🛠️ All DevTools

[DevOps] Show HN: Pi-hosts – Give the Pi coding agent access to your servers I built that initially for an AI chat bot that allows teams to perform DevOps tasks straight out of Slack&#x2F;Teams (with proper permission control, obviously).<p>Useful to let developers perform mundane tasks, or help coordinate incident response.<p>I ended up using it myself on my own machine to manage Hetzner and AWS boxes. I thought that may be useful to others.<p>The default policy should be good enough, but if you don&#x27;t like living dangerously, you can set it to `paranoid`.<p>Install: `pi install npm:pi-hosts`<p>GitHub: <a href="https:&#x2F;&#x2F;github.com&#x2F;hunvreus&#x2F;pi-hosts" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;hunvreus&#x2F;pi-hosts</a>

[Other] Regression: malware reminder on every read still causes subagent refusals Not sure if anybody else has experienced this, but for my job I&#x27;ve been playing around with Claude Managed Agents to run code generation tasks in our repo. Every read operation in the managed agent is appended with a system prompt instructing Claude to scan the file for malware; Claude then wastes a bunch of time and tokens (money) performing the analysis; then, once the agent has confirmed that it is <i>not</i> malware, it still interprets the appended prompt to mean that it is disallowed to augment or write <i>any</i> code, and quits. And we&#x27;re charged for every session that this happens in. Posting here because apparently they only addressed the issue in the past because of a Hacker News discussion. So here&#x27;s hoping they&#x27;ll see this and prioritize fixing it again so we can stop losing money.

[IDE/Editor] Show HN: 49Agents – 2D Canvas IDE for Orchestrating Agents, Repos, Issues Beads tables (Steve Yegge&#x27;s) for issue tracking. Can view git trees, terminals, issue tables, notes, and files all on one screen. Can connect multiple machines via private network (like tailscale)

[Other] Show HN: ClusterdOS – Kubernetes without the platform team

[API/SDK] AMD's Lemonade SDK 10.3 Now 10x Smaller by Getting Rid of Electron

[CLI Tool] Show HN: A TUI for Markdown view an editing Hi HN, I built a simple TUI for viewing and editing .md files in the terminal. More and more markdown files keep appearing in our projects, and I found myself needing a quick way to view(with syntax highlighting) and edit them without leaving the terminal, so I built this

[Other] Claude.ai unavailable and elevated errors on the API

[Other] BookStack Moves from GitHub to Codeberg

[Other] Show HN: Ragnerock, an AI data analysis tool Hi HN, I’m Matt Mahowald, and together with my cofounder John, we’re launching the public beta of Ragnerock today.<p>As a data scientist, you spend the majority of your time wrangling data. Even though you might have a set of techniques and tricks you like to use, how exactly you treat a particular source of data tends to be fairly bespoke, so you end up writing custom logic each time.<p>Ragnerock was born from the observation that modern LLMs can be used to automate a lot of the grunt work involved in this process, while still allowing for fully customizable pipelines. What’s more, by leveraging techniques like constrained decoding, it’s possible to provide a unified query interface regardless of the data source - bridging raw data sources like text and images with your existing structured data living in your databases.<p>Ragnerock has four main components:<p>- A workflow designer that lets you build LLM-driven data processing and analysis pipelines<p>- A job orchestration layer that runs those workflows<p>- A query interface which lets you inspect the results of those workflows with plain SQL<p>- A notebook system which is 100% API-compatible with Jupyter and runs on your existing kernels, so you can easily pull data into your existing environments and analyses<p>Ragnerock also supports bring-your-own AI (OpenAI, Anthropic, and Google APIs), databases, and blob storage, so you can join with your existing datasets and have all outputs flow to your data lake. We’re particularly excited about our web crawling feature, which allows you to scrape websites and trigger workflows on updates: for example, you might point Ragnerock at your favorite blog and run a workflow to assess posts for topics and sentiment.<p>You can try it out at <a href="https:&#x2F;&#x2F;www.ragnerock.com" rel="nofollow">https:&#x2F;&#x2F;www.ragnerock.com</a> ; no credit card needed and the first 20 hours of compute are free. It’s an early-stage product so we’re especially interested in feedback.<p>Happy to answer any questions - John and I will be around in the comments today.

[Other] GitHub RCE Vulnerability: CVE-2026-3854 Breakdown

[Other] Show HN: SyncVibe – Code with friends in the terminal, each with your own AI

[Database] Show HN: Rocky – Rust SQL engine with branches, replay, column lineage Hi HN, I&#x27;m Hugo. I&#x27;ve been building Rocky over the past month, shipping fast in the open. The binary is on GitHub Releases, `dagster-rocky` on PyPI, and the VS Code extension on the Marketplace. I held off on a broader announcement until the trust-system surface was coherent enough to talk about as one thing. The governance waveplan — column classification, per-env masking, 8-field audit trail on every run, `rocky compliance` rollup, role-graph reconciliation, retention policies — landed end-to-end last week in engine-v1.16.0 and rounded out in v1.17.4 (tagged 2026-04-26). That&#x27;s the milestone I&#x27;d been waiting for.<p>The pitch: keep Databricks or Snowflake. Bring Rocky for the DAG. Rocky is a Rust-based control plane for warehouse pipelines. Storage and compute stay with your warehouse. Rocky owns the graph — dependencies, compile-time types, drift, incremental logic, cost, lineage, governance. The things your current stack can&#x27;t give you because it doesn&#x27;t own the DAG.<p>A few things I think are interesting:<p>- Branches + replay. `rocky branch create stg` gives you a logical copy of a pipeline&#x27;s tables (schema-prefix today; native Delta SHALLOW CLONE and Snowflake zero-copy are next). `rocky replay &lt;run_id&gt;` reconstructs which SQL ran against which inputs. Git-grade workflow on a warehouse.<p>- Column-level lineage from the compiler, not a post-hoc graph crawl. The type checker traces columns through joins, CTEs, and windows. VS Code surfaces it inline via LSP.<p>- Governance as a first-class surface. Column classification tags plus per-env masking policies, applied to the warehouse via Unity Catalog (Databricks) or masking policies (Snowflake). 8-field audit trail on every run. `rocky compliance` rollup that CI can gate on. Role-graph reconciliation via SCIM + per-catalog GRANT. Retention policies with a warehouse-side drift probe.<p>- Cost attribution. Every run produces per-model cost (bytes, duration). `[budget]` blocks in `rocky.toml`; breaches fire a `budget_breach` hook event.<p>- Compile-time portability + blast radius. Dialect-divergence lint across Databricks &#x2F; Snowflake &#x2F; BigQuery &#x2F; DuckDB (12 constructs). `SELECT *` downstream-impact lint.<p>- Schema-grounded AI. Generated SQL goes through the compiler — AI suggestions type-check before they can land.<p>What Rocky isn&#x27;t:<p>- Not a warehouse — it&#x27;s the control plane on top.<p>- Not a Fivetran replacement. `rocky load` handles files (CSV&#x2F;Parquet&#x2F;JSONL); for SaaS sources use Fivetran, Airbyte, or warehouse-native CDC.<p>- Not dbt Cloud — no hosted UI, no managed scheduler. First-class Dagster integration if you need orchestration.<p>Adapters: Databricks (GA), Snowflake (Beta), BigQuery (Beta), DuckDB (local dev &#x2F; playground). Apache 2.0.<p>I&#x27;d love feedback on the trust-system framing, the governance surface (particularly classification-to-masking resolution in `rocky compile` and the `rocky compliance` CI gate), the branches&#x2F;replay design, the cost-attribution primitives, or anything else that catches your eye. Happy to go deep in the thread.

[Other] GitHub Actions is the weakest link

[Other] Who owns the code Claude Code wrote?

[Other] An Update on GitHub Availability

[Other] GitHub Copilot code review will start consuming GitHub Actions minutes

[Other] Show HN: Devicons, +1300 logos and icons in React, SVG, and icon format After a very long time I&#x27;ve spend a great amount of time revisiting my very first open source project.<p>+1300 logos and icons coming along with a brand new website, high fidelity SVG files, extended documentation and support for all major front end frameworks.<p>GitHub link: <a href="https:&#x2F;&#x2F;github.com&#x2F;vorillaz&#x2F;devicons" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;vorillaz&#x2F;devicons</a>

[Build/Deploy] Show HN: AgentSwift – Open-source iOS builder agent I&#x27;m working on a coding agent for building iOS apps. It&#x27;s built on openspec and xcodebuildmcp. It&#x27;s free and open source.

[Other] Ted Nyman – High Performance Git

[Other] L123: A Lotus 1-2-3–style terminal spreadsheet with modern Excel compatibility