Hacker News

I’m trying to sanity check an idea with people who work with regulated systems.

In many organisations we have scanners for code, monitoring for systems, and multiple layers of controls and audit. But the business process itself is rarely checked for logical vulnerabilities before it goes live.

Processes like KYC onboarding, approvals, payments or compliance workflows are often designed in meetings and documented later. Over time more controls get added and monitoring improves, but the underlying process logic is rarely tested.

Which raises a simple question: can this process be bypassed?

I started experimenting with describing processes as state machines and running static checks on them. Things like reachability, missing review steps, irreversible actions without compensation, and similar structural issues.

The idea is to detect what you might call "business process vulnerabilities by design" before the process is deployed.

The page explains the concept and shows a small prototype. The prototype lets you describe a process as a state machine and run automated checks against rule sets (for example operational risk or resilience rules).

What I’m mainly trying to understand is whether this is actually a real problem in practice.

For people working in fintech, banking, risk or operations:

Do process bypasses or design gaps show up in real systems? How are new processes usually reviewed before they go live? Where do things tend to break down? Paper: veilgovernance.com/research/missing-first-line-of-defence

Comments URL: https://news.ycombinator.com/item?id=47274481

Points: 1

# Comments: 1

Article URL: https://www.pewresearch.org/religion/2026/03/05/in-25-country-survey-americans-especially-likely-to-view-fellow-citizens-as-morally-bad/

Comments URL: https://news.ycombinator.com/item?id=47274464

Points: 2

# Comments: 0

Article URL: https://apnews.com/article/daily-telegraph-axel-springer-paper-buy-german-1386ec56fef373bf5ab5b0f7226bf7bb

Comments URL: https://news.ycombinator.com/item?id=47274453

Points: 2

# Comments: 0

I built DiffDeck because I was struggling to review larger pull requests in GitHub, especially ones with a lot of AI-assisted code.

GitHub's diff view works well for smaller changes, but once a PR gets big I usually want more of an editor-style workflow while reviewing ie see the surrounding code, jump to related symbols and files, and mark off what I have already reviewed and I felt Github's interface was really frustrating me.

DiffDeck opens a GitHub pull request in a review workspace with:

- full file context - go-to-definition and references for TS/JS - review notes - per-file reviewed state and review progress - hide/checkoff reviewed files

One thing I wanted was for it to feel closer to VS Code than a traditional PR tool. You can jump around the codebase while reviewing, and features like go-to-definition are meant to feel familiar if you already spend most of your time in an editor.

Right now it requires GitHub sign-in, because the point is to open pull requests you already have access to and review them with more context than GitHub's diff view gives you. I considered making a public demo, but that felt less representative than letting people try it on their own PRs.

This is an early alpha. Right now the code navigation features are focused on TypeScript and JavaScript codebases. The main thing I'm trying to learn is whether this is actually a better review workflow than staying in GitHub's PR UI. For now you can feel free to review a single PR.

I'd especially like feedback from people who review large PRs or AI-generated code:

- what still feels missing - whether this solves a real problem or just one I personally had

Comments URL: https://news.ycombinator.com/item?id=47274437

Points: 1

# Comments: 0

Article URL: https://www.keycard.ai/blog/i-built-a-secure-planning-agent-with-mcp-and-keycard

Comments URL: https://news.ycombinator.com/item?id=47274421

Points: 1

# Comments: 0

TypR is a statically typed language written in Rust that compiles down to plain R code using S3 classes. The goal is to bring type safety to R without leaving the ecosystem — the generated output is idiomatic R you can drop into any existing project.

The compiler uses monomorphization to resolve generic types at compile time, so there's no runtime overhead. The type system supports structural typing, interfaces, and generics. It's still in alpha, but here's what's available so far:

GitHub: https://github.com/we-data-ch/typr

Binaries (Windows/Mac/Linux): https://github.com/we-data-ch/typr/releases

Online playground: https://we-data-ch.github.io/typr-playground.github.io/

VS Code extension with LSP: https://marketplace.visualstudio.com/items?itemName=wedata-c...

Docs (WIP): https://we-data-ch.github.io/typr.github.io/

Known limitations: the standard library is minimal so the user need to type some existing functions/variables with signatures, error messages need work, and the LSP is basic. Positron and Neovim support are in progress.

Would appreciate feedback on the type system design or ideas for use cases that would make this useful in practice.

Comments URL: https://news.ycombinator.com/item?id=47274404

Points: 1

# Comments: 0

Article URL: https://www.nytimes.com/2026/03/05/arts/pokemon-company-white-house-memes.html

Comments URL: https://news.ycombinator.com/item?id=47274402

Points: 1

# Comments: 0

Article URL: https://bactra.org/weblog/two-kinds-of-kernel-methods.html

Comments URL: https://news.ycombinator.com/item?id=47274401

Points: 1

# Comments: 0

Article URL: https://salespup.com/

Comments URL: https://news.ycombinator.com/item?id=47274398

Points: 1

# Comments: 1

Article URL: https://www.easytripexpenses.com/

Comments URL: https://news.ycombinator.com/item?id=47274390

Points: 1

# Comments: 1

Article URL: https://www.theregister.com/2026/03/06/contractor_son_crypto_arrest/

Comments URL: https://news.ycombinator.com/item?id=47274387

Points: 1

# Comments: 0

A few months ago I tried to write an interactive fiction novel.

It turned into a software project.

As the story grew, managing the structure quickly became difficult: branches, conditions, narrative state… everything started getting messy.

At some point I opened Visual Studio to try to solve the problem for myself. The initial idea was simple: separate the prose from the runtime logic that drives the story.

That experiment slowly turned into a small ecosystem called iepub:

• a structured format for interactive books • a reader runtime that interprets that format • and a visual editor designed for writing interactive fiction

The editor tries to feel like a normal writing tool (something closer to Google Docs) but designed for branching narrative. It lets you define narrative conditions, attach variables to sections, configure probabilistic events (like dice rolls), create narrative variants, and visualize the structure of the story as a graph.

Most of the development ended up happening with AI agents (Codex) acting as development partners, which turned into a surprisingly effective workflow for iterating on architecture, UI components and debugging.

If anyone is curious:

Project: https://iepub.io

Article about the development process: https://medium.com/@santi.santamaria.medel/interactive-ficti...

Happy to answer questions about the project, the architecture, or the AI-assisted development workflow.

Comments URL: https://news.ycombinator.com/item?id=47274370

Points: 1

# Comments: 0

Article URL: https://langguard.ai/2026/03/06/how-self-driving-cars-teach-us-that-mcp-is-not-goi.html

Comments URL: https://news.ycombinator.com/item?id=47274360

Points: 1

# Comments: 0

Article URL: https://www.theguardian.com/world/2026/mar/06/iran-war-flight-chaos-flightradar24-tracking

Comments URL: https://news.ycombinator.com/item?id=47274055

Points: 1

# Comments: 0

Article URL: https://www.theregister.com/2026/03/06/uk_treasury_matrix_nao/

Comments URL: https://news.ycombinator.com/item?id=47274047

Points: 1

# Comments: 0

Article URL: https://github.com/Kretski/ScalePredict

Comments URL: https://news.ycombinator.com/item?id=47274038

Points: 1

# Comments: 1

Article URL: https://timonweb.com/ai/i-checked-5-security-skills-for-claude-code-only-one-is-worth-installing/

Comments URL: https://news.ycombinator.com/item?id=47274033

Points: 1

# Comments: 0

Article URL: https://wikigacha.com/?lang

Comments URL: https://news.ycombinator.com/item?id=47274020

Points: 1

# Comments: 0

Article URL: https://amygdala.eu/verify

Comments URL: https://news.ycombinator.com/item?id=47274018

Points: 1

# Comments: 1

Article URL: https://en.wikipedia.org/wiki/Elite_overproduction

Comments URL: https://news.ycombinator.com/item?id=47274010

Points: 2

# Comments: 0