What Edu is reading this week (Apr 27 - May 3, 2026)

Big week: a no-race, 100% reliable Linux LPE hitting all major distributions, a flood of AI agent sandboxing content, and another wave of Claude Code tooling.

Security

• Copy Fail — CVE-2026-31431 / Copy Fail: 732 Bytes to Root: A 100% reliable Linux local privilege escalation exploiting AF_ALG + splice() for a 4-byte page cache write — no race condition, no per-distro offsets, bypasses on-disk file-integrity tools and crosses containers. A 732-byte PoC gets root on Ubuntu, Amazon Linux, RHEL, and SUSE.
• tgies/copy-fail-c: Cross-platform C port of the Copy Fail PoC (CVE-2026-31431), disclosed by Theori / Xint on April 29.
• NorskHelsenett/copy-fail-destroyer: Mitigation tooling for Copy Fail.
• GTFOBins: Curated list of Unix binaries exploitable to bypass local security restrictions in misconfigured systems — always useful.

Cloud, Kubernetes & Infrastructure

• Kubernetes 1.36 UserNamespaces GA: great feature, dangerously oversold: A grounded take on K8s 1.36 UserNamespaces reaching GA — what it actually protects and where the security boundary claims fall short.
• FOSDEM 2026 - All videos are online: All FOSDEM 2026 talks now available for streaming and download.
• microvm.nix / microvm-nix/microvm.nix: NixOS MicroVMs — lightweight VMs declaratively managed with Nix.
• nirs/vmnet-helper / nirs/vmnet-broker: High-performance network proxy and shared XPC service for connecting VMs to macOS vmnet — useful for Apple Virtualization framework setups.
• Devbox / devenv: Portable, isolated dev environments without Docker. Devbox uses Nix under the hood; devenv is declarative and composable. Two solid alternatives for reproducible local dev.
• Tracer-Cloud/opensre: Open source toolkit for building AI SRE agents.

AI, Agents & Tools

• What every dev should know about AI sandboxes / A field guide to sandboxes for AI: Two complementary reads on sandboxing for AI agents — containers vs gVisor vs microVMs vs Wasm, what each boundary buys you, and where they fail.
• Safe Yolo Mode: Running LLM Agents in VMs with Libvirt and Virsh: Give LLM agents full shell access inside a libvirt VM without risking the host — covers VM creation, snapshots, and remote access.
• lynaghk/vibe: Easy Linux VM on macOS for sandboxing LLM agents.
• sylvinus/agent-vm: Run AI agents in safe VMs scoped to a local folder.
• Lima AI agents: Official Lima docs for running AI agents (Aider, Claude Code, Codex, Gemini) in isolated VMs with mount-only access to the project directory.
• Using Lima and Bash dotfiles to go fast with Claude Code: Practical setup for running Claude Code inside Lima VMs with dotfiles integration.
• APERTVS.ai / swiss-ai/pretrain-data: Apertus, a fully open foundation model for sovereign AI from the Swiss AI initiative — includes pretraining data reconstruction scripts.
• LocalAI: Free, OpenAI/Anthropic-compatible all-in-one local inference stack.
• Linux kernel’s ‘second-in-command’ uses local AI bot to hunt bugs / The New Linux Kernel AI Bot: Greg Kroah-Hartman’s “Clanker T1000” — a local LLM fuzzing and bug-hunting system running on a Framework Desktop with AMD Ryzen AI Max+, resulting in close to two dozen kernel patches.
• Where the goblins came from: OpenAI post-mortem on how personality-driven “goblin” outputs spread in GPT-5 — timeline, root cause, and fixes.
• Running Local LLMs Offline on a Ten-Hour Flight: Testing Gemma 4 31B and Qwen 4.6 36B via LM Studio on a MacBook Pro M5 Max (128GB) on a London-to-Vegas flight with no Wi-Fi.
• MLX / ml-explore/mlx: Apple’s MLX — an array framework for machine learning on Apple Silicon.
• How I Measured 1 Tonne of CO2 from My AI Coding Sessions: Measuring the environmental footprint of AI-assisted development.
• Taalas — The model is The Computer / chat jimmy: Taalas turns deep learning models into custom silicon — chat jimmy is their LLM web interface, capable of 25k tokens/s inference.
• sci-bot: AI-powered research assistant.

Claude Code & AI Coding Tools

• Orchestrate teams of Claude Code sessions: Official Claude Code docs for coordinating multiple instances with shared tasks, inter-agent messaging, and centralized management.
• Manage costs effectively: Claude Code cost management — token usage tracking, spend limits, context management, model selection, and preprocessing hooks.
• Common workflows: Claude Code guide including parallel sessions with git worktrees.
• Conductor: Mac app for running parallel Codex + Claude Code agents in isolated workspaces — see what they’re working on at a glance, then review and merge.
• endorhq/flightplanner: Framework-agnostic E2E testing principles and AI-assisted workflows for coding agents.
• ralph-wiggum: Claude Code plugin for autonomous, long-running multi-task execution loops.
• Claude Code On-The-Go: Running six Claude Code agents in parallel from an iPhone via cloud VM, Tailscale, mosh, and push notifications.
• Plugins for Claude Code / CLAUDE.md Management plugin: Claude Code plugin marketplace — including a plugin to maintain and audit CLAUDE.md files.
• openclaw/clawsweeper / openclaw/clownfish / openclaw/gitcrawl: Steipete’s AI-powered GitHub maintenance stack — ClawSweeper scans issues/PRs weekly to suggest closures, Clownfish resolves issue clusters at scale, gitcrawl crawls for maintainer triage. Closed ~4000 issues in a single day.
• nilbuild/diffity: GitHub-style diff viewer for reviewing code changes from Claude Code, Cursor, and other AI tools.
• Vibe Maintainer: Steve Yegge on what it’s like maintaining a large OSS project flooded with AI-generated PRs.
• How I use AI in 2026: A maintainer and developer’s practical AI workflow — coding, triaging PRs, and handling CI failures.
• systalyze/utilyze / Systalyze: Platform for uncovering and eliminating inefficiencies in AI workloads — claims up to 90% cost reduction.

Linux & Systems

• Progress Report: Linux 7.0 — Asahi Linux: Asahi Linux progress report tracking Linux 7.0 support for Apple Silicon.
• Project:Asahi/Guide — Gentoo Wiki: Guide to running Linux on Apple Silicon via Gentoo.
• Ubuntu 26.04 can install APT packages from GitHub Container Registry: Ubuntu 26.04 ships with support for installing APT packages hosted on OCI-compliant registries like GHCR.
• ps5-linux released / ps5-linux/ps5-linux-loader: PS5 Phat (3.xx and 4.xx firmware) can now boot Linux as a fully functional PC gaming device via HV exploit and custom bootloader.
• HardenedBSD Officially on Radicle / Radicle: HardenedBSD moves to Radicle, the peer-to-peer sovereign code forge built on Git.
• Managing Secrets In Linux: Tools and approaches for secrets management on Linux, covering GNOME Keyring and alternatives.

Development, Web & Tools

• Ghostty Is Leaving GitHub: Mitchell Hashimoto explains why the Ghostty terminal emulator is moving away from GitHub.
• con: Open-source, GPU-accelerated terminal with a built-in AI harness for SSH, tmux, and agent-native workflows.
• foot — ArchWiki: ArchWiki page for foot, a fast, lightweight Wayland terminal emulator.
• Quarkdown: Modern open-source Markdown-based typesetting system for papers, presentations, knowledge bases, and static sites.
• Managing Secrets In macOS: Tools for secrets management on macOS — companion to the Linux article above.
• interblah.net — Self-updating screenshots: A technique for keeping screenshots in documentation automatically up to date.
• From Milliseconds to 26 Nanoseconds: How a $20 eBay SFP Module Beat My Entire NTP Setup: Using a cheap SFP module and PTP on a Raspberry Pi to achieve 26ns time accuracy — dramatically better than GPS-based NTP.

Apple / macOS

• How fast is a macOS VM, and how small could it be?: Geekbench performance figures for macOS VMs and testing the minimum cores/memory needed to run one usably on a MacBook.
• Networking changes coming in macOS 27: AFP removal and new server connection requirements coming in macOS 27 — what it means for your setup.
• Apple wants to kill your Time Capsule, but they run NetBSD so they can’t / jamesyc/TimeCapsuleSMB: Time Capsules run NetBSD, which complicates Apple’s ability to remote-kill them. TimeCapsuleSMB hacks the device to run modern Samba.
• x56/airpyrt-tools / noname122021/airpyrt-tools-guide: Python client and guide for unlocking AirPort Extreme (A1521) on Apple Silicon — enable SSH, remove region limits (FCC boost), and control hardware fans.

Fun & Misc

• synth.html v0.7.0: A modular synthesizer in a single HTML file — no server, no build step, no npm install. Drag nodes, patch cables, and sculpt sound like it’s 1972 but your browser is the Moog.
• Is my blue your blue?: Interactive color perception test — does everyone see the same blue?
• ¿Cuánto te cuestan realmente tus gastos?: Opportunity cost calculator (in Spanish) — what your daily coffee actually costs in 20 years at a 7% return.