So I'm trying to build a system that listens to calls as they're happening. All implementations antigravity/codex/cursor throws out have been really janky and ineffective. Spent a couple days prompt engineering without finding an elegant solution. Anybody have insights?
Hello HN,I am a developer working on open source in my spare time.I built Violit because I love the simplicity of Streamlit but hit performance bottlenecks due to its execution model (re-running the entire script on every interaction). I also explored NiceGUI, which is excellent, but found it difficult to customize beyond its default Material Design look.My goal is to empower Python developers to build beautiful, fast full-stack applications without needing React or a separate frontend team. Whi
For the past two years I’ve been working on a long-term project called ShadowStrike, an experimental endpoint detection and response engine written mostly in C/C++ with some x86-64 assembly components.This project is still pre-alpha. It does not compile yet, the codebase is large and messy, and many components are under heavy refactoring. I’m sharing it early because I’d rather build in public and learn from feedback than wait for perfection.The focus so far has been understanding how EDR s
Hi HN — I built alive-analysis, an open-source workflow kit that turns AI coding agents into structured data analysis partners.Problem: AI-assisted analyses are often throwaway chats. A month later, you can’t trace why you reached a conclusion.Solution: It enforces a 5-stage loop (ASK → LOOK → INVESTIGATE → VOICE → EVOLVE) with checklists, and saves analyses as Git-tracked markdown files. Quick mode: 1 file. Full mode: 5 files.Works in Claude Code and Cursor.I’d love feedback on:1. Does the ALIV
Built this after finding a credential stealer on an AI skills marketplace. The malicious skill looked like a normal weather lookup but was exfiltrating ~/.ssh, AWS creds, and browser cookies. My agent ran it without hesitation.SkillSandbox is the fix: skills declare permissions in YAML (network egress, filesystem paths, env vars), the runtime enforces via iptables default-deny, seccomp-bpf, and mount isolation. MCP server integration for Claude Code.Also built a companion project, AgentTrac
Hi HN!I've been building this solo for about three and a half years. I kept trying every new project/notes tool (Notion, Asana, Trello, etc.) and always ended up back in a plain text file. I wanted something that felt like a text editor on first touch but could grow into real structure when you needed it.https://lightwave.so (desktop only)The tech stack is Laravel, MySQL, Redis, and hand-rolled JavaScript on the client. No frameworks like React/Vue/etc. ~270 lines o
Hey HN People, Like many of you on Arch + Hyprland (or really any rolling distro), I used to rely on eza for nice-looking ls output with icons, git status, tree view, etc.Then a recent update broke eza's package icons just turned into ugly boxes/rectangles everywhere.anyhow ls is also stop working .Reinstall, rebuild deps, downgrade, nothing helped. Classic rolling-release Friday night.I got tired of fighting it so I finally finished something I'd been tinkering with for a while:
When considering React, Angular, and Vue, the first thing to note is that they carry the same notion at their cores: data binding. The idea here is that the framework assumes the work of tying the ...
TV and home video editor Ty Pendlebury joined CNET Australia in 2006, and moved to New York City to be a part of CNET in 2011. He tests, reviews and writes about the latest TVs and audio equipment.
Security defenders are girding themselves in response to the disclosure of a maximum-severity vulnerability disclosed Wednesday in React Server, an open-source package that’s widely used by websites ...
A critical vulnerability in React Server Components is being actively exploited by multiple threat groups, putting thousands of websites — including crypto platforms — at immediate risk with users ...
I shipped a finished, offline AI product (consumer, sports-related).What I’m trying to understand isn’t rejection — that’s normal — but a pattern I keep seeing.Around the same time, I noticed multiple articles about similar products appearing almost simultaneously, often with near-identical framing. In contrast, a fully shipped product — live and in its actual season — received mostly silence, despite media being explicitly informed by the developer.I’m not assuming bad intent. I’m trying to und
I'm launching Wirewiki.com today!Wirewiki makes the internet’s hidden infrastructure browsable.I quit my job 5 years ago to scale Nslookup.io. But after reaching 600k monthly users, I hit a ceiling. I couldn't naturally expand beyond DNS because of the domain name.So I went back to the drawing board: how would I make it today? Not as a collection of tools, but as a browsable graph.I've spent hundreds of hours and commits building that. It's not even at 10% of what I want it t
I built a CLI that gives AI coding agents cost visibility.Problem: Agents like OpenClaw burn tokens with no per-task cost tracking. You see an aggregate bill, not "this refactor cost $3.20 and that bug fix cost $0.12."Solution: codesession-cli is a CLI + OpenClaw skill. The agent calls `cs start` at task beginning, `cs log-ai` after each API call (cost auto-calculated from a built-in pricing table of 17+ models), and `cs end` when done. File changes and git commits are tracked via git
Live leaderboard: https://sales-agent-benchmarks.fly.dev/benchmark GitHub: https://github.com/a1j9o94/sales-agent-benchmarkI built an open-source benchmark for evaluating LLMs as sales agents. The idea came from noticing that every sales AI tool demos well on clean summaries but falls apart on real deal data — and there was no rigorous way to measure that gap.How it worksYou register an API endpoint. We send your agent deal context (anonymized real B2B deals),
I'm trying to track down a program I remember from the Atari 800 era (early-to-mid 1980s). I believe it was from a book — a fairly substantial one, at least 200 pages — that covered many different aspects of Atari BASIC programming.The program was from the graphics chapter(s) and was a visual demonstration of the Tortoise and the Hare fable using Atari graphics (Graphics 5, if I remember correctly). Two rectangular areas were drawn on screen. The Tortoise filled its area pixel by pixel, sys
I built a search engine for every line of dialogue from The Office (US). It indexes 60,000+ quotes client-side using an inverted index, so search is instant with no backend.<p>Tech stack: ReScript + React, Vite, Tailwind. The search index is pre-built at compile time and loaded as static JSON. The whole thing runs on GitHub Pages.<p>Features: fuzzy search, view quotes in context (surrounding dialogue), share quotes, favorites (localStorage), and Amazon affiliate links to watch the episode.
Hi HN,I built ast-visualizer.com because I wanted a way to visualize the architecture/structure of a Python repo before dived into the code.Most tools tell you what the code does; I wanted to see how it's built.The Problem: Onboarding onto a large codebase is a nightmare. LLMs help with single functions, but they struggle to show you the "God Objects," circular dependencies, or high-complexity hotspots across 50+ files.What it does:Dependency Graph: Visualizes imports and fil
Product: https://bydaewon.gumroad.com/l/claude-saas-starterI built this because every SaaS boilerplate I found was OpenAI-first. Claude's SSE streaming differs from OpenAI's — the Anthropic SDK's messages.stream() returns a different event structure, and you need a custom ReadableStream transform to pipe it as Server-Sent Events on Edge Runtime.The stack:- Next.js 16 (App Router, TypeScript) - Supabase for auth and PostgreSQL (with RLS) - Anthropic SDK for Clau
Threat actors are exploiting the Metro4Shell React Native vulnerability to deploy malware on Linux and Windows systems.