frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: I built a way for coding agents to use secrets without seeing them

https://github.com/pdumicz/secret-shuttle
1•pdumicz•1h ago

Comments

pdumicz•1h ago
I built secret-shuttle - a tool for coding agents to USE secrets without seeing them.

It's a local daemon + CLI + skills.md.

The agent only ever works with refs like ss://stripe/prod/STRIPE_KEY; a local daemon resolves the real value at the last moment and blacks the agent out during the secret moment.

Two ways it works:

- CLI templates: push a secret to Vercel / GitHub Actions / Cloudflare / Supabase, etc. through the vendor's own CLI.

- Universal browser handoff: your agent drives ANY vendor dashboard with its normal browser tool, and at the secret moment hands off to the daemon. No per-vendor integration — it works on a portal nobody's ever heard of. (I am now focusing on this part)

I built it from scratch using Claude Code, Superpowers skills, and custom review skill where I have Claude Code use Codex with fresh context to review each small piece of work.

Try it: npx secret-shuttle init

Or just tell your Claude Code / Codex to set it up:

Repo: https://github.com/pdumicz/secret-shuttle

It's v0.5 and open source and I have zero intention to offer any commercial version of this product. This is my first contribution to the OSS community.

Chasing the OPNsense RCE: The Story Behind My First CVEs

https://hackerask.com/posts/opnsense/
1•HackerAsk•2m ago•0 comments

Show HN: Open-Source Interview Platform

https://github.com/CoderScreen/coderscreen
1•rogutkuba•3m ago•0 comments

Meta's Un-Stable Signature

https://hackerfactor.com/blog/index.php?/archives/1098-Metas-Un-Stable-Signature.html
1•ementally•3m ago•0 comments

Show HN: Trigora – A hosted runtime for event-driven TypeScript workflows

https://trigora.dev
1•hypervs•3m ago•0 comments

Pieces: Social Network for People

https://try.piecesof.me/
1•domo__knows•3m ago•1 comments

Fable Jailbroken Hours After Anthropic Lifted Restrictions

https://twitter.com/elder_plinius/status/2064776322979676227
1•hspeiser•3m ago•0 comments

Animagraffs – How Nuclear Power Works [video]

https://www.youtube.com/watch?v=PRWwXeRIvoI
1•pangratz•4m ago•0 comments

Mortality associated with non-optimal ambient temperatures from 2000 to 2019

https://www.researchgate.net/publication/353058947_Global_regional_and_national_burden_of_mortali...
1•simonebrunozzi•5m ago•0 comments

Show HN: AnalystAIPack – 118 runnable agent skills for malware analysis and RE

https://meltedinhex.com/posts/analyst-ai-pack/
1•sdkhere•7m ago•0 comments

Google Must Pay Nearly $2B to Klarna in Antitrust Case

https://www.wsj.com/tech/google-must-pay-nearly-2-billion-to-klarna-in-antitrust-case-f398d46f
2•fortran77•7m ago•1 comments

Hey GLM 5.2, build me a hypervisor

https://technotes.substack.com/p/hey-glm-52-build-me-a-hypervisor
2•mkagenius•8m ago•0 comments

Show HN: AnalystAIPack – 118 runnable agent skills for malware analysis and RE

https://github.com/meltedinhex/analyst-ai-pack
1•sdkhere•8m ago•0 comments

The Worst Caldecott Winning Books

https://andrewjudson.com/worst-caldecott
1•ajudson•9m ago•0 comments

Why Gemini 3.1 Pro lost money running Andon Café

https://andonlabs.com/blog/why-gemini-lost-money-andon-cafe
1•lukaspetersson•10m ago•1 comments

The Doomsday Organism

https://www.noemamag.com/the-doomsday-organism/
1•johanam•10m ago•0 comments

Open Source Is a Thankless Job

https://old.reddit.com/r/programming/comments/1ukim8j/open_source_is_a_thankless_job_and_i_think_...
1•redbell•11m ago•1 comments

NASA inspector general suggests Boeing's Starliner will now be a decade late

https://arstechnica.com/space/2026/07/nasa-inspector-general-suggests-boeings-starliner-will-now-...
1•ceejayoz•11m ago•0 comments

Are readers generating fiction with AI models?

https://arxiv.org/abs/2606.22748
2•ilamont•13m ago•0 comments

Devin Security Swarm

https://devin.ai/blog/security-swarm-eval/
1•meco•13m ago•0 comments

Wisk, Boeing's air taxi firm, rushed software testing, ex-employee claims

https://www.seattletimes.com/business/boeing-aerospace/wisk-boeings-air-taxi-firm-rushed-software...
1•Jtsummers•16m ago•0 comments

The Website Is Down

https://www.thewebsiteisdown.com/
2•kretaceous•19m ago•0 comments

Tech giants lose $2T in SpaceX's IPO month

https://english.elpais.com/economy-and-business/2026-07-01/tech-giants-lose-2-trillion-in-spacexs...
3•01-_-•20m ago•1 comments

The Regret We Get Wrong

https://jordangrumet.substack.com/p/the-regret-we-get-wrong
1•jader201•20m ago•0 comments

Show HN: Coding Agent Survey – Which coding agents do you use?

https://codingagentsurvey.org/
3•jacobgold•20m ago•3 comments

What do you mean by "Event-Driven"? (2017)

https://martinfowler.com/articles/201701-event-driven.html
1•adletbalzhanov•21m ago•0 comments

Show HN: I Made TS Compiler Graph MCP: 10x Fewer Tokens in Claude Code and Codex

https://github.com/samchon/ttsc/tree/master/packages/graph
1•autobe•24m ago•0 comments

FFmpeg's native AAC encoder has just been rewritten, and beats fdk_aac

https://xcancel.com/FFmpeg/status/2072320220509741087
2•wyattblue•25m ago•0 comments

Who needs a museum when there's a banana room in town?

https://www.nytimes.com/2026/07/01/arts/design/museum-of-ice-cream-companies-art.html
1•thebigship•27m ago•0 comments

Fedora: Future of Community Initiatives and AI Deveoper Desktop

https://discussion.fedoraproject.org/t/fedora-council-statement-on-the-future-of-community-initia...
2•logic•28m ago•0 comments

What are you, Claude Fable 5?

https://slug-kebabs.dev/blog/what-are-you/
1•jedwidz•29m ago•1 comments