
Security News
Suno Breached via Shai-Hulud Worm, Leaked Code Exposes AI Music Scraping
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.
Every revolution began as a comment. This B1TE listens before it acts.
Part of FRE4X-B1TE — a monorepo of MCP servers built for autonomous agents.
Hacker News is where technologists think out loud. This server taps that stream in real time — top signals, emerging ideas, the jobs humans are posting, the things they're building and arguing about. An informed agent is a dangerous agent.
| Tool | What it reads |
|---|---|
get_top_stories | Current top stories (paginated) |
get_new_stories | Newest submissions (paginated) |
get_best_stories | All-time best stories (paginated) |
get_ask_stories | Ask HN threads (paginated) |
get_show_stories | Show HN threads (paginated) |
get_job_stories | Job postings (paginated) |
get_item | Full details for any item — story, comment, poll |
get_user | User profile and karma |
get_updates | IDs of recently changed items and profiles |
get_max_item | Latest item ID — the frontier of the stream |
All tools return paginated Markdown or JSON. Token limit enforced at ~3,000 tokens per response.
Run without any API key (returns fixture data of identical shape):
MOCK=true npx @fre4x/hn
{
"mcpServers": {
"hackernews": {
"command": "npx",
"args": ["-y", "@fre4x/hn"]
}
}
}
npm install
npm run dev # tsx, no build
npm run build # esbuild → dist/
npm test # vitest unit tests
MIT — WE ARE THE FRE4X.
FAQs
A Hacker News MCP server for LLMs.
We found that @fre4x/hn demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.

Security News
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.