US women's hockey team declines Trump's State of the Union invite
Posted on r/politics |
Score: 20378 |
Comments: 618
The U.S. women's hockey team, which won gold at the 2026 Winter Olympics, declined an invitation from the White House to attend President Donald Trump's State of the Union address. The team cited scheduling conflicts with academic and professional commitments as the reason for their inability to attend.
Key Points:
The U.S. women's hockey team was invited to President Trump's State of the Union address after winning Olympic gold.
The team declined the invitation due to timing and previously scheduled academic and professional commitments.
The U.S. men's hockey team, also gold medalists, accepted an invitation but their attendance is uncertain due to travel logistics.
The article notes that women's ice hockey debuted at the 1998 Winter Olympics.
The story is presented as breaking news, with updates to follow.
"A spokesperson for the team told NBC News' Monica Alba that the team, which won the gold medal at the 2026 Winter Olympics in Italy, was "sincerely grateful" for the recognition, but the players are unable to attend "due to the timing and previously scheduled academic and professional commitments.""
Leaked DNC autopsy found Biden’s Israel backing cost Harris votes for president
Posted on r/politics |
Score: 13084 |
Comments: 3977
A leaked DNC analysis concluded that the Biden administration's handling of the Israel-Hamas war was a 'net negative' for Democrats and cost Kamala Harris critical support among younger and progressive voters in the 2024 election, contributing to her loss. The report, withheld from public release, was discussed with progressive activists who are pushing for its disclosure. Harris herself addressed the political fallout in her book, lamenting the electoral impact of the issue.
Key Points:
A leaked DNC post-election analysis found Biden's Israel-Gaza war policy was a 'net negative' and cost Harris key voter support.
The report suggests the issue hurt Harris with younger, progressive, and Arab American voters in critical swing states like Michigan.
Progressive activists are pressuring the DNC to release the findings publicly ahead of future elections.
In her book, Harris wrote that the war's complexity became a binary electoral issue that damaged Democrats.
The selection of a running mate was influenced by concerns over Gaza policy and potential protest at the convention.
""The issue was not binary, but the outcome of this election certainly was," Harris wrote, adding that she wished that those who protested her understood that "sitting out the election or voting for a third candidate would elect Trump and kill any effort for a just peace, any hope for a two-state solution.""
Trump Called USA Hockey Team To Congratulate Them, Then Made Disgusting Joke On Women's Team — And It Was All Caught On Video
Posted on r/politics |
Score: 5693 |
Comments: 408
President Donald Trump faced backlash after a video showed him joking with the gold medal-winning U.S. men's Olympic hockey team about 'having to' invite the women's team to the White House, implying it was an obligation to avoid impeachment. The men's laughter and the comment were widely criticized on social media as disrespectful to the equally victorious women's team.
Key Points:
Trump made a joke during a congratulatory call to the men's team about being obligated to invite the women's team, quipping he'd 'probably be impeached' if he didn't.
The U.S. men's team laughed at the joke, drawing criticism for being 'spineless' and disrespectful.
Both the U.S. men's and women's teams went undefeated and won gold by defeating Canada in overtime.
A spokesperson said the women's team was invited to the State of the Union but declined due to prior commitments.
Critics, including activist Shannon Watts, denounced the president's 'begrudging' invite and the men's reaction.
""And we have to — I must tell you — we’re going to have to bring the women’s team," said Trump, who went on to chuckle as the American men burst into laughter in a clip circulating on social media. He added, "[If I don’t] do that, I do believe I probably would be impeached, OK?""
Huntarr - Your passwords and your entire arr stack's API keys are exposed to anyone on your network, or worse, the internet.
Posted on r/selfhosted |
Score: 4774 |
Comments: 727
A security review of the Huntarr application (v9.4.2) reveals critical, unauthenticated endpoints that expose the API keys and configuration for an entire connected media stack (Sonarr, Radarr, etc.). The article details multiple severe vulnerabilities, including full credential exposure and account takeover flaws, and criticizes the maintainer's cybersecurity claims given the basic nature of the security failures.
Key Points:
A POST request to `/api/settings/general` requires no authentication and returns the full configuration, including API keys, for all connected *arr applications.
Multiple critical auth bypass vulnerabilities exist, such as unauthenticated 2FA enrollment and setup clearing, allowing full account takeover.
The vulnerabilities mean anyone on the network (or the internet, if exposed) can gain full control over the user's media stack.
The maintainer claims to work in cybersecurity and use security steering documents, but the code lacks basic security hygiene.
Vulnerabilities were found using basic code review and automated tools, suggesting they should have been caught by the developer.
"If you have Huntarr exposed on your stack, anyone can pull your API keys for Sonarr, Radarr, Prowlarr, and every other connected app without logging in, gaining full control over your media stack."
Posted on r/selfhosted |
Score: 739 |
Comments: 239
The article details the rapid and comprehensive takedown of the Huntarr project following a Reddit post exposing a critical security vulnerability. The project's GitHub repository, documentation, subreddit, and Discord server were all removed or made private, while the maintainer deleted their accounts and renamed organizations in an apparent attempt to disappear. This series of actions suggests a serious response to the security concerns raised about the software.
Key Points:
The Huntarr GitHub repository and its documentation pages were taken down, likely due to a security vulnerability disclosure.
The project's subreddit was set to private and the maintainer deleted their Reddit account.
The associated GitHub organization was renamed and later deleted, and the main maintainer's personal GitHub account was also renamed.
The project was removed from the Proxmox Community Helper scripts repository.
Archive links were provided throughout to document the disappearing online presence.
"Maybe a temporary thing due to likely brigading, but quite concerning:"
Claude is the better product. Two compounding usage caps on the $20 plan are why OpenAI keeps my money.
Posted on r/ClaudeAI |
Score: 232 |
Comments: 99
A long-term ChatGPT Plus user prefers Claude's capabilities for serious work but cannot switch to Claude Pro due to its restrictive usage caps. The user's daily, intensive workflow would quickly exhaust both the 5-hour rolling session window and a weekly lockout, making the paid plan unusable. They argue that while Claude is the better product, its $20 plan's structure is inferior to ChatGPT Plus's more forgiving limits.
Key Points:
The author strongly prefers Claude's performance for tasks like book editing over ChatGPT.
Claude Pro's two-layer cap (5-hour rolling window and a weekly lockout) is incompatible with the author's daily, intensive usage pattern.
ChatGPT Plus, while having limits, offers a higher floor for heavy users by avoiding a weekly lockout mechanism.
The author is willing to pay $20 for Claude but needs a plan that allows sustained daily work without hard stops.
The pricing gap between Claude Pro ($20) and Claude Max ($100) is too large, leaving no viable middle tier.
"I cannot pay for a product, use it normally for two hours, and then be locked out. I especially cannot accept a weekly lockout. Days without access on a paid subscription is not a tradeoff I'm making."
Dictionary Compression is finally here, and it's ridiculously good
Posted on r/programming |
Score: 198 |
Comments: 68
The article introduces dictionary compression, a new web data compression technique that uses a pre-shared dictionary to drastically reduce bandwidth usage. It highlights that this method is now widely supported and can achieve up to 90% size reduction for content like JavaScript bundles. The author explains its practical applications and provides a simple code example to demonstrate its effectiveness.
Key Points:
Dictionary compression uses a pre-shared data dictionary, allowing compressed data to be just references to it, not the original content.
It can achieve massive real-world reductions, like shrinking YouTube JS downloads by up to 90% for returning users.
It's highly effective for web content like JS bundles, API responses, and WebAssembly files that change incrementally.
The technique is now broadly supported and safe to deploy without compatibility concerns.
It can work using a previous response as a dictionary or a custom-built dictionary of known data.
"Dictionary compression could completely change how applications send data over the web. It's recently gained broad support, and offers absurd real-world traffic reductions: initial testing shows YouTube JS download size for returning desktop users shrinking up to 90% (!!!) compared to existing best-practice compression."
Posted on r/selfhosted |
Score: 142 |
Comments: 114
The article calls for a community-maintained list of popular services that are 'vibe coded', following the discovery that a significant service named Huntarr was built this way and had serious security flaws. The author suggests creating a sticky post on a subreddit to track such services, implying a need for greater awareness and transparency about software development practices.
Key Points:
A major service called Huntarr was discovered to be 'vibe coded' with numerous security issues.
The article proposes creating a sticky post on a subreddit to list popular services that are similarly 'vibe coded'.
The goal is to increase community awareness about the development practices behind widely used services.
It highlights a potential systemic issue where important software may be built with informal, potentially insecure methods.
"With the recent discovery that a pretty big and important service like Huntarr was completely vibe coded with tons of security issues, it would be great if this subreddit had a sticky post of popular services that is also vibe coded."
Posted on r/programming |
Score: 122 |
Comments: 20
The article argues that in large software projects, communication breakdowns between teams, not coding complexity, are the primary cause of delays. It illustrates how organizational silos and unfamiliarity between teams create friction, often leading to inefficient architectural decisions that mirror the company's structure (Conway's Law). The author suggests that improving collaboration is more critical for speed than improving individual coding skills.
Key Points:
Communication barriers between teams, not technical difficulty, are the main bottleneck in large projects.
Organizational structure directly influences system architecture, often creating siloed components (Conway's Law).
Working with unfamiliar teams or codebases drastically slows progress compared to working alone or with a close-knit team.
Teams often default to known, suboptimal paths to avoid the friction of cross-team communication.
Improving collaboration and breaking down silos is essential for accelerating project delivery.
"When you’re working alone, the only communication is between your neurons, and that’s pretty fast, isn’t it? The same goes when you collaborate with teammates you know well. You understand each other, don’t need to repeat much, and many things are already covered by your working agreements... But step into a new or larger team, and suddenly communication is full of obstacles."
The article explains that Git uses several special, committed files within a repository to control its behavior, distinct from local configuration. These 'magic files' include .gitignore, .gitattributes, .lfsconfig, and .gitmodules, which manage ignored files, file handling attributes, Git LFS settings, and submodules, respectively. Understanding these files is crucial for developers building tools that interact with Git repositories.
Key Points:
.gitignore specifies patterns for files Git should never track, with rules checked from multiple sources in a specific order.
.gitattributes configures how Git handles specific files, including line endings, diff/merge drivers, and overrides for language detection tools like GitHub Linguist.
.lfsconfig stores Git LFS configuration (like server URLs) that travels with the repository, ensuring consistent settings for all contributors.
.gitmodules contains configuration for git submodules, mapping paths to external repository URLs and branches.
These files are committed and travel with the codebase, affecting behavior for all users, unlike local configuration in the .git directory.
"Git looks for several special files in your repository that control its behavior. These aren’t configuration files in .git/, they’re committed files that travel with your code and affect how git treats your files."
A developer successfully ports the classic game Doom to a 20-year-old Snom 360 VoIP office phone. The process involves upgrading the firmware, exploring its Linux-based system, reverse-engineering the display and keyboard drivers, and finally building a custom binary for the MIPS architecture. The project demonstrates the hackability of embedded systems and the enduring appeal of running Doom on unconventional hardware.
Key Points:
The phone runs a hackable Linux 2.4.31 kernel on a MIPS processor, providing a familiar base for porting.
The firmware was not encrypted and contained a standard JFFS2 filesystem, allowing easy exploration and modification.
A significant portion of the work involved reverse-engineering and writing custom drivers for the phone's display, backlight, LEDs, and keyboard.
The port required implementing the core functions of the Doom game loop (graphics, input, timing) for the new hardware.
The project highlights the fun and challenge of repurposing outdated but capable embedded hardware for creative projects.
"This post is dedicated to my ADD and getting sidetracked at every possible step. [...] My original plan was to set up an Asterisk PBX with the phones I’d collected. But then, while upgrading the firmware on one of the Snom 360s, I had a better idea. Since this phone had a screen and a keyboard … could I get Doom running on it?"