean'.
The article frames this as part of a pattern of 'senior moments' or cognitive lapses, noting he previously forgot a meeting with Putin was in Alaska, not Russia.
Despite campaign promises to end the war in Ukraine 'within 24 hours,' Trump admitted the conflict is 'a tough one' to resolve.
The White House dismissed inquiries about the incident as 'stupid questions about oceans.'
The article draws a comparison to Sarah Palin's 2008 gaffe about seeing Russia from Alaska, noting Trump had once considered her for a cabinet position.
"Trump said that European leaders like Keir Starmer and Emmanuel Macron are “consumed far more with [Ukraine] because they’re right there.” “You know we have an ocean that’s separating us, right? A thing called... an ocean,” he said. “A big, beautiful ocean."
Gavin Newsom Is Talking Like Trump — And It's Infuriating The Right
Posted on r/politics |
Score: 5287 |
Comments: 368
California Governor Gavin Newsom is using a social media account to parody Donald Trump's online behavior, including all-caps rants, name-calling, and AI-generated images. This strategy is infuriating prominent conservatives and drawing attention to the absurdity of Trump's own posts, which Newsom argues have been normalized without proper scrutiny.
Key Points:
Newsom's parody account mimics Trump's all-caps rants, name-calling, and use of AI-generated images.
The strategy has infuriated conservative media figures like Dana Perino and Trace Gallagher, who call it 'childish'.
Newsom's office reports the account has gained significant traction with over 250,000 new followers and 225 million impressions.
The governor argues the parody holds up a mirror to the behavior his critics tolerate from Trump.
The tactic is seen as a successful political strategy that resonates with the Democratic base and highlights media 'sanewashing' of Trump's posts.
""If you’ve got issues with what I’m putting out, you sure as hell should have concerns about what he’s putting out as president," the governor said of Trump at a press conference in Los Angeles last week. "To the extent it’s gotten some attention, I’m pleased. But I think the deeper question is, how have we allowed the normalization of his tweets over the course of the last many years to go without similar scrutiny and notice?""
President Trump Quips About Canceling 2028 Elections If U.S. Is At War
Posted on r/politics |
Score: 3900 |
Comments: 447
The article reports on a video from C-SPAN in which former President Donald Trump makes a quip about canceling the 2028 U.S. presidential elections if the country is at war. The content provided is primarily a webpage navigation menu for C-SPAN's website and does not contain the full transcript or details of the video itself.
Key Points:
Former President Trump made a remark about canceling the 2028 elections.
The comment was framed as a quip and was conditional on the U.S. being at war.
The source material is a video hosted on C-SPAN.org.
The provided article content is largely navigational text from the C-SPAN website.
The full context and exact wording of the quip are not detailed in the given text.
"President Trump Quips About Canceling 2028 Elections If U.S. Is At War"
Study of 281 MCP plugins: 72% expose high-privilege actions; 1 in 10 fully exploitable
Posted on r/programming |
Score: 488 |
Comments: 74
Research analyzing 281 MCP (Model Context Protocol) configurations reveals that AI agent plugins create dangerous security vulnerabilities through combinatorial risks. When plugins that process untrusted inputs are combined with plugins that have privileged execution rights, they create silent exploits that bypass traditional security checks. These configurations enable automated attacks without human involvement through common channels like email, Slack, and web content.
Key Points:
72% of MCP plugins expose powerful privileged actions like writing to disk, executing code, or calling high-permission APIs
Just two MCP plugins combined can create a 36% exploitation risk, which jumps to over 50% with three plugins
13% of MCP plugins accept attacker-controlled inputs from sources like web scraping, Slack, or email
9% of plugins combine untrusted inputs with privileged execution rights, making them fully exploitable
Real-world examples show agents executing attacker-supplied code through email, Slack messages, and HTML content
"When these traits intersect, even basic agents become programmable backdoors."
Posted on r/selfhosted |
Score: 336 |
Comments: 129
Streamyfin v0.30.2 is a significant update for the Jellyfin client, introducing new features and fixes primarily focused on improving the download functionality. It also marks the first public release of an early Android TV build, which requires sideloading. The update encourages user feedback to help guide further development.
Key Points:
Major enhancements to download features, including Skip Intro/Credits, trickplay thumbnails, and 'Unwatched Only' option
First public Android TV build released (early development, requires sideloading)
Multiple subtitle improvements and general stability/bug fixes
Project updated to Expo 53 for improved performance and compatibility
New translations added: Traditional Chinese and Vietnamese
"This is our first public Android TV build. It is in the very early stages of development and may experience functionality issues or lag. Share your feedback on [GitHub](https://github.com/streamyfin/streamyfin) or [Discord](https://discord.streamyfin.app/) to help us improve it"
Posted on r/programming |
Score: 157 |
Comments: 18
V8 engineers made JSON.stringify more than twice as fast by introducing a new side-effect-free fast path that avoids expensive checks and uses iterative processing. They optimized string handling by creating specialized versions for one-byte and two-byte strings and implemented SIMD techniques for faster character escaping. These changes significantly improve serialization performance for common JavaScript data objects.
Key Points:
Introduced a side-effect-free fast path that bypasses expensive checks and defensive logic
Implements specialized templatized versions for one-byte and two-byte string handling
Employs SIMD instructions for long strings and SWAR techniques for short strings to optimize character escaping
Efficiently handles mixed string encodings by switching between specialized stringifiers
"If we can guarantee that serializing an object will not trigger any side effects, we can use a much faster, specialized implementation. This allows it to bypass many expensive checks and defensive logic required by the general-purpose serializer, resulting in a significant speedup for the most common types of JavaScript objects that represent plain data."
The author describes teaching their 12-year-old niece about AI using Claude Code, a tool they use for learning and research. They were impressed by the girl's relentless curiosity, asking about every small detail, which led to a profound realization about the learning process. This experience inspired the author to create more educational content and tutorials.
Key Points:
The author is deeply integrating Claude Code into their daily workflow for AI learning and research.
They taught their 12-year-old niece how to use the tool to learn about AI effectively.
The niece's method of asking incessant, granular questions was surprisingly effective and insightful.
This interaction highlighted the principle that 'curiosity precedes knowledge' in the learning process.
The experience inspired the author to write blogs and tutorials to help others learn.
"What surprised me was asking Claude questions in the way an annoying person would. EVERY little thing."
So what exactly are people making with claude code?
Posted on r/ClaudeAI |
Score: 71 |
Comments: 145
The author expresses skepticism about the practical applications of Claude Code, noting a disparity between the hype surrounding its capabilities and the lack of visible, completed projects built with it. They are actively seeking examples of interesting, working projects to validate the claims.
Key Points:
The author perceives more discussion about Claude Code's potential than tangible results.
There is a noted absence of evidence in the form of completed, working projects.
The author questions whether the hype is justified without seeing practical applications.
A direct request is made for examples of interesting projects built with Claude Code.
"The hype seems real but I barely see any actual evidence of things people have made."
Anything I forgot for exposing services to the public?
Posted on r/selfhosted |
Score: 64 |
Comments: 29
A user details their comprehensive security setup for exposing self-hosted services from a home server to the public internet. They employ a reverse proxy, container isolation, SSO, and multiple monitoring tools, then ask the community for any additional recommendations. Commenters suggest further hardening measures like using a VLAN and CrowdSec.
Key Points:
Uses Caddy as a reverse proxy in its own LXC container with strict firewall rules and port forwarding
Isolates each service in its own non-root Docker container on a separate LXC, restricting inter-container communication
Implements Authelia for single sign-on (SSO) and 2FA, with admin panels only accessible via VPN
Employs multiple security layers including fail2ban, rate limiting, and monitoring with Prometheus
Incorporates community suggestions for a VLAN, CrowdSec, and rigorous update/configuration management
"All of that was surprisingly straightforward sofar, caddy makes everything A LOT easier, having used nginx in the past"
Deep Dive: I dug and dug and finally found out how the Context7 MCP works under-the-hood
Posted on r/ClaudeAI |
Score: 27 |
Comments: 13
The article demystifies how the Context7 MCP (Model Context Protocol) works by detailing its step-by-step interaction with Claude Code. It explains that Claude uses two main tools, `resolve-library-id` and `get-library-docs`, to search for and retrieve relevant code documentation based on a user's query. The author illustrates this process with a concrete example and debug output to show it in action.
Key Points:
MCPs expose tool descriptions that Claude Code uses for function calling.
The process starts with Claude sending a best-guess keyword to the `resolve-library-id` tool to find a library.
Context7 returns a list of possible library matches with metadata like Trust Score and number of code snippets.
Claude then uses the `get-library-docs` tool with a selected library ID and a topic to fetch specific code snippets and documentation.
Claude synthesizes the output from these repeated tool calls to generate a final response for the user.
"For best results, select libraries based on name match, trust score, snippet coverage, and relevance to your use case."
The article criticizes a prominent concurrency textbook for failing to cover the futex, a fundamental Linux kernel feature that revolutionized locking performance. The futex (fast userspace mutex) separates locking from waiting/waking, enabling highly efficient concurrency primitives by minimizing expensive system calls. It became so critical that all major operating systems adopted similar mechanisms, forming the basis for modern high-performance locking libraries like pthreads.
Key Points:
The futex is a critical OS primitive that separates locking from waiting/waking, enabling massive performance gains over older System V IPC
Futex-based locks can avoid system calls when there's no contention, unlike System V semaphores which always required system calls
The original futex implementation showed 20-120x performance improvements with 1000 parallel tasks
All major operating systems (Linux, Windows, macOS) now implement futex-like functionality
The futex works by allowing threads to wait on a memory address and be woken efficiently by the kernel when the value changes
"The futex essentially separates the locking from waiting (and waking) tasks. The flexibility you get from separating those two concerns is key to good lock performance. It becomes much easier to avoid unnecessary delays and bottlenecks, particularly system calls themselves, which are quite expensive compared to most of the code involved in locking."
Asked my Intermediate Micro professor if she knew Henry George
Posted on r/georgism |
Score: 22 |
Comments: 4
A student asked their Intermediate Microeconomics professor if she was familiar with the influential economist Henry George. The professor's response, mistaking him for a former student, left the author in a state of shock.
Key Points:
A student inquired about economist Henry George to their professor.
The professor did not recognize George as a significant historical figure.
The professor mistakenly believed the name referred to a former student.
The author expresses disbelief at the professor's lack of recognition.
"She said “that name is very familiar was that a kid in my class”"
D2 version 0.7.1 introduces ASCII output capabilities, allowing users to generate text-based diagrams by saving files with a .txt extension. This feature is particularly useful for embedding simple diagrams directly in source code comments. The renderer is currently in alpha stage with some limitations and supports both Unicode characters and standard ASCII for portability.
Key Points:
ASCII output is generated by saving D2 files with a .txt extension
Primarily useful for embedding diagrams in source code comments
Supports both Unicode (default) and standard ASCII modes
Currently in alpha stage with known limitations and bugs
No support for styles, themes, animations, or fonts in ASCII output
"Perhaps the most useful place for ASCII diagrams is in the source code comments. Small simple diagrams next to functions or classes can serve to be much clearer than describing a flow."
Stop Paywalling Security: SSO Is a Basic Right, Not an Enterprise Perk
Posted on r/selfhosted |
Score: 11 |
Comments: 1
The article argues that Single Sign-On (SSO) is a fundamental security necessity that should be available to all users, not a premium feature locked behind expensive enterprise plans. It contends that paywalling SSO forces smaller organizations and individuals into less secure practices, ultimately making the entire digital ecosystem more vulnerable. The author calls for a shift in the industry to treat SSO as a basic right and a standard security feature.
Key Points:
SSO is a critical security control that prevents password fatigue and reuse, a major cause of data breaches.
Vendors commonly lock SSO behind high-cost 'Enterprise' tiers, making it inaccessible to startups, non-profits, and individuals.
This paywalling creates a two-tiered system where only wealthy organizations can afford basic security, leaving others vulnerable.
The practice is compared to 'security through obscurity' and is criticized for prioritizing profit over user safety and the health of the internet.
The author urges a change in industry norms to make SSO a standard, freely available feature for all account tiers.
"By paywalling security, we are not just selling a feature; we are creating a world where only the wealthy can afford to be secure, while the rest are left vulnerable. This isn't just bad for business; it's bad for the entire internet."
This pull request adds a dark mode theme option to Javadoc-generated API documentation. The implementation includes a theme switcher button in the top right corner with three options: Light, Dark, and System Setting, with the selected theme being stored and preserved across browser sessions.
Key Points:
Adds dark theme support to Javadoc-generated documentation
Includes theme switcher button with Light, Dark, and System Setting options
Theme preference is stored and preserved across browser sessions
Provides visual screenshots demonstrating both themes and switching functionality
Requires proper code review process before merging
"There is a new button in the top right corner that brings up a menu to switch between themes. Available options are "Light", "Dark", and "System Setting" (following the system-wide theme setting). The selected theme is stored and preserved across browser sessions."