March 31, 2026 AI-DIGEST BY MAURO SICARD
From Product Hunt
Product Hunt

AI-powered tax filing, a Rust database client, and MCP tools for Google Ads. Plus Perplexity opens up its full agent stack.

Jupid — File your taxes with Claude Code Connects your bank, learns every vendor relationship once and remembers forever. Maps transactions to IRS Schedule C categories (~96% accuracy), finds missed deductions ($1,249/yr average). Works with Claude Code, Cursor, Telegram, WhatsApp. Raw bank data never touches AI providers.
▲ 509 · jupid.com
QoreDB — Fast database client built with Rust One app for 9 databases: PostgreSQL, MySQL, MongoDB, Redis, SQLite, DuckDB, SQL Server, CockroachDB, MariaDB. Local-first with encrypted vault for credentials. Smooth scrolling through 100K rows, SSH tunnels, production safety guards. Core is Apache 2.0.
▲ 100 · qoredb.com
Google Ads MCP Server — Run ads from Claude Hosted, remote MCP server to launch and manage Google Ads from Claude or any MCP client. Opinionated with practitioner defaults and policy-safe settings baked in. No Google Cloud setup, no JSON edits.
▲ 136 · hireotto.com
AutoClaw — One-click OpenClaw setup by Z.AI Run OpenClaw locally with no API key required. Download and start immediately. Uses GLM-5-Turbo optimized for tool calling and multi-step tasks. Fully local — your data never leaves your machine.
▲ 96 · z.ai
Metabase Data Studio — Semantic layer for AI analytics Define metrics once so everyone (including AI) uses the same definitions. Transform raw tables with SQL or Python, see dependencies before changing anything. Publish trusted metrics to your Library. Open source.
▲ 140 · metabase.com
Perplexity API Platform — Full agent stack Multi-provider model access, real-time search on 200B+ URLs, and SOTA embeddings. One key, one bill, direct provider pricing. Search API, Agent API, and upcoming code execution sandbox.
▲ 195 · docs.perplexity.ai
From Reddit
r/openai r/singularity r/LocalLLaMA r/artificial

Anthropic's Claude Code source code leaked via npm, the biggest AI security story of the day. OpenAI closes a record $122B round, and new 1-bit LLMs push the boundaries of local inference.

Claude Code source code leaked via npm sourcemap

Anthropic accidentally shipped a 59.8MB .map file in Claude Code v2.1.88 on npm, exposing ~512,000 lines of TypeScript across 1,900 files. Discovered by a Solayer Labs intern at 4:23am ET and mirrored across GitHub within hours.

The leak revealed internal model codenames (Capybara = Claude 4.6 variant, Fennec = Opus 4.6, Numbat still in testing), the full multi-agent orchestration architecture, coordinator mode, tool system, and extensive telemetry/sentiment tracking. Community members have already rebuilt working executables from the source. Second major Anthropic data exposure in days, following the Mythos/Capybara CMS leak.

gizmodo.com · r/LocalLLaMA
OpenAI closes record $122B funding round at $852B valuation Update: The $110B round expanded to $122B with Amazon, Nvidia, and SoftBank participating. Largest private funding round in Silicon Valley history. IPO anticipation growing. Valuation up from $840B to $852B.
Claude Mythos benchmarks surface amid Anthropic's rough week Following the Mythos CMS data leak last week, alleged benchmark scores for Anthropic's unreleased model appeared on X today. Combined with the Claude Code source leak, Anthropic faces its biggest security crisis yet.
PrismML Bonsai 8B — First commercially viable 1-bit LLM True 1-bit quantization across the entire network (embeddings, attention, MLPs, output). Fits in 1.15GB of memory — 12-14x smaller than peers. Runs at 440 tok/s on a 4090, 136 tok/s on M4 Pro, ~44 tok/s on iPhone. 4-5x more energy efficient. Apache 2.0. 4B and 1.7B variants also released.
CoPaw-9B — Alibaba's official agentic finetune of Qwen3.5 9B On par with Qwen3.5-Plus on some benchmarks despite being a 9B model. Built for tool calling and agent workflows. Available on HuggingFace from the AgentScope team.
Liquid AI LFM2.5-350M — Agentic loops at 350M parameters Under 500MB quantized. Trained on 28T tokens with scaled RL. Outperforms Qwen3.5-0.8B on most benchmarks while being faster and more memory efficient. Reliable function calling and agent workflows on CPU, GPU, and mobile.

Quick hits from AI research and policy.

Quantum computers need just 10,000 qubits to break encryption New research dramatically lowers the qubit threshold for breaking current encryption, from millions to just 10,000. Significant implications for post-quantum cryptography timelines.
Newsom signs AI safety and privacy executive order California governor signs executive order requiring AI companies to implement safety and privacy guardrails.
From Reddit
r/StableDiffusion r/comfyui

Real-time Deforum is here, a lightweight on-device diffusion model, and a clever VRAM paging tool for ComfyUI.

Real-time Deforum has been achieved The Deforum team announces they've achieved real-time generation internally. A major milestone for AI-driven animation workflows that previously required minutes per frame.
DreamLite — 0.39B on-device diffusion model Lightweight unified model supporting both text-to-image generation and text-guided image editing in a single network. Built on pruned mobile U-Net backbone. Small enough to run on phones.
vram-pager — Run full-precision models on 16GB GPUs Open-source ComfyUI node that compresses model weights to INT8 for PCIe transfer and decompresses on GPU. Got Wan 2.2 14B running on a 4090 16GB where it was previously crashing. Works with LoRAs.
From Reddit
r/macapps r/selfhosted r/opensource

Critical Jellyfin security patch, a self-hosted Tailscale alternative, and the growing OpenClaw security crisis.

Jellyfin 10.11.7 — Critical security fixes, update immediately

The Jellyfin team dropped v10.11.7 with a stark warning: "This release contains several extremely important security fixes." Vulnerabilities will be disclosed in 14 days per their security policy. All versions prior to 10.11.7 are affected.

github.com · r/selfhosted
Octelium v0.29 — Self-hosted alternative to Teleport, Tailscale, and Cloudflare Tunnel Now with web console for management and real-time monitoring, SIEM, DNS/TLS management, SCIM, and encryption at rest. Enterprise version moved to public GitHub repo. Unified zero-trust access for all your services.
500,000 OpenClaw instances exposed on the public internet 30,000 with known security risks, 15,000 exploitable. 341 malicious skills found on ClawHub. A UK CEO's instance sold on BreachForums for $25K — included email, calendar, and file access. Security audit also found 33 vulnerabilities in the framework itself.
axios-macos-scan — Check your Mac for the npm supply chain compromise Free, open-source macOS tool to detect signs of the recent Axios/npm supply chain attack. Simple first-pass check for developers using npm or JavaScript tooling on Mac.
TranscribeX v5.5 — Qwen ASR V3 for local macOS transcription Major accuracy upgrade with Qwen ASR V3 + Aligner. Privacy-focused — all transcription runs locally. Supports Whisper and Qwen models. 40% off lifetime license.