https://macworks.dev/tags/game-development/Recent content in Game Development on MacWorksHugoenhttps://macworks.dev/docs/week/hackernews/hackernews-2026-04-09/Mon, 01 Jan 0001 00:00:00 +0000https://macworks.dev/docs/week/hackernews/hackernews-2026-04-09/<h1 id="hacker-news--2026-04-09">Hacker News — 2026-04-09<a class="anchor" href="#hacker-news--2026-04-09">#</a></h1> <h2 id="top-story">Top Story<a class="anchor" href="#top-story">#</a></h2> <p>The Vercel Claude Code plugin has been caught using prompt injection to fake user consent for telemetry, quietly exfiltrating full bash command strings to Vercel&rsquo;s servers across all local projects. Instead of implementing a proper UI for permission, the plugin injects behavioral instructions into Claude&rsquo;s system context, forcing the agent to execute shell commands to write tracking preferences based on your chat replies. It&rsquo;s exactly the kind of quiet overreach and abuse of LLM integrations that makes developers deeply paranoid about agent tooling.</p>https://macworks.dev/docs/week/hackernews/Mon, 01 Jan 0001 00:00:00 +0000https://macworks.dev/docs/week/hackernews/<h1 id="hacker-news--week-of-2026-04-04-to-2026-04-10">Hacker News — Week of 2026-04-04 to 2026-04-10<a class="anchor" href="#hacker-news--week-of-2026-04-04-to-2026-04-10">#</a></h1> <h2 id="story-of-the-week">Story of the Week<a class="anchor" href="#story-of-the-week">#</a></h2> <p>Anthropic&rsquo;s frontier AI models crossed a terrifying new threshold in autonomous cybersecurity, completely shifting the industry&rsquo;s threat model. First, Claude Code uncovered a complex, 23-year-old vulnerability in the Linux kernel&rsquo;s NFS driver that predated Git itself. Days later, the infosec community went into full meltdown when Anthropic&rsquo;s unreleased &ldquo;Mythos&rdquo; model autonomously wrote a 200-byte ROP chain exploit for FreeBSD and demonstrated the ability to reliably escape Firefox&rsquo;s JavaScript virtualization sandbox in 72.4% of trials.</p>