71 Implementing simple cooperative threads in C (brennan.io) 13
141 Most book clubs are doing it wrong (2017) (jsomers.net) 83
12 The Chiral Puzzle of Life (iopscience.iop.org) 2
15 Industries that provided in-person services may never operate in-person again (theglobeandmail.com) 11
15 BaseSAFE: Baseband SAnitized Fuzzing Through Emulation (arxiv.org) 3
234 Tuxedo Book BA15: AMD-only and Linux-preinstalled laptop (tuxedocomputers.com) 106
164 The Big List of Naughty Strings (github.com) 39
81 Writing and the narrative fallacy (2018) (jacklimpert.com) 54
497 Jepsen: MongoDB 4.2.6 (jepsen.io) 188
224 Habits of High-Functioning Teams (deniseyu.io) 73
82 Running Lisp in Production (2015) (grammarly.com) 37
31 Self Supervised Learning in NLP (amitness.com) 2
28 Lets Draw Together (multiuser-sketchpad.glitch.me) 9
63 MiniConf: A Virtual Conference in a Box (mini-conf.github.io) 16
113 Guide to Concurrency in Python with Asyncio (integralist.co.uk) 44
50 My New FreeBSD Laptop: Dell Latitude 7390 (daemonology.net) 72
42 A 1973 IBM Selectric typeball recorded dancers' body movements (ibm.com) 17
14 Testing Distributed Systems with Deterministic Simulation (2014) [video] (youtube.com) 2
61 One-Word Domains (oneword.domains) 84
19 COBS: A Compact Bit-Sliced Signature Index [pdf] (bingmann.github.io) 2
3 Hard-Coding Bottom-Up Code Generation Tables to Save Time and Space (1991) [pdf] (citeseerx.ist.psu.edu) 0
27 Pantai Remis Landslide (en.wikipedia.org) 7
68 Don’t Be Afraid of RAID (louwrentius.com) 75
7 The Challenge of Cross-language Interoperability (2013) (queue.acm.org) 0
81 Immutable Databases (adlrocha.substack.com) 42
146 Classic Calculator Was Reverse Engineered from the Bare Metal (spectrum.ieee.org) 57
83 Show HN: FizzBuzz purely in Rust's trait system (github.com) 27
116 Restaurants rebel against delivery apps as cities crack down on fees (nbcnews.com) 147
144 TSA compton backscattering exposes body to non-negligible radiation (2010) (public.asu.edu) 75
29 Show HN: Bosconian (1981), in 3-D (nolannicholson.com) 14
728 The Chromium project finds that around 70% of our serious security bugs are memory safety problems. Our next major project is to prevent such bugs at source. (chromium.org) 122
2939 Chrome: 70% of all security bugs are memory safety issues (zdnet.com) 677
55 MongoDB fails to preserve snapshot isolation even at strongest r/w concerns (jepsen.io) 27
48 Adventures of porting MUSL to PS4 (dayzerosec.com) 2
101 Mythical Man Month: Why more manpower doesn’t mean faster work (youtube.com) 17
203 Analyzing The Simplest C++ Program (in gory detail) (oneraynyday.github.io) 7
140 Scaling SQLite to 4M QPS on a Single Server (EC2 vs Bare Metal) (blog.expensify.com) 47
18 How to setup Selenium on Node (medium.com) 12
52 Stackoverflow Architecture: 2013 vs 2016 (mobile.twitter.com) 11
71 Assembly’s Perspective of C (blog.stephenmarz.com) 1
6 Trie: Data Structure Explained (parthshandilya.com) 6
31 neut - a dependently-typed programming language with compile-time malloc/free determination (github.com) 0
2259 Windows 10 quietly got a built-in network sniffer, how to use (bleepingcomputer.com) 362
0 Implementing simple cooperative threads in C (brennan.io) 0
0 The Mediocre Programmer (themediocreprogrammer.com) 0
0 3D Game Tutorial in C++ from scratch: Part 20 - Creating 3D Engine - SkyBox - SourceCode on GitHub (youtube.com) 3
1 Getting started with GraphQL and Apollo on iOS (medium.com) 3
0 Revisiting Old Flash Games | The McDonald's Game (youtube.com) 1
0 Command Prompt Secrets and Tricks in Windows (youtube.com) 0
0 GECODE - An open, free, efficient constraint solving toolkit (gecode.org) 0
0 ADTs in Practice. How to use model a Web API using ADTs (last-ent.com) 0
6 Generating random numbers using C++ standard library: the solutions (codingnest.com) 3
17 Turning Rust's trait system into an eso-lang (github.com) 17
1 Interactive Vehicle Routing (minizinc.org) 0
0 How to procedurally generate Tetris pieces (Go) (rocketnine.space) 0
Altran's 'Code Defect AI' and the Rise of AI-Assisted Coding Tools (techrepublic.com) 4

"Altran has released a new tool that uses artificial intelligence to help software engineers spot bugs during the coding process instead of at the end," reports TechRepublic. "Available on GitHub, Code Defect AI uses machine learning to analyze existing code, spot potential problems in new code, and suggest tests to diagnose and fix the errors." Walid Negm, group chief innovation officer at Altran, said that this new tool will help developers release quality code quickly. "The software release cycle needs algorithms that can help make strategic judgments, especially as code gets more complex," he said in a press release....

"Microsoft and Altran have been working together to improve the software development cycle, and Code Defect AI, powered by Microsoft Azure, is an innovative tool that can help software developers through the use of machine learning," said David Carmona, general manager of AI marketing at Microsoft, in a press release...

In a new report about artificial intelligence and software development, Deloitte predicts that more and more companies will use AI-assisted coding tools. From January 2018 to September 2019, software vendors launched dozens of AI-powered software development tools, and startups working in this space raised $704 million over a similar timeframe.... "The benefits of AI-assisted coding are numerous," according to Deloitte analysts David Schatsky and Sourabh Bumb, the authors of AI is Helping to Make Better Software. " However, the principal benefit for companies is efficiency. Many of the new AI-powered tools work in a similar way to spell- and grammar-checkers, enabling coders to reduce the number of keystrokes they need to type by around 50%. They can also spot bugs while code is being written, while they can also automate as many as half of the tests needed to confirm the quality of software." This capability is even more important as companies continue to rely on open-source code.

The Register got more details about Altran's Code Defect AI: The company told us that the AI does not look much at the source code itself, but rather at the commit metadata, "the number of files in the check-in, code complexity, density of the check-in, bug history of the file, history of the developer, experience of the developer in the particular module/file etc." Training of the model is done only on the project being examined...

20% of GitLab Employees Handed Over Login Credentials in Phishing Test (siliconangle.com) 25

SiliconANGLE reports: [C]ode repository management firm GitLab Inc. decided to phish their own employees to see what would happen. The result was not good: One in five employees fell for the fake emails...

The GitLab team behind the exercise purchased the domain name gitlab.company, then used G Suite to facilitate the delivery of the phishing email. ["Congratulations. Your IT Department has identified you as a candidate for Apple's System Refresh Program..."] The domain name and G Suite services were set up to look legitimate, complete with SSL certificates to make the emails look less suspicious to automated phishing site detection and human inspection.

Fifty GitLab employees were targeted with an email that asked them to click on a link to accept an upgrade. The link took them to the fake gitlab.company website where they were asked to enter their login details. On the positive side, only 17 of the 50 targeted employees clicked on the provided link.

However, 10 of those 17 then attempted to log in on the fake site.

Six of the 50 employees reported the email to GitLab's security operations team, the article notes. "Those who logged in on the fake site were then redirected to the phishing test section of the GitLab Handbook."

'FOSS Responders' Want to Help Open-Source Groups Survive (zdnet.com) 4

"Thanks to the coronavirus, technology events have been canceled left and right," writes ZDNet. "This, in turn, is damaging the finances of companies and groups that depend on these events." Some open-source groups, such as The Linux Foundation, can deal with it. Others aren't so fortunate. Some, such as Drupal Foundation, the Open Source Initiative (OSI), Open Source Matters (Joomla), and Ajv JSON Schema validator, are in real trouble. FOSS Responders is trying to help these and other groups and individuals...

Nuritzi Sanchez, a FOSS Responder co-founder and GitLab senior open-source program manager, said: We "started out around mid-March as a response to COVID-19 event cancellations. It's a group of open source leaders from companies like Indeed, Facebook, Google, Red Hat, GitHub, GitLab, etc." They've set up a process to help both open-source individuals and organizations facing financial trouble. So far, Sanchez said, "organizations are the ones that have been reaching out most so far." They're also consolidating information on how to plan and execute virtual events and provide a place where people can look for and offer help.

FOSS Responders has already had some success in raising donations. Alyssa Wright, Open Collective's director of social engineering, reports that it's raised funds from Indeed, Open Source Collective, Linux Fund, GitHub, Google, Sentry, Ethereum Foundation, and the Sloan Foundation.

As a result "FOSS Responders is contributing over $100K to open-source organizations that are experiencing financial strain because of the COVID-19 pandemic."

"The main focus of philanthropic efforts will be elsewhere, as they should be," noted LWN.net back in March, "but it is nice to see our community finding ways to help itself out internally."

What Happens When Software Development Environments Move to the Cloud? (ieee.org) 55

An anonymous reader quotes IEEE Spectrum: If you're a newly hired software engineer, setting up your development environment can be tedious. If you're lucky, your company will have a documented, step-by-step process to follow. But this still doesn't guarantee you'll be up and running in no time. When you're tasked with updating your environment, you'll go through the same time-consuming process. With different platforms, tools, versions, and dependencies to grapple with, you'll likely encounter bumps along the way.

Austin-based startup Coder aims to ease this process by bringing development environments to the cloud. "We grew up in a time where [Microsoft] Word documents changed to Google Docs. We were curious why this wasn't happening for software engineers," says John A. Entwistle, who founded Coder along with Ammar Bandukwala and Kyle Carberry in 2017. "We thought that if you could move the development environment to the cloud, there would be all sorts of cool workflow benefits."

With Coder, software engineers access a preconfigured development environment on a browser using any device, instead of launching an integrated development environment installed on their computers... To ensure security, all source code and related development activities are hosted on a company's infrastructure — Coder doesn't host any data. Organizations can deploy Coder on their private servers or on cloud computing platforms such as Amazon Web Services or Google Cloud Platform. This option could be advantageous for banks, defense organizations, and other companies handling sensitive data.

One of Coder's customers is the U.S. Air Force, the article points out -- and thats not the only government agency that's interested in their success.

When Coder closed $30 million in Series B funding last month (bringing total funding to $43 million), one of their backers was a venture capital firm with ties to America's Central Intelligence Agency.

Jack Dorsey Tells Andrew Yang: 'AI is Coming For Programming Jobs' (cnbc.com) 118

An anonymous reader quotes CNBC: The rise of artificial intelligence will make even software engineers less sought after. That's because artificial intelligence will soon write its own software, according to Jack Dorsey, the tech billionaire boss of Twitter and Square. And that's going to put some beginning-level software engineers in a tough spot.

"We talk a lot about the self-driving trucks in and whatnot" when discussing how automation will replace jobs held by humans, Dorsey told former Democratic presidential hopeful Andrew Yang on an episode of the "Yang Speaks" podcast published Thursday. But A.I. "is even coming for programming" jobs, Dorsey said.

"A lot of the goals of machine learning and deep learning is to write the software itself over time so a lot of entry-level programming jobs will just not be as relevant anymore," Dorsey told Yang.

Dorsey also told Yang that he belives a Universal Basic Income could give workers "peace of mind" that they'll be able to "eat and feed their children while they are learning how to transition into this new world."

Wikipedia Plans New Rule To Combat 'Toxic Behavior' (bbc.com) 142

Wikipedia is taking steps to fight what it's calling "toxic behavior" which will be finalized by the end of this year, reports the BBC (in an article shared by Charlotte Web): "We must work together to create a safe, inclusive culture, where everyone feels welcome, that their contributions are valued, and that their perspective matters," said Katherine Maher, the chief executive officer of the Wikimedia Foundation [which runs Wikipedia]... The foundation's binding code of conduct for members will include banning or limiting access if volunteers violate the terms. There will be a review process for the decisions if volunteers feel more context is needed.

Wikipedia has become one of the internet's most trusted sources for information, but complaints about gender imbalances and harassment have plagued the platform for close to a decade. A study from the University of Washington on the gender gap in Wikipedia editors found many female and LGBTQ editors feared for their safety. Several female editors told the researchers their work had been contested by male editors or that they received negative feedback from a male editor. A New York Times article from 2019 also highlighted the concerns some transgender editors have about volunteering for the site. One editor told the paper they received death threats...

[E]ditors can interact with one another and can change the content on a page after it has been written. This has led to a form of harassment where, after one volunteer adds to a page, another volunteer will remove or change that work moments later, forcing the first editor to redo their work and leading to editing battles.

Chromium Project Finds 70% of Its Serious Security Bugs Are Memory Safety Problems (chromium.org) 85

"Around 70% of our serious security bugs are memory safety problems," the Chromium project announced this week. "Our next major project is to prevent such bugs at source."

ZDNet reports: The percentage was compiled after Google engineers analyzed 912 security bugs fixed in the Chrome stable branch since 2015, bugs that had a "high" or "critical" severity rating. The number is identical to stats shared by Microsoft. Speaking at a security conference in February 2019, Microsoft engineers said that for the past 12 years, around 70% of all security updates for Microsoft products addressed memory safety vulnerabilities. Both companies are basically dealing with the same problem, namely that C and C++, the two predominant programming languages in their codebases, are "unsafe" languages....

Google says that since March 2019, 125 of the 130 Chrome vulnerabilities with a "critical" severity rating were memory corruption-related issues, showing that despite advances in fixing other bug classes, memory management is still a problem... Half of the 70% are use-after-free vulnerabilities, a type of security issue that arises from incorrect management of memory pointers (addresses), leaving doors open for attackers to attack Chrome's inner components...

While software companies have tried before to fix C and C++'s memory management problems, Mozilla has been the one who made a breakthrough by sponsoring, promoting and heavily adopting the Rust programming language in Firefox... Microsoft is also heavily investing in exploring C and C++ alternatives⦠But this week, Google also announced similar plans as well... Going forward, Google says it plans to look into developing custom C++ libraries to use with Chrome's codebase, libraries that have better protections against memory-related bugs. The browser maker is also exploring the MiraclePtr project, which aims to turn "exploitable use-after-free bugs into non-security crashes with acceptable performance, memory, binary size and minimal stability impact."

And last, but not least, Google also said it plans to explore using "safe" languages, where possible. Candidates include Rust, Swift, JavaScript, Kotlin, and Java.

Newly-Released Jailbreak Tool Can Unlock Every iPhone and iPad (techcrunch.com) 27

An anonymous reader quotes TechCrunch: A renowned iPhone hacking team has released a new "jailbreak" tool that unlocks every iPhone, even the most recent models running the latest iOS 13.5. [9to5Mac points out it also works on iPads.]

For as long as Apple has kept up its "walled garden" approach to iPhones by only allowing apps and customizations that it approves, hackers have tried to break free from what they call the "jail," hence the name "jailbreak...." The jailbreak, released by the unc0ver team, supports all iPhones that run iOS 11 and above, including up to iOS 13.5, which Apple released this week. Details of the vulnerability that the hackers used to build the jailbreak aren't known, but it's not expected to last forever...

Security experts typically advise iPhone users against jailbreaking, because breaking out of the "walled garden" vastly increases the surface area for new vulnerabilities to exist and to be found.

As Russia Stalks US Satellites, a Space Arms Race May Be Heating Up (thebulletin.org) 90

Russia "is now challenging the United States' long-standing supremacy in space and working to exploit the U.S. military's dependence on space systems for communications, navigation, intelligence, and targeting."

That's the argument made in The Bulletin by a former U.S. Air Force intelligence officer who writes about technology and military strategy, Cold War history, and European security affairs (in an article shared by Lasrick). Moscow is developing counter-space weapons as a part of its overall information warfare strategy. For example, Russia just tested an anti-satellite missile system designed to destroy satellites in low earth orbit. Moreover, military leaders in Russia view U.S. satellites as the key enablers of America's ability to execute rapid, agile, and global military operations; they are intent on echoing this success and modernizing their own military satellites to more effectively support Russian forces.

Since the end of the Cold War, the number of countries with space programs has markedly increased. Many of them are actively developing space weapons. China, for example, has an operational ground-launched anti-satellite system, according to the U.S. intelligence community. India successfully tested its own space weapon in 2019. France announced that it will launch a series of armed satellites. Even Iran is believed to be able to develop a rudimentary anti-satellite weapon in the near term... Space systems are essential for warfighting on Earth and the large growth in the number of countries fielding space weapons means the likelihood that outer space will be transformed into a battlefield has increased... Russia is the only country, however, that is reportedly approaching U.S. satellites in an aggressive manner...

Moscow's destabilizing behavior could prompt the United States to take a more aggressive posture in space in the future... Russia has been taking advantage of the lack of international consensus on what constitutes acceptable behavior in space... It seems clear that Russia is likely testing how the United States and its allies might react to aggressive space behaviors and is gaining important insights into American national security space capabilities...

In 2019, former Secretary of the Air Force Heather Wilson said that at some point, the United States needs the ability to "hit back." Russia's destabilizing actions in space could, therefore, fuel a dangerous arms race in space.

Open Source Security Report Finds Library-Induced Flaws in 70% of Applications (techrepublic.com) 30

The State of Software Security (SOSS): Open Source Edition "analyzed the component open source libraries across the Veracode platform database of 85,000 applications which includes 351,000 unique external libraries," reports TechRepublic. "Chris Eng, chief research officer at Veracode, said open source software has a surprising variety of flaws." "An application's attack surface is not limited to its own code and the code of explicitly included libraries, because those libraries have their own dependencies," he said. The study found that 70% of applications have a security flaw in an open source library on an initial scan.
Other findings from the report:

  • The most commonly included libraries are present in over 75% of applications for each language.
  • 47% of those flawed libraries in applications are transitive.
  • More than 61% of flawed libraries in JavaScript contain vulnerabilities without corresponding common vulnerabilities and exposures (CVEs).
  • Fixing most library-introduced flaws can be done with a minor version upgrade.
  • Using any given PHP library has a greater than 50% chance of bringing a security flaw along with it.

With Highway Traffic Down, Are Reckless Drivers Still Increasing Highway Fatalities? (go.com) 136

Highway patrols across America "are reporting a rise in reckless driving," writes ABC News.

Slashdot reader quonset shared their report: In Connecticut, traffic has been cut in half compared to last year, but fatal motor vehicle accidents are up by about 40%. "We're finding that with the open roads, certain individuals are taking this as an opportunity to push their vehicles to the limit," Connecticut State Police Trooper Josue Dorelus told ABC News' Transportation Correspondent Gio Benitez. Dorelus said they have seen a 90% increase in cars going over 15 miles above the speed limit during the coronavirus pandemic...

"When you're going in excess of 100 miles an hour, these crashes are inevitably going to be fatal or near fatal," Advocates for Highway and Auto Safety President Cathy Chase told ABC News. In Massachusetts, the fatality rate for car crashes is rising. In Minnesota, motor vehicle crashes and fatalities have more than doubled compared to the same time period in previous years... Pam Shadel Fischer, the Governors Highway Safety Association's senior director of external engagement, said it could be because it is harder for drivers to gauge their own speed without other drivers on the road.

I wonder if that percentage increase of fatalities appears higher in a low-population states like Connecticut (3.565 million people). The article also notes that in California (population 39.5 million), their Highway Patrol "issued nearly 2,500 citations statewide for driving over 100 miles per hour from mid-march to mid-April -- an 87% jump from the same time last year..." But another article points out that from March 19 to April 30, the overall number of crashes in California dropped 75% while the number of people killed declined by 88%, and there was a 62% decrease in injuries (plus a 42% drop in DUI arrests).

Interestingly, that same article points out that from late March 19 to May 13 there were 6,043 citations for driving over 100 miles per hour -- so it's spiked by 3,543 in the last month since "mid-April", to a number that's over 1,000 more than the month before.

Munich Says It's Now Shifting Back From Microsoft to Open Source Software -- Again (zdnet.com) 74

Newly-elected politicians in Munich "have decided its administration needs to use open-source software, instead of proprietary products like Microsoft Office," reports ZDNet: "Where it is technologically and financially possible, the city will put emphasis on open standards and free open-source licensed software," a new coalition agreement negotiated between the recently elected Green party and the Social Democrats says. The agreement was finalized May 10 and the parties will be in power until 2026. "We will adhere to the principle of 'public money, public code'. That means that as long as there is no confidential or personal data involved, the source code of the city's software will also be made public," the agreement states...

Munich began the move away from proprietary software at the end of 2006... By 2013, 80% of desktops in the city's administration were meant to be running LiMux software. In reality, the council continued to run the two systems — Microsoft and LiMux — side by side for several years to deal with compatibility issues. As the result of a change in the city's government, a controversial decision was made in 2017 to leave LiMux and move back to Microsoft by 2020. At the time, critics of the decision blamed the mayor and deputy mayor and cast a suspicious eye on the US software giant's decision to move its headquarters to Munich. In interviews, a former Munich mayor, under whose administration the LiMux program began, has been candid about the efforts Microsoft went to to retain their contract with the city.

The migration back to Microsoft and to other proprietary software makers like Oracle and SAP, costing an estimated €86.1m ($93.1m), is still in progress today.

"We're very happy that they're taking on the points in the 'Public Money, Public Code' campaign we started two and a half years ago," Alex Sander, EU public policy manager at the Berlin-based Free Software Foundation Europe, tells ZDNet. But it's also important to note that this is just a statement in a coalition agreement outlining future plans, he says. "Nothing will change from one day to the next, and we wouldn't expect it to," Sander continued, noting that the city would also be waiting for ongoing software contracts to expire. "But the next time there is a new contract, we believe it should involve free software."

Java Programming Language Celebrates Its 25th Birthday. What's Next? (infoworld.com) 69

May 23rd marks the 25th anniversary of the day Sun Microsystems introduced Java to the world, notes InfoWorld.

Looking at both the present and the future, they write that currently Java remains popular "with enterprises even as a slew of rival languages, such as Python and Go, now compete for the hearts and minds of software developers." Java continues to rank among the top three programming languages in the most prominent language popularity indexes — Tiobe, RedMonk, and PyPL. Java had enjoyed a five-year stint as the top language in the Tiobe index until this month, when it was overtaken by the C language, thanks perhaps to the combination of C's wide use in medical equipment and the urgency of the COVID-19 pandemic.

Nevertheless, Java represents a huge ecosystem and source of jobs. There were an estimated nine million Java developers worldwide in 2017, according to Oracle. A recent search of jobs site Dice.com found nearly 12,000 Java-related jobs in the USA, compared to roughly 9,000 jobs in JavaScript and 7,600 in Python. Plus, Java has spawned an enormous ecosystem of tools ranging from the Spring Framework to application servers from companies such as IBM, Red Hat, and Oracle to the JavaFX rich media platform.

The developers behind Java — including Oracle and the broader OpenJDK community — have kept the platform moving forward. Released two months ago, Java 14, or Java Development Kit (JDK) 14, added capabilities including switch expressions, to simplify coding, and JDK Flight Recorder (JFR) Event Streaming, for continuous consumption of JFR data. Up next for Java is JDK 15, set to arrive as a production release in September 2020, with capabilities still being lined up for it. So far, the features expected include a preview of sealed classes, which provide more-granular control over code, and records, which provide classes that act as transparent carriers for immutable data. Also under consideration for Java is a plan dubbed Project Leyden, which would address "longterm pain points" in Java including resource footprint, startup time, and performance issues by introducing static images to the platform.

America's CDC and 11 States Erroneously Conflated Two Kinds of Coronavirus Tests (theatlantic.com) 111

America's Center for Disease Control "is conflating viral and antibody tests..." writes the Atlantic, "distorting several important metrics and providing the country with an inaccurate picture of the state of the pandemic."

Thelasko shared their report: We've learned that the CDC is making, at best, a debilitating mistake: combining test results that diagnose current coronavirus infections with test results that measure whether someone has ever had the virus. The upshot is that the government's disease-fighting agency is overstating the country's ability to test people who are sick with COVID-19... The widespread use of the practice means that it remains difficult to know exactly how much the country's ability to test people who are actively sick with COVID-19 has improved.

"You've got to be kidding me," Ashish Jha, the K. T. Li Professor of Global Health at Harvard and the director of the Harvard Global Health Institute, told us when we described what the CDC was doing. "How could the CDC make that mistake? This is a mess...." By combining the two types of results, the CDC has made them both "uninterpretable," he said...

[T]he portion of tests coming back positive has plummeted, from a seven-day average of 10 percent at the month's start to 6 percent on Wednesday. "The numbers have outstripped what I was expecting," Jha said. "My sense is people are really surprised that we've moved as much as we have in such a short time period. I think we all expected a move and we all expected improvement, but the pace and size of that improvement has been a big surprise."

The intermingling of viral and antibody tests suggests that some of those gains might be illusory.

"The CDC is not alone in its errors," notes a Reason article shared by schwit1. "Several states have been blending their test results as well, rendering it difficult to determine the local impact of the virus." But the CDC's role as the officially designated first line of defense makes the agency's failure far more significant. Without clear, reliable, and accurate reporting from the CDC, it becomes nearly impossible to take stock of the pandemic's damage.

The virus has upended American life in ways that make it unusually difficult to predict the future. But thanks to the CDC, we have a problem that is even worse: No only do we not know what is going to happen, but we don't know what is happening.

Trump Administration Mulls First US Nuclear Test in Decades (chron.com) 108

The Trump administration "has discussed whether to conduct the first U.S. nuclear test explosion since 1992," reports the Washington Post, "in a move that would have far-reaching consequences for relations with other nuclear powers and reverse a decades-long moratorium on such actions, said a senior administration official and two former officials familiar with the deliberations." The matter came up at a meeting of senior officials representing the top national security agencies last Friday, following accusations from administration officials that Russia and China are conducting low-yield nuclear tests — an assertion that has not been substantiated by publicly available evidence and that both countries have denied.

A senior administration official, who like others spoke on the condition of anonymity to describe the sensitive nuclear discussions, said that demonstrating to Moscow and Beijing that the United States could "rapid test" could prove useful from a negotiating standpoint as Washington seeks a trilateral deal to regulate the arsenals of the biggest nuclear powers. The meeting did not conclude with any agreement to conduct a test, but a senior administration official said the proposal is "very much an ongoing conversation."

Another person familiar with the meeting, however, said a decision was ultimately made to take other measures in response to threats posed by Russia and China and avoid a resumption of testing... During the meeting, serious disagreements emerged over the idea, in particular from the National Nuclear Security Administration, according to two people familiar with the discussions.

The Post points out that since 1945 "at least eight countries have collectively conducted about 2,000 nuclear tests, of which more than 1,000 were carried out by the United States.

"The environmental and health-related consequences of nuclear testing moved the process underground, eventually leading to near-global moratorium on testing in this century with the exception of North Korea."