Show HN: Code Review Lab – Practice spotting vulnerabilities in code

https://www.codereviewlab.com/

5•parasimpaticki•1h ago

I built Code Review Lab to help engineers practice secure code review skills. Many friends looking to switch into AppSec struggled with interview code review exercises. While there are great resources for other interview types, I couldn't find a good platform focused specifically on secure code review.

The platform offers interactive challenges where you review actual vulnerable code snippets (Go, PHP, etc.) and identify the exact lines with security issues. Each challenge includes context about the application and hints to guide your learning.

Comments

darkpuzzles•1h ago

Looks pretty awesome! Really liking the leaderboard.

Are you planning to add more languages like Rust?

parasimpaticki•1h ago

Glad you liked it! Currently we're focusing on covering the most common web tech stacks.

As soon as we feel we have enough challenges in this area, we'll move onto more technologies

Inside one company’s secret plan to ‘destructively scan every book in the world’

AI governance isn't failing because we lack regulation-it's failing at execution

Tips for getting coding agents to write good Python tests

Installing and Updating Filezilla from a Zip File on Pop_OS / Ubuntu

Djbsort: The fastest Intel/AMD sorting library, safe for cryptographic contexts

We need to talk about Big Tech's role in Fascism [video]

India and EU announce landmark trade deal

DuckDB 1.4.4 LTS

Show HN: Speech-to-Digits API – 95% accuracy on spoken numbers

What the Japanese can teach us about super-ageing gracefully (2020)

Ask HN: What is the psychology of Reddit users?

California probes TikTok over claims it censors anti-Trump content

EU Tightens Grip on WhatsApp, Raising New Free Speech Concerns

Show HN: Analyzed 2,285 failure threads and build a market-truth engine

Kimi Code CLI

Show HN: LLM-schema-guard – Rust proxy enforcing JSON schemas on LLM outputs

Factsheet – EU-India Free Trade Agreement: Main Benefits

Create a Family Bowling Tradition: 7 Ways to Make It Annual

Alternatives to MinIO for single-node local S3

Affordances and Risks of ChatGPT to Autistic Users

Zszrun: Legit Trading Tech or a Shell for a Liquidity Trap?

Whitehouse investing $1.6B in a US critical minerals firm $USAR. Up >100%

Introducing Amutable, Linux Systems Integrity

Show HN: Quantifying Data Drift Using Coefficient of Variation and Numba

Zlib-rs: a stable API and 30M downloads

Show HN: Claude Code Setup – Persistent context, consistent code, one workflow

Surveillance companies track smartphone users through advertising data

Meta to test premium subscriptions on Instagram, Facebook, and WhatsApp

EU and India clinch major trade deal in rebuff to Trump – Luxembourg Times

Startup Incubator Y Combinator Cuts Canada from Countries Where It Will Invest