Today's digest · Saturday, June 6

The 13 things in AI/dev today.

LiveNext issue at 7:00 CET

Stories

#1 / TODAY

Simon Willison·1 min·5d agoFREE

Running Python code in a sandbox with MicroPython and WASM

This development focuses on enabling Python code execution within a sandboxed environment, leveraging MicroPython and WebAssembly (WASM). The approach aims to provide a secure and isolated method for running Python, potentially within web browsers or other constrained environments. This capability allows for enhanced security and portability of Python applications, offering developers a new pathway for deploying Python logic in contexts where native execution might be restricted or undesirable.

Developers can now securely execute Python code in sandboxed environments, including web browsers, enhancing application portability and security.

pythonmicropythonwasmsandboxing

simonwillison.net

Running Python code in a sandbox with MicroPython and WASM

#2 / TOP STORY

GitHub ChangelogFREE

GPT-5.2 and GPT-5.2-Codex deprecated

GitHub has deprecated the GPT-5.2 and GPT-5.2-Codex models as of June 5, 2026. These models are no longer available across most GitHub Copilot experiences, including Copilot Chat, inline edits, ask and agent modes, and code completions. This change impacts developers relying on these specific models for AI-assisted coding tasks within the GitHub ecosystem, potentially requiring adaptation to alternative or newer models integrated into Copilot.

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

#3 / TOP STORY

The Hacker NewsFREE

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Recent supply chain attacks have impacted the npm ecosystem, deploying a Rust-based information stealer and a self-spreading worm. Threat actors used over 50 malicious or poisoned legitimate packages to distribute these threats. The information stealer is designed to scrape secrets from developer machines and employs an eBPF kernel rootkit for stealth, posing a significant risk to developer security and project integrity within the npm environment.

aigest · daily

Get this every morning.

One email. The signal. Built for builders.

Free · Unsubscribe in one click · No trackers

// Worth knowing9 stories

Gateway, Cloudflare Mesh, Workers VPC - Filter Workers' public Internet traffic using Gateway policies

Developers can now apply Zero Trust policies to Worker egress traffic without extra code.

cloudflareworkerszero-trustgateway

Cloudflare Developer Platform6d ago1mFREE

What Is Ollama? The Complete Guide to Running LLMs Locally in 2026

Developers can build private, offline AI applications without cloud costs or data exposure.

ollamallmlocal-aiprivacy

DEV Community5d ago1mFREE

Drives for Vercel Sandbox in Private Beta

Persistent storage for sandboxes enables stateful development workflows and agent workspaces across ephemeral environments.

vercelsandboxstoragebeta

Vercel6d ago1mFREE

AI Gateway - Control AI costs with spend limits

Prevents runaway AI costs by enforcing budgets based on actual token usage.

cloudflareai-gatewaycost-managementspend-limits

Cloudflare Developer Platform6d ago1mFREE

Fix with Copilot for failing Actions now in Pro, Pro+, and Max

Developers can now fix CI/CD failures faster without leaving the GitHub interface.

githubcopilotactionsdevops

GitHub Changelog7d ago1mFREE

Budget and usage management APIs now generally available

Developers can now automate budget and usage tracking, reducing manual billing overhead and enabling cost control at scale.

githubapisbillingdevops

GitHub Changelog7d ago1mFREE

How to Stop Shipping Low-Quality RL Environments (with Examples)

Faulty RL environments waste compute and produce unreliable models that fail in production.

reinforcement-learningenvironment-designbest-practices

Latent Space6d ago1mFREE

Workflows - Rollback support now available in Workflows

Simplifies error recovery by keeping cleanup logic next to each step, reducing boilerplate and debugging complexity.

cloudflareworkflowsrollbacksaga

Cloudflare Developer Platform6d ago1mFREE

Stop Using Conventional Commits

Adopting rigid commit conventions can harm team productivity and message clarity.

conventional-commitscommit-messagesdeveloper-productivity

Lobsters6d ago1mFREE

More selected · 1

Google Gemma 4 12B nearly matches 26B benchmarks — and runs on your laptop

Developers can now run near-frontier AI locally on laptops, enabling offline, private, and cost-effective inference.

googlegemmalocal-aimultimodal

The New Stack7d ago1mFREE

// Yesterday6 stories