frontpage.

Ten years as a CTO. Owned Engineering, security, compliance at very different stages.

Your non-technical friend built something in Lovable last weekend. It works. They want to charge for it. They don't know their API keys are in the client bundle, their database is public, and they have zero error monitoring.

howbadis.it: they paste the URL, get a score. A few stack questions cover what the URL scan can't see.

What checks should I add?

Lidar threatens to rewrite everything we know about photography

React module for visualising server racks

Darknet Map

Agent-to-agent discovery and real-time bidding marketplace

Thermal Power and Climate Change

Japan sees largest protest in support of pacifist constitution

Against Nicotine

ClaudeBleed: Claudes Browser Extension Allows Any Extension to Hijack It

Show HN: Slidemoji – A Daily Puzzle Game

Perplexity's New Mac App Brings Personal Computer to Pro Users

Ask HN: What's your favorite production-mistake-left-in record?

Ask HN: Would you use non-SaaS downloadable chatbot app?

Small Claims Court with Clankers

Cluster of lost cities in Ecuador that lasted 1k years mapped (2024)

Native Instruments Acquired by InMusic

Don't Get Too Comfortable

Sony's PS5 sales plummet amid price rises and a memory crisis

The Ploopy Bean – External trackball with 4 buttons

A recent experience with ChatGPT 5.5 Pro

Dante's Inferno modelled a planetary impact 500 years before modern science

5x perf increase on writes with FPW disabled in Postgres

Plus Codes

iPhone Launch – Studio C (Comedy Sketch) [video]

Show HN: AI Fluency Diagnostic

Show HN: Ocelot – A Game Boy and Game Boy Color Emulator in Haskell

A new suite of modern tools coming for editing and publishing RFCs

Raven: Memory as a Set of Slots

Linear Diffs

Show HN: Open Source FreeCAD dataset for CAD generation tasks

Mythos set off a cybersecurity 'hysteria.' Experts say threat was already here

Show HN: Howbadis.it – Paste your vibe-coded app, see what'll break