Programmer Weekly (Issue 303 June 4 2026)

Author

Rahul Chaudhary
June 04, 2026

In partnership with

Welcome to issue 303 of Programmer Weekly. Let's get straight to the links this week.

What if AI handled your job search tonight?

Job hunting is exhausting.

AIApply makes it automatic.

Your AI Career Agent works 24/7 to:

  • Find relevant jobs online

  • Tailor your resume instantly

  • Generate personalized cover letters

  • Auto-apply while you sleep

  • Help you land more interviews

No more endless tabs.
No more repetitive applications.
No more wasting hours every week.

AIApply helps you apply faster, smarter, and at scale so you can focus on what actually matters: getting hired.


Quote of the Week

"Shared mutable state is the root of all evil in concurrent systems." — Edward Kmett


Reading List

A tour through AI engineering for developers who already know how to ship software. Fourteen chapters, no LinkedIn voice, no slow warm-up. We will go from 'what is a foundation model' to 'how do you run agents in production on Google Cloud' without skipping the parts that matter.

Learn how servers actually work by building a tiny TCP server and client from scratch. A hands-on introduction to sockets, TCP, and the network programming model every backend, DevOps, and platform engineer should go through at least once.

A practical guide to Docker networking through localhost, bridge networks, service DNS, published ports, Compose networking, and debugging container connection issues.

The article traces Kubernetes traffic management from the limitations of the Ingress API to the more flexible, role-oriented Gateway API. It explains key Gateway API concepts such as GatewayClasses, protocol-specific Routes, and ReferenceGrants, while providing practical guidance on modern controller choices like Envoy Gateway.

The trigger layer is load-bearing infrastructure. Most agent teams treat it like a footnote.

A deep dive into Claude Code for daily users. Covers the .claude directory, CLAUDE.md the way Boris writes it, CLAUDE.local.md, Skills with real examples, custom subagents, plugins, underused commands like /goal and /insights, MCPs, and the workflow patterns the Anthropic team actually uses.

1-Click GitHub Token Stealing via a VSCode Bug

A newly disclosed VSCode vulnerability allows attackers to steal GitHub tokens with read/write access to private repositories through a malicious github.dev link, exploiting webview keyboard event handling and extension installation flows. The attack demonstrates how seemingly isolated browser-based development environments can become high-value targets, highlighting the security risks of OAuth tokens, webviews, and extension ecosystems.

Hacking your PC using your speaker without ever touching it

A security researcher discovered vulnerabilities in the Creative Sound Blaster Katana V2X that allow attackers within Bluetooth range to remotely install malicious firmware without pairing, potentially turning the speaker into a covert surveillance device or USB keystroke injector. The exploit chain combines unauthenticated Bluetooth access, unsigned firmware updates, and existing USB HID capabilities to achieve remote code execution on connected PCs, highlighting serious security risks in consumer IoT devices.


Watch, Listen
Samy Kamkar On Hacking, Viruses & The Secret Service Raid

In this interview, security researcher Samy Kamkar recounts his journey from a teenage IRC coder to the creator of the viral 2005 MySpace "Samy worm," which led to an eventual Secret Service raid. He also discusses his subsequent transition into entrepreneurial success, rejection of high-profile criminal contracts, and his current focus on advanced hardware prototyping and hardware hacking experiments.

Learn to build and deploy intelligent AI agents that bridge the gap between LLMs and real-world automation to handle complex research and data analysis. This comprehensive course takes you from zero to deployment, using OpenAI and Node.js to create a production-ready tool complete with a PostgreSQL database on Render.


Interesting Projects, Tools and Libraries

Self-hosted AI workspace.

A native, local-first alternative to Logitech Options+. Remap buttons, DPI, and SmartShift over HID++. No account, no telemetry.

State-of-the-art memory and context engine for AI.

Revo is an experimental, dynamically typed programming language written in Zig focused on being small and fun to program in.

Stream Postgres to Apache Iceberg on S3 via logical replication, queryable over the Postgres wire protocol.

Pi extension for async subagent delegation with truncation, artifacts, and session sharing.

ktx is an executable context layer for data and analytics agents. Allow Claude Code, Codex, and any AI agent to query data accurately through MCP with skills, memory and a semantic layer.

An infinite canvas for your code, terminals, browsers, docs, and AI agents.

Murrdb: A RocksDB-based NVMe/S3 cache for AI inference workloads. A faster Redis replacement, optimized for batch low-latency zero-copy reads and writes.

Version-Control for AI coding agents.

Self-hosted collaborative SQL editor for teams that care about data privacy.


Our Other Newsletters

Python Weekly - A free weekly newsletter featuring the best hand curated news, articles, tools and libraries, new releases, jobs etc related to Python.


Founder Weekly - A free weekly newsletter for entrepreneurs featuring best curated content, must read articles, how to guides, tips and tricks, resources, events and more.