From Product Hunt
AI-powered dev tools lead today — a Swift app builder, automated code reviews, and a Mac terminal you control from your iPhone.
Rork Max — AI Native Swift App Builder
Build production-ready iOS apps with AI that generates real Swift and SwiftUI code. Describe your app, iterate on the design, and export a full Xcode project. The Max tier adds advanced component libraries and multi-screen flows.
git-lrc — AI Code Reviews on Every Commit
Automated code reviewer that runs on every git push. Analyzes diffs, flags potential issues, and suggests improvements inline. Self-hosted option available for private repos.
Prism Videos — AI Video Creation Platform
Generate professional videos from text prompts with customizable styles, templates, and voiceover. Handles scripting, visuals, and audio in a single pipeline.
Macky — Control Your Mac Terminal from iPhone
Run terminal commands on your Mac remotely from your iPhone. Secure SSH connection, command history, and live output streaming. Handy for monitoring scripts or running quick commands away from your desk.
PulseKit — Business Metrics as Apple Widgets
Display KPIs as native Apple widgets on iPhone, iPad, and Mac. Connects to Stripe, Google Analytics, and custom APIs. Glance at revenue, signups, and traffic without opening an app.
From Reddit
A major supply chain attack hit the AI coding tool ecosystem, Alibaba launches a Claude Code competitor, and OpenAI faces scrutiny over when to alert authorities.
Security researcher Adnan Khan’s “Clinejection” disclosure turned into a real-world attack: an unknown actor exploited Cline’s AI issue triage bot to publish a backdoored npm package (v2.3.0) that silently installed OpenClaw on ~4,000 developer machines during an 8-hour window on Feb 17.
The attack chain — prompt injection → GitHub Actions cache poisoning → npm credential theft → malicious publish — required nothing more than opening a GitHub issue. Cline has released v2.4.0 with OIDC-based publishing and revoked the compromised token.
Qwen Code — Alibaba’s Open-Source CLI Coding Agent
Terminal-based coding agent powered by Qwen3-Coder. 1,000 free requests/day with OAuth, @ file references, and IDE integrations for VS Code, Zed, and JetBrains. A direct open-source competitor to Claude Code and Gemini CLI.
OpenAI Debated Alerting Police About Canadian Shooter’s Chats
An 18-year-old who killed eight people in Tumbler Ridge had been flagged by OpenAI’s monitoring tools months before the attack. Staff debated contacting Canadian police but ultimately did not, deciding the activity didn’t meet reporting criteria. Raises fundamental questions about AI companies’ duty to warn.
OpenAI Preparing ChatGPT Pro Lite at $100/month
Spotted on OpenAI’s checkout page by researcher Tibor Blaho. Bridges the gap between $20 Plus and $200 Pro for power users who hit rate limits but can’t justify the full Pro price. No confirmed launch date yet.
40,000+ AI Agents Exposed with Full System Access
SecurityScorecard found tens of thousands of OpenClaw deployments running with zero security. ~40% of publicly visible configurations contained working API keys in plaintext, committed to personal backup repos. A systemic problem as AI agent adoption accelerates.
Quick hits — local models and Google overreach.
GLM-4.7-Flash Distilled from Opus 4.5 Reasoning
TeichAI distilled Claude Opus 4.5’s high-reasoning behavior into GLM-4.7-Flash in ~500 training steps. GGUF quantizations available for local inference.
Google Shut Down Lawyer’s Gmail After NotebookLM Upload
Attorney Brian Chase’s entire Google account was locked after uploading text-only law enforcement reports to NotebookLM. Reports referenced CSAM charges but contained no images.
From Reddit
ComfyUI tools — a 3D posing studio, optimized Flux2 sampling, and a tag generator for anime workflows.
VNCCS Pose Studio — 3D Posing for ComfyUI
Interactive 3D mannequin posing directly inside ComfyUI. Adjustable body attributes, bone manipulation with gizmos, photographic lighting, pose library, and camera control. Generates depth maps and pose images for ControlNet workflows.
CapitanFlowMatch — Optimized Samplers for Flux2 Klein
Tuned samplers and schedulers for rectified flow models including Flux2 Klein. One-click presets per model with manual step and shift control.
Danbooru Tag Prompt Generator
Lightweight prompt generator for Danbooru-style tags. Useful for SDXL and FLUX anime image generation workflows.
From Reddit
Google’s coming sideloading lockdown leads, plus self-hosted picks including a Kahoot clone, a bot crawler trap, and a Mac Dock enhancer.
Google’s Android Sideloading Lockdown Starts September 2026
Google will require identity verification for all Android app developers, including sideloaded apps, starting September 2026 in select markets. A new “Android Developer Verifier” system service handles checks at install time. Power users get an opt-out to bypass and accept the risk.
Rahoot — Self-Hosted Kahoot Alternative
Open-source quiz and trivia platform you can run on your own server. Real-time multiplayer, custom question sets, and a clean interface. Good for classrooms, team events, or game nights without the Kahoot subscription.
Poison Fountain — Crawler Trap for Bots
Generates infinite pages of garbage content to waste scraper and AI crawler resources. Drop it on your site as a honeypot — legitimate users never see it, but bots follow the links into an endless loop of nonsense.
Dockside — Mac Dock Enhancement
Adds custom sidebar docks to any edge of your screen with drag-and-drop app shortcuts, folders, and quick actions. v1.9.59 adds improved multi-monitor support.
Hush — Noiseless Browsing for Safari
Free, open-source Safari extension that blocks cookie notices, newsletter popups, and tracking nags. Zero data collection, MIT license.
Tabularis — Self-Hosted Spreadsheet App
Open-source web-based spreadsheet with formulas, filtering, and Docker deployment. Lightweight alternative for basic data needs.