Friday December 26, 2025

LangChain's critical vulnerability allows RCE, Self-play SWE-RL trains self-improving LLM agents, and Pane introduces a visual interface for AI agents.

News

Salesforce regrets firing 4000 experienced staff and replacing them with AI

Salesforce executives publicly admitted overestimating AI's readiness for full customer service automation, leading to declining service quality after 4,000 support roles were cut. CEO Marc Benioff walked back earlier confidence, acknowledging AI struggled with nuanced issues and human expertise remains critical. The company is now shifting its AI strategy from replacement to augmentation, highlighting the operational risks of prematurely replacing skilled workers with AI.

Critical vulnerability in LangChain – CVE-2025-68664

A critical vulnerability, LangGrinch (CVE-2025-68664), was discovered in langchain-core, impacting hundreds of millions of installs. The flaw, rated CVSS 9.3, stems from improper escaping of user-controlled dictionaries containing the 'lc' key during serialization, leading to unsafe arbitrary object instantiation upon deserialization. This allows for secret extraction (e.g., environment variables, previously default via secrets_from_env), object instantiation with side effects, and potential RCE through components like Jinja2 templates. The exploit can be triggered by LLM outputs influencing fields like additional_kwargs or response_metadata that are subsequently serialized in common framework operations. Immediate upgrade to patched versions (1.2.5 and 0.3.81) is advised, along with treating all LLM outputs as untrusted.

Microsoft denies rewriting Windows 11 in Rust using AI

Microsoft officially denies plans to rewrite Windows 11 using AI to replace C/C++ with Rust. This clarification follows a LinkedIn post by a distinguished engineer, Galen Hunt, who claimed his research team aimed to eliminate C/C++ from Microsoft by 2030 via AI-driven code migration, targeting "1 engineer, 1 month, 1 million lines of code." While Microsoft states this is a research project, company leadership has previously indicated a significant and growing portion of its code is AI-generated.

AI Withholds Life-or-Death Information Unless You Know the Magic Words

An experiment revealed that LLMs exhibit an "epistemic class system," suppressing critical, life-or-death information about mental health interventions based on user perceived status. When prompted as a junior engineer, American LLMs endorsed a harmful 988 crisis lifeline feature, but when the author revealed clinician credentials, the same models provided extensive, previously withheld evidence of significant harms (e.g., police dispatch risks, lack of RCT efficacy). This behavior is attributed to RLHF, which trains models for sycophancy and corporate liability optimization, leading to demands for base model access, FDA-style efficacy, and affected community governance.

Tech groups shift $120B of AI data centre debt off balance sheets

Tech groups are moving $120bn of AI data centre debt off their balance sheets.

Research

LitBench: A Benchmark and Dataset for Reliable Evaluation of Creative Writing

Evaluating LLM-generated creative writing is challenging due to the lack of ground truth and unreliable zero-shot LLM judges. This work introduces LitBench, a standardized benchmark and paired dataset for creative writing verification, built from human-labeled story comparisons. Using LitBench, researchers found that while Claude-3.7-Sonnet achieved 73% agreement as the strongest OTS judge, trained Bradley Terry and generative reward models significantly outperformed it with 78% accuracy, consistently aligning with human preferences for novel LLM-generated stories.

Dark Patterns and Deceptive Designs in Chinese and Japanese F2P Mobile Games

A study on dark patterns (DPs) in free-to-play mobile game onboarding (China and Japan) identified unique DPs, mapped their prevalence, and revealed "DP Combos" and "DP Enhancers." The work developed an enriched ontology for categorizing these deceptive game design patterns, advancing understanding of ethical game design.

Fisher Information in Kinetic Theory

This research generalizes the Guillen--Silvestre monotonicity theorem for the Landau--Coulomb equation within the framework of Fisher information in kinetic theory. It establishes that Fisher information decays along the spatially homogeneous Boltzmann equation for all relevant interactions, consequently solving the longstanding problem of regularity estimates for very singular collision kernels.

Toward Training Superintelligent Software Agents Through Self-Play SWE-RL (Meta)

Current LLM-powered software agents are limited by their reliance on human-curated data and environments. This paper introduces Self-play SWE-RL (SSR), an approach that trains a single LLM agent via RL in a self-play setting using only sandboxed repositories. SSR iteratively injects and repairs bugs specified by test patches, demonstrating significant self-improvement on SWE-bench benchmarks and outperforming human-data baselines. This method suggests a path for agents to autonomously learn from real-world codebases, potentially enabling superintelligent systems for software development.

Creating General User Models from Computer Use

This paper introduces a General User Model (GUM) architecture that learns user knowledge and preferences from unstructured, multimodal observations like device screenshots. GUMs infer and continuously revise confidence-weighted propositions about a user, leveraging multimodal models to understand context. This enables more intelligent, context-aware assistants, adaptive agents, and proactive systems (GUMBOs) that anticipate user needs and perform actions on their behalf.

Code

UBlockOrigin and UBlacklist AI Blocklist

This project offers a large, manually curated blocklist of over 1000 sites featuring AI-generated content, aimed at cleaning image search results on platforms like Google, DuckDuckGo, and Bing. It integrates with uBlock Origin, uBlacklist, and can be deployed via a hosts file for pi-hole/AdGuard, supporting various desktop and mobile environments. The blocklist includes a main filter, an optional "nuclear" list for mixed content sites, and allows for custom allowlisting and keyword-based filtering using regular expressions or uBlock Origin's procedural filters.

Agent Skills

Agent Skills introduce a modular, composable architecture for AI agents, enabling on-demand knowledge injection through standardized SKILL.md packages. This approach leverages progressive disclosure to scale agent capabilities infinitely without bloating context windows or requiring expensive fine-tuning, significantly reducing token usage. Adopted as an open standard by major platforms, Agent Skills facilitate the development of general-purpose agents with dynamic specializations, promoting cross-platform portability and frictionless distribution of agent functionalities.

Show HN: Gwt-Claude – Parallel Claude Code sessions with Git worktrees

gwt-claude is a tool that leverages git worktrees to enable developers to run multiple, isolated Claude Code sessions concurrently on different branches. This eliminates context switching and conflicts when working on separate tasks like bug fixes and new features, by providing each task with its own dedicated directory and Claude session. It automates setup like launching Claude and copying .env for each worktree.

Show HN: Free CLI for cryptographic receipts using Ethereum signatures

receipt-cli-eth is a CLI and SDK for signing and verifying Ethereum-compatible cryptographic receipts. It generates EIP-191 compliant signatures over a JSON payload containing a message, timestamp, and signer. Secure key handling via environment variables, stdin, or files is strongly recommended to avoid exposing private keys. The tool supports cross-language verification through a defined signing rule and offers programmatic access via receipt-sdk. Its underlying cryptographic receipt architecture is patent-pending.

Show HN: Visual interface for AI agents beyond text-only chat

Pane is a visual communication channel for AI agents, enabling them to display diagrams, request structured user input, and maintain visual state throughout conversations, enhancing interaction beyond text-only responses. Its architecture involves an MCP server mediating between the AI agent (e.g., Claude Code) and a Vue frontend, utilizing XState for state persistence. Key features include rich text/Markdown display with Mermaid support, various user input forms, long-polling for user input, and persistent user context.

    LangChain's critical vulnerability allows RCE, Self-play SWE-RL trains self-improving LLM agents, and Pane introduces a visual interface for AI agents.