2025-12-10 - Mofish

Ask HN: Should "I asked $AI, and it said" replies be forbidden in HN guidelines? 778 points | 416 comments | by embedding-shape

https://news.ycombinator.com/item?id=46206457

Rust in the kernel is no longer experimental 645 points | 440 comments | by rascul

The topic of the Rust experiment was just discussed at the annual Maintainers Summit. The cons [...]

Australia begins enforcing world-first teen social media ban 574 points | 923 comments | by chirau

https://www.reuters.com/legal/litigation/australia-social-media-ban-takes-effect-world-first-2025-12-09/

10 Years of Let's Encrypt 475 points | 201 comments | by SGran

On September 14, 2015, our first publicly-trusted certificate went live. We were proud that we had issued a certificate that a significant majority of clients could accept, and had done it using automated software. Of course, in retrospect this was just the first of billions of certificates. Today, Let’s Encrypt is the largest certificate authority in the world in terms of certificates issued, the ACME protocol we helped create and standardize is integrated throughout the server ecosystem, and we’ve become a household name among system administrators. We’re closing in on protecting one billion web sites.

PeerTube is recognized as a digital public good by Digital Public Goods Alliance 413 points | 70 comments | by fsflover

Learn more about PeerTube.

Handsdown one of the coolest 3D websites 413 points | 105 comments | by razzmataks

Bruno Simon's creative portfolio

Israel used Palantir technologies in pager attack in Lebanon 412 points | 356 comments | by cramsession

A New Book Quietly Reveals That Israel Used Palantir In It's Terrorist Attack On Lebanon.

In New York City, congestion pricing leads to marked drop in pollution 405 points | 421 comments | by Brajeshwar

https://e360.yale.edu/digest/new-york-congestion-pricing-pollution

If you're going to vibe code, why not do it in C? 328 points | 369 comments | by sramsay

总结：关于Vibe Coding和未来编程语言的思考 (Summary: Reflections on Vibe Coding and Future Programming Languages)

本文由Stephen Ramsay探讨了当前流行的“Vibe Coding”（即利用AI辅助编程）现象，并提出了对未来编程语言的设想。

主要观点：

对Vibe Coding的复杂情感： Ramsay承认Vibe Coding存在一些问题，例如降低了编程的乐趣，让他感觉像是“作弊”。但他同时也承认Vibe Coding的有效性，它能够创建复杂的系统，并能解决一些个人难以解决的编程问题。
编程的本质： 强调编程的本质是为人类理解和书写，而非仅仅为机器执行。编程语言的设计应该方便人类思考和表达，而非仅仅提升计算机的性能。他引用了《计算机程序的结构与解释》中的观点，强调了代码的可读性对人类的重要性。
质疑现有编程语言的适配性： 认为现有的编程语言（如Rust, C++, Haskell, Python等）的设计理念是为人类程序员服务的，而Vibe Coding则可能不需要这些功能。
提出“Vibe-Oriented Programming Language (VOP)”的概念： 设想一种专门为Vibe Coding设计的编程语言，这种语言可能会放弃对人类程序员友好的特性，而是更注重机器的效率。
VOP的可能形式： 讨论了VOP可能的几种形式，例如：
- 伪代码级别可执行代码，底层生成汇编代码。
- 一种文学编程的极致形式，AI根据文学描述生成机器代码。
- 一种更接近自然语言的编程语言，但包含特定的AI引导的习惯表达。
对未来的展望： 认为Vibe Coding可能成为未来软件开发的主流，并预见未来编程教育可能会出现一种“蒙台梭利式”的编程入门阶段，类似于现在学习绘画需要素描，学习数学需要计算。
历史的相似性： 引用了早期计算机发展的历史，指出新的编程范式的出现往往会面临质疑和阻力，就像存储程序计算机的出现一样。

总而言之， Ramsay的这篇文章探讨了Vibe Coding对传统编程的影响，并设想了一种更适合AI辅助编程的未来编程语言，同时也提醒人们要关注编程的本质，即为人类理解和使用服务。 (In short, Ramsay's article explores the impact of Vibe Coding on traditional programming and envisions a future programming language better suited for AI-assisted programming, while also reminding people to focus on the essence of programming, which is to serve human understanding and use.)

Django: what’s new in 6.0 165 points | 40 comments | by rbanffy

Django 6.0 发布：“马赛克” (Mosaic) 版本摘要

Django 6.0 今日发布 (https://www.djangoproject.com/weblog/2025/dec/03/django-60-released/)，标志着这个Python Web框架又一个新周期的开始（至今已有20年历史！）。新版本包含众多新特性，由许多贡献者共同完成。

升级助手：django-upgrade

推荐使用 django-upgrade 工具升级来自Django 5.2或更早版本的项目。该工具可以自动更新旧的Django代码，修复一些弃用警告，包含针对Django 6.0的五个修复程序。

模板局部 (Template Partials)

Django 6.0 引入了模板局部，允许在模板文件中封装和重用小的命名代码片段。使用 {% partialdef %} 和 {% endpartialdef %} 标签标记局部。

在同一模板中重用局部: 允许避免模板代码重复。
独立渲染局部: 适用于使用 htmx 等技术，通过特定视图渲染局部片段。

任务框架 (Tasks Framework)

Django 现在内置了任务框架，用于在 HTTP 请求-响应周期之外运行代码，例如发送邮件或处理数据。

使用 @task 装饰器定义任务。
使用 Task.enqueue() 方法将任务排入队列。
Django目前没有生产级别的任务后端，推荐使用 django-tasks 的 DatabaseBackend，将任务存储在SQL数据库中。

内容安全策略 (Content Security Policy) 支持

Django 6.0 增加了内置的内容安全策略 (CSP) 支持，有助于防止跨站脚本攻击 (XSS)。CSP 可以声明受信任的内容来源，浏览器会阻止其他来源的内容。

通过添加 ContentSecurityPolicyMiddleware 到 MIDDLEWARE 设置启用。
使用 SECURE_CSP 和 SECURE_CSP_REPORT_ONLY 设置配置 CSP 策略。
Django 内置了 nonce 生成功能，方便使用 nonce-based CSP。

邮件 API 更新

Django 的邮件处理现在使用 Python 3.6 引入的现代邮件 API，提供更清晰、Unicode 友好的接口。

依然可以使用 send_mail() 函数和 EmailMessage 类。
现在可以使用 MIMEPart 对象更方便地添加内联附件。

其他重要更新

BigAutoField 作为默认主键类型: 默认将 DEFAULT_AUTO_FIELD 设置为 BigAutoField，以支持更大容量的主键。
forloop.length 模板变量: 在 for 循环中提供 forloop.length 变量，方便获取循环长度。
querystring 模板标签增强: 修正了 querystring 标签在处理空参数时的行为，并支持接受多个参数映射。

Django 6.0 包含 174 位贡献者的众多改进和错误修复。建议升级以享受新特性和改进。

Rubio stages font coup: Times New Roman ousts Calibri 158 points | 276 comments | by italophil

https://www.reuters.com/world/us/rubio-stages-font-coup-times-new-roman-ousts-calibri-2025-12-09/

Donating the Model Context Protocol and establishing the Agentic AI Foundation 157 points | 70 comments | by meetpateltech

Anthropic is an AI safety and research company that's working to build reliable, interpretable, and steerable AI systems.

NYC congestion pricing cuts air pollution by a fifth in six months 139 points | 170 comments | by pseudolus

In its first six months, New York City’s controversial congestion pricing scheme has reduced air pollution by 22% in Manhattan’s toll zone, while improving air quality across the entire metropolitan region, according to new research. The Cornell University study analysed data from 42 air quality monitors throughout the New York…

So you want to speak at software conferences? 122 points | 55 comments | by speckx

An article from dylanbeattie.net

The stack circuitry of the Intel 8087 floating point chip, reverse-engineered 120 points | 54 comments | by elpocko

Early microprocessors were very slow when operating with floating-point numbers. But in 1980, Intel introduced the 8087 floating-point copro...

Revisiting "Let's Build a Compiler" 119 points | 16 comments | by cui

https://eli.thegreenplace.net/2025/revisiting-lets-build-a-compiler/

US could ask foreign tourists for five-year social media history before entry 119 points | 244 comments | by neversaydie

The plan would affect people from countries, including the UK, who can fill out a form in lieu of a visa.

Stop Breaking TLS 117 points | 81 comments | by todsacerdoti

Rant ahead: I hate TLS “Inspection” software with a burning passion and I wish we collectively as an industry would just knock it the fuck off and stop pretending it’s some great security benefit. Every time I encounter it, in whatever form, it’s a gigantic headache that makes everyone’s life worse off and as far as I am concerned offers next to zero tangible benefits.

'Source available' is not open source, and that's okay 114 points | 129 comments | by geerlingguy

Dries is the Founder and Project Lead of Drupal and the Co-founder and Executive Chair of Acquia.

Agentic AI Foundation 113 points | 23 comments | by thinkingkong

Block, Anthropic, and OpenAI have launched the Agentic AI Foundation (AAF). Learn about this new non-profit organization dedicated to making agentic AI safe, accessible, and beneficial for everyone.

Factor 0.101 now available 107 points | 12 comments | by birdculture

https://re.factorcode.org/2025/12/factor-0-101-now-available.html

New benchmark shows top LLMs struggle in real mental health care 106 points | 148 comments | by RicardoRei

Sword Health releases an open-source, expert-validated framework to rigorously assess the clinical competence of AI for mental health support.

“The Matilda Effect”: Pioneering Women Scientists Written Out of Science History 105 points | 46 comments | by binning

Photo via Wikimedia Commons The history of science, like most every history we learn, comes to us as a procession of great, almost exclusively white, men, unbroken but for the occasional token woman—well-deserving of her honors but seemingly anomalous nonetheless. “If you believe the history books,” notes the Timeline series The Matilda Effect, “science is a guy thing. Open Culture, openculture.com

How private equity is changing housing 102 points | 262 comments | by harambae

In some communities, corporations control more than 20 percent of properties.

McDonald's pulls AI Christmas ad after backlash 101 points | 139 comments | by mindracer

McDonald's said the moment served as "an important learning" as it explored "the effective use of AI".

We Need to Die 101 points | 170 comments | by ericzawo

关于永生的反思：限制与意义 (Reflection on Immortality: Limits and Meaning)

这是一篇探讨对永生概念的反思的文章，作者并非反对延长寿命，而是对彻底消除死亡这一终点线表示担忧。文章的核心观点是：死亡的限制性，恰恰是促使我们追求意义、做出选择并成为独特的个体的关键。

主要论点：

对永生的抵触并非单纯的“应对机制” (Maladaptive Coping): 作者承认 Aubrey de Grey 提出的“抗衰老恍惚”理论，即我们对死亡的反感可能源于过去无法改变死亡的无力感，如今却阻碍了我们拥抱潜在的永生技术。然而，作者认为这种抵触可能指向了我们内心更深层次的价值观。
限制塑造自我 (Limits Shape the Self): 作者通过自身经历分享，坦诚、深入的表达虽然可能疏远一部分人，但却更能吸引认同自己的人。工作也常常在截止日期前完成，因为时间限制能激发专注力。这些都表明，限制是自我的一部分，也是做出真正选择的基础。没有代价的选择，并非真正的选择。
永生可能导致自我丧失 (Immortality May Lead to Loss of Self): 引用了 Bernard Williams 的观点，认为永生会导致“无聊、冷漠和麻木”，或使人彻底改变，最终“想要永生的人”无法获得永生。更深层次的，作者认为追求本身才是意义所在，而非最终的达成。
死亡赋予追求意义 (Death Gives Meaning to Pursuit): 死亡的终点线促使我们积极追求目标，避免无限期地推延。作者认为，这就像“记住自己的死亡”才能真正活出精彩的人生一样。
退休后的死亡率上升 (Increased Mortality After Retirement): 引用数据表明，退休后，人们因失去目标和结构化奋斗而导致死亡率上升，验证了奋斗本身对生命的重要性。
** Bryan Johnson 的案例 (The Case of Bryan Johnson):** 以 Bryan Johnson 的长寿项目为例，探讨了过度追求长寿可能导致失去生活乐趣的风险。如果优化过程本身是他的追求，那么他或许并未陷入困境，但作者担忧这种极端的模式会被误解，从而导致其他人放弃当下生活。

总结：

文章的核心论点是，死亡并非生命的敌人，而是赋予生命意义和价值的关键。没有死亡的终点线，一切都可能被无限期地推延，追求的动力也会消失。限制和死亡，正是促使我们做出选择、追求目标、成为独特的个体的根本力量。追求本身才是生命的意义所在，而死亡则赋予了这项追求紧迫感和价值。