🛠️ All DevTools

[IDE/Editor] Extension that notifies you when PRs need your attention GitHub notifications don't work for busy developers. This extension puts review requests and your open PRs in your browser toolbar where you'll actually see them. Badge shows review count | PR count. Completed reviews auto-remove. 100% open source. Setup takes 60 seconds. Perfect if you're juggling multiple repos and tired of missing review requests or losing track of your PRs.

[Other] I wrote a code editor in C and now I'm a changed man

[Other] Comptime – C# meta-programming with compile-time code generation and evaluation

[Monitoring/Observability] Show HN: Cerberus – Real-time network monitor with eBPF Hi HN! I&#x27;m Mo, a platform engineer at Deltaflare working on critical infrastructure protection.<p>I built Cerberus because traditional packet capture tools (tcpdump, Wireshark) have too much overhead for production CNI environments. eBPF lets us filter and classify packets at the kernel level with near-zero performance impact.<p>Some interesting challenges: - eBPF verifier is <i>strict</i> - every memory access needs bounds checking - Limited to 32 bytes of L7 payload (tradeoff between inspection depth and overhead) - TC vs XDP decision (chose TC for compatibility)<p>Looking for contributors, especially on: - Redis backend for distributed deployments - Prometheus metrics export - Anomaly detection<p>Happy to answer questions!

[Other] A GPT-empowered penetration testing tool

[Database] Show HN: Dbzero – Code as if you have infinite RAM (Python persistence engine)

[Other] Convert hex to tailwind v4 colors Convert any hex color to the closest Tailwind CSS class using the CIEDE2000 (ΔE00) perceptual color difference algorithm. Supports the Tailwind v4 OKLCH palette. Free and unlimited.

[Other] Next Js and Prisma Visulizer Code Eye is a personal tool that visualizes large Next.js codebases to make architecture easy to understand. It maps routes, file dependencies, and reverse dependencies, and generates clear ER diagrams if your Next.js project uses Prisma. It works with local projects and GitHub repositories. Useful for: onboarding into large codebases, safe refactoring, impact analysis, debugging, and understanding complex system architecture at a glance.

[Other] Build Your Own React

[DevOps] Show HN: Netrinos – A keep it simple Mesh VPN for small teams I&#x27;m the founder at Netrinos. I built a WireGuard-based mesh VPN because remote access has always been a pain. After years of SSH tunnels, IPsec headaches, and the ssh log horror movie, I wanted something simpler: install, sign in, get work done.<p>Netrinos creates a LAN-like overlay network across your devices. Connections are direct P2P via WireGuard, with no central server routing traffic. Each device gets a stable IP and DNS name (pc.you.netrinos.com). When direct connections fail, they fall back to a relay server that&#x27;s still encrypted end-to-end. We can&#x27;t see your traffic.<p>The most challenging problem to solve was NAT traversal. UDP hole punching works most of the time. The rest is a cocktail of symmetric NAT, CGNAT, and serial NATs. We use STUN-style discovery and relay fallback for the edge cases. I was surprised by how unreliable low-end ISP routers really are, and how much technical wizardry it takes to hide that behind a clean, simple UX.<p>Our stack is a Go backend for client and server, WireGuard kernel mode for Linux and Windows (macOS is userspace), Wails.io for cross-platform UI. WireGuard does all the heavy lifting. Go ties it all together.<p>Popular use cases include: RDP to home PCs, accessing NAS without exposing it, and SSH into headless Linux boxes. One customer manages hundreds of IoT devices in the field, eliminating the need to deal with customer routers.<p>We just released Pro with multi-user, access control, and remote gateway routing. Personal is free (up to 100 devices).<p>I&#x27;d love to hear what you expect from a simple mesh VPN, what&#x27;s missing from current tools, and what&#x27;s lacking from your remote access setup. Use code HNPRO26 for a 30-day trial of Pro.<p><a href="https:&#x2F;&#x2F;netrinos.com" rel="nofollow">https:&#x2F;&#x2F;netrinos.com</a>

[API/SDK] An open-source, code-first Typescript toolkit for building, evaluating, and deploying sophisticated AI agents with flexibility and control.

[Other] Sandbox: Run untrusted AI code safely, fast

[Other] Show HN: I open-sourced my Go and Next B2B SaaS Starter (deploy anywhere, MIT) Hi HN, I&#x27;m Mohammed, a technical founder who loves shipping and giving back to the community. I&#x27;m open-sourcing the full-stack engine that powers my B2B product, apflow.co.<p>What it is: A production B2B starter with a Go backend and Next.js frontend. Both are fully Dockerized with separate containers. No Vercel. No Supabase. Deploy the whole thing on a $6 VPS, or split frontend and backend across different providers. You own the infrastructure.<p>The problem I was solving:<p>Every SaaS starter I evaluated had the same issue: they locked me into someone else&#x27;s platform. Vercel for hosting. PlanetScale for the database. Serverless functions billing per invocation. Fine for prototypes, but costs become unpredictable at scale and migrating away is painful.<p>I wanted something I could deploy on any Linux box with docker-compose up. Something where I could host the frontend on Cloudflare Pages and the backend on a Hetzner VPS if I wanted. No vendor-specific APIs buried in my code.<p>Why Go for the backend:<p>Go gives me exactly what I need for a SaaS backend:<p>Tiny footprint. The backend idles at ~50MB RAM. On a cheap VPS, that headroom lets me run more services without upgrading. Concurrency without complexity. Billing webhooks, file uploads, and AI calls run concurrently without callback hell. Compile-time type safety. Using SQLC, my SQL compiles to type-safe Go. If the query is wrong, it fails at build time, not in production. Predictable performance. No garbage collection pauses that surprise you under load. The architecture (Modular Monolith):<p>I didn&#x27;t want microservices complexity for a small team, but I needed clean separation. I built a Modular Monolith: features like Auth, Billing, and AI are isolated Go modules with explicit interfaces, but they deploy as a single binary.<p>This structure also made AI coding tools (Cursor, Claude Code) dramatically more effective. Because every module has strict boundaries, the AI knows exactly where new code belongs and doesn&#x27;t break other modules.<p>Full-stack, not just backend:<p>Backend: Go 1.25 + Gin + SQLC (type-safe SQL, no ORM) + PostgreSQL with pgvector Frontend: Next.js 16 + React 19 + Tailwind + shadcn&#x2F;ui Communication: The frontend consumes a clean REST API. You can swap Next.js for any framework that speaks HTTP. Infrastructure: Separate Dockerfiles for frontend and backend. Deploy together or apart. What&#x27;s pre-built:<p>The boring infrastructure is solved so you can focus on your actual product:<p>Auth + RBAC: Stytch B2B integration with Organizations, Teams, and Roles. Multi-tenant data isolation enforced at the query level. Billing: Polar.sh as Merchant of Record. Handles subscriptions, invoices, and global tax&#x2F;VAT. No Stripe webhook edge cases. AI Pipeline: OpenAI RAG using pgvector. The retrieval service enforces strict context boundaries to minimize hallucinations. OCR: Mistral integration for document extraction. File Storage: Cloudflare R2 integration. Each feature is a separate module. Don&#x27;t need OCR? Remove it. Want Stripe instead of Polar? The billing interface is abstracted.<p>Real-world proof:<p>This isn&#x27;t a template I made for GitHub stars. It&#x27;s the exact code running apflow.co in production. When I added document OCR, I built it as a new module without touching Auth or Billing. The architecture held.<p>How to try it:<p>Clone the repo, read setup.md to check the prerequisite, run .&#x2F;setup.sh, and you have a working B2B environment locally in minutes.<p>Feedback I want:<p>I&#x27;d appreciate feedback from Go developers on the module boundaries and cross-module interfaces. Also curious if anyone has suggestions for the Docker setup in production deployments.<p>GitHub: <a href="https:&#x2F;&#x2F;github.com&#x2F;moasq&#x2F;production-saas-starter" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;moasq&#x2F;production-saas-starter</a><p>Live: <a href="https:&#x2F;&#x2F;apflow.co" rel="nofollow">https:&#x2F;&#x2F;apflow.co</a>

[Other] Making web security accessible, automated, and actionable At zdelab, we believe that security shouldn't be a barrier to building great web applications. Our mission is to democratize web security by providing automated, comprehensive security diagnostics that anyone can understand and act upon. We're committed to helping developers, businesses, and organizations protect their web applications from common security vulnerabilities, ensuring a safer internet for everyone.

[Other] A faster path to container images in Bazel

[Database] Show HN: Spice Cayenne – SQL acceleration built on Vortex Hi HN, we’re Luke and Phillip, and we’re building Spice.ai OSS - a lightweight, portable data and AI engine and powered by Apache DataFusion &amp; Ballista for SQL query, hybrid-search, and LLM-inference across disaggregated-storage used by enterprises like Barracuda Networks and Twilio.<p>We first introduced Spice [1] on HN in 2021 and re-launched it on HN [2] in 2024 re-built from the ground up in Rust.<p>Spice includes the concept of a Data Accelerator [3], which is a way to materialize data from disparate sources, such as other databases, in embedded databases like SQLite and DuckDB.<p>Today we’re excited to announce a new Ducklake-inspired Data Accelerator built on Vortex [3], a highly performant, extensible columnar data format that claims 100x faster random access, 10-20x faster scans, 5x faster writes with a similar compression ratio vs. Apache Parquet.<p>In our tests with Spice, Vortex performs faster than DuckDB with a third of the memory usage, and is much more scalable (multi-file). For real-world deployments, we see the DuckDB Data Accelerator often capping out around 1TB, but Spice Cayenne can do Petabyte-scale.<p>You can read about it at <a href="https:&#x2F;&#x2F;spice.ai&#x2F;blog" rel="nofollow">https:&#x2F;&#x2F;spice.ai&#x2F;blog</a> and in the Spice OSS release notes [4].<p>This is just the first version, and we’d love to get your feedback!<p>GitHub: <a href="https:&#x2F;&#x2F;github.com&#x2F;spiceai&#x2F;spiceai" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;spiceai&#x2F;spiceai</a><p>[1] <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=28448887">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=28448887</a> [2] <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=39854584">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=39854584</a> [3] <a href="https:&#x2F;&#x2F;github.com&#x2F;vortex-data&#x2F;vortex" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;vortex-data&#x2F;vortex</a> [4] <a href="https:&#x2F;&#x2F;spiceai.org&#x2F;blog&#x2F;releases&#x2F;v1.9.0" rel="nofollow">https:&#x2F;&#x2F;spiceai.org&#x2F;blog&#x2F;releases&#x2F;v1.9.0</a>

[Other] Show HN: TinyPDF – 3KB PDF library (70x smaller than jsPDF) I needed to generate invoices in a Node.js app. jsPDF is 229KB. I only needed text, rectangles, lines, and JPEG images.<p><pre><code> So I wrote tinypdf: &lt;400 lines of TypeScript, zero dependencies, 3.3KB minified+gzipped. What it does: - Text (Helvetica, colors, alignment) - Rectangles and lines - JPEG images - Multiple pages, custom sizes What it doesn&#x27;t do: - Custom fonts, PNG&#x2F;SVG, forms, encryption, HTML-to-PDF That&#x27;s it. The 95% use case for invoices, receipts, reports, tickets, and labels. GitHub: https:&#x2F;&#x2F;github.com&#x2F;Lulzx&#x2F;tinypdf npm: npm install tinypdf</code></pre>

[Other] Scaling Go Testing with Contract and Scenario Mocks

[Other] Show HN: Git rewind – your Git year in review I started an experiment to let a WASM-powered webapp interact with a local git repo and see how well this works. It turns out, it works pretty well!<p>I made it into a &quot;git wrapped&quot; tool that shows you when you committed the most, and what languages and files you most touched.<p>Despite the scary prompt when you use the filesystem API everything happens locally and your code stays private. (You can of course also just try it on cloned public github repos).<p>Let me know what you think!

[CLI Tool] Show HN: Toad. A unified terminal UI for coding agents Hi HN,<p>Up to the middle of 2025, I was the CEO&#x2F;CTO of a startup called Textualize. Somehow I had managed to land seed funding for my Python libraries for fancy terminal output. We wrapped up after three years because the funding ran dry.<p>I honestly thought I was sick of coding at that point. But it turns out I was sick of the stress and working all hours. A few weeks rest was all I needed.<p>It was about that time that coding agents exploded, and I could no longer ignore them. I wasn&#x27;t impressed with the UI these tools offered. Having worked in the terminal for a few years, I knew you could get a better user experience. And so this project was born.<p>I had planned to create some kind of layer between the agent&#x27;s SDK and the front-end. Fortunately after I started building this, Zed Industries released Agent Client Protocol (<a href="https:&#x2F;&#x2F;agentclientprotocol.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;agentclientprotocol.com&#x2F;</a>). Which was precisely what I needed.<p>I&#x27;ve just released the code (It was a private repo for a while). Toad (a play on Textual Code) can run a large number of AI agents, which a nicer terminal UI.<p>Think of it as a &quot;bring your own agent&quot; coding CLI. Use whatever agent you want. I&#x27;m not trying to sell you tokens.<p>Ask me anything. I&#x27;ll be hanging around for a while, if this post takes off.