frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: I wrote a Semgrep alternative in Rust with cross-file taint tracking

https://github.com/bumahkib7/rust-monorepo-analyzer
1•bumahkib7•1h ago
I built RMA because I was frustrated with Semgrep's single-file limitation. Most real vulnerabilities span multiple files — HTTP handler receives input in Controller.java, passes it through a service layer, and it ends up in a raw SQL query in Repository.java. Semgrep can't see that chain. RMA can. Technical details:

Written in Rust, uses tree-sitter for parsing Cross-file taint propagation with BFS (max depth 15) 647 Semgrep rules pre-compiled at build time Supports 28 languages, 20+ frameworks (Spring, Django, Express, etc.) SARIF output for GitHub Security tab integration Sub-500ms for 100k lines

I scanned Spring Boot's own framework source and found 36 cross-file data flows including 8 SQL injection paths. Not toy examples — real multi-hop flows across 5-15 files. It's free and open source. Happy to answer questions about the taint analysis implementation or anything else.

Bazzite Postmortem

https://ba.antheas.dev/bazzite-postmortem.html
1•JackMorgan•34s ago•0 comments

French headquarters of Elon Musk's X raided by Paris cybercrime unit

https://www.theguardian.com/technology/2026/feb/03/french-headquarters-elon-musk-x-raided-paris-c...
1•mkolarek•46s ago•0 comments

Show HN: Weather forecast/visualization without numbers

https://weather-sense.leftium.com/?calm
1•Leftium•6m ago•0 comments

Incident CVE-2024-Yikes

https://nesbitt.io/2026/02/03/incident-report-cve-2024-yikes.html
1•robin_reala•7m ago•0 comments

Show HN: TurboLibBMP stb-style BMP decoder/encoder in C no allocations, embedded

1•DenisDolya•8m ago•0 comments

Show HN: ESP32-based Remote Wake-on-LAN that works behind CGNAT

https://github.com/kreaxv/esp32-remote-wol
1•kreaxv•11m ago•0 comments

The AI Conversations

https://twitter.com/dhh/status/2018631575337095389
1•tosh•15m ago•0 comments

Stockfish 18

https://stockfishchess.org/blog/2026/stockfish-18/
1•AceyMan•16m ago•1 comments

Show HN: A small browser-based Hearts card game I built as a solo dev

https://playheartsonlinefree.com
1•Growtbloom•16m ago•1 comments

Who's Coding on Their Phone?

1•raunaqvaisoha•18m ago•1 comments

Israeli Military Found Gaza Health Ministry Death Toll Was Accurate

https://theintercept.com/2026/01/30/israel-gaza-death-toll-accurate-denial/
2•Qem•19m ago•0 comments

Show HN: HostsLab – A Mac app for managing hosts file and SSH config

https://github.com/Matzielab/HostsLab
1•matzie•19m ago•0 comments

The creator of Clawd: "I ship code I don't read" [video]

https://www.youtube.com/watch?v=8lF7HmQ_RgY
1•uneven9434•20m ago•0 comments

Muse: AI-Native MIDI Composer

https://www.muse.art/home
1•spking•21m ago•0 comments

GOG Says Game Banner Ad Was Made with AI but Claims It Was Shared by Mistake

https://kotaku.com/gog-ai-art-banner-ad-confirms-discord-message-small-team-slop-2000665056
2•HelloUsername•24m ago•0 comments

uLauncher

https://github.com/jrpie/launcher
1•dtj1123•27m ago•0 comments

We built a web IDE where AI edits structured code instead of text

https://stellisoft.com
1•mattstellify•30m ago•2 comments

Show HN: Kvile – Lightweight Postman alternative that uses .http files

https://kvile.app
1•tskulbru•32m ago•0 comments

I collected all valuable AI Skills repositories

https://github.com/codeaholicguy/ai-devkit/blob/main/skills/registry.json
2•hoangnnguyen•32m ago•0 comments

U.K. physics community braces for deep funding cuts

https://www.science.org/content/article/u-k-physics-community-braces-deep-funding-cuts
2•sega_sai•33m ago•1 comments

From magic to malware: How OpenClaw's agent skills become an attack surface

https://1password.com/blog/from-magic-to-malware-how-openclaws-agent-skills-become-an-attack-surface
1•_____k•34m ago•1 comments

Terminal-native AI assistant – curl -L plztell.me

https://plztell.me
2•maafifi•37m ago•1 comments

Slack hacks for software engineers and managers

https://newsletter.manager.dev/p/7-slack-hacks-for-engineers-and-managers
1•AntonZ234•38m ago•0 comments

At Age 25, Wikipedia Refuses to Evolve

https://spectrum.ieee.org/wikipedia-at-25
2•pseudolus•40m ago•1 comments

Show HN: Federal Election Commission Claude Code Plugin and Agent Skill and MCP

https://github.com/hodgesmr/agent-fecfile
1•m-hodges•42m ago•0 comments

The Decision Engine

https://holenventures.substack.com/p/the-decision-engine
1•hholen•42m ago•0 comments

Firefox makes AI optional, like it probably should have been all along

https://www.theregister.com/2026/02/03/firefox_ai_kill_switch/
3•beardyw•45m ago•0 comments

Melara Pro Pillow

https://www.facebook.com/MelaraProPillow.Get
1•Oikoiylak•46m ago•0 comments

Show HN: One API call to turn agent output into shareable UI

https://www.genui.sh/
1•emaghakyan•48m ago•0 comments

AgentSight: Zero-Instrumentation LLM Agent Observability with eBPF

https://github.com/eunomia-bpf/agentsight
1•walterbell•49m ago•0 comments