AI-assisted SAST, SCA and Secrets Detection. Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Semgrep is a fast, open-source, static analysis tool that searches code, finds bugs, and enforces secure guardrails and coding standards. Semgrep supports 30+ languages and can run in an IDE, as a pre-commit check, and as part of CI/CD workflows.

• Sempgrep @ GitHub.

Related contents:

• Keeping Secrets Out of Logs @ allan.reyes.sh.

ServerlessHorrors is a simple blog where you can read all the horror stories of serverless. Yikes!

An open source anti-detect browser with robust fingerprint injection. 🦊 A stealthy, minimalistic, custom build of Firefox for web scraping 🦊

• Camoufox @ GitHub.

Hi, I’m Sam Gold. Did you know that you have rights a lid angle sensor in your MacBook? The human interface device utility says you do.

This is a little utility that shows the angle from the sensor and, optionally, plays a wooden door creaking sound if you adjust it reeaaaaaal slowly.

Style your webpage like Edward Tufte’s handouts.

Edward Tufte uses a distinctive style in his handouts: simple, with well-set typography, extensive sidenotes, and tight integration of graphics and charts. tufte-css brings that style to HTML documents.

• Tufte CSS @ GitHub.

The Data-Oriented Language for Sane Software Development.

Odin is a general-purpose programming language with distinct typing, built for high performance, modern systems, and built-in data-oriented data types. The Odin Programming Language, the C alternative for the joy of programming.

• Odin @ GitHub.

Related contents:

• Package Managers are Evil @ gingerBill.

💫 Toolkit to help you get started with Spec-Driven Development.

Build high-quality software faster.

An effort to allow organizations to focus on product scenarios rather than writing undifferentiated code with the help of Spec-Driven Development.

Spec-Driven Development flips the script on traditional software development. For decades, code has been king — specifications were just scaffolding we built and discarded once the "real work" of coding began. Spec-Driven Development changes this: specifications become executable, directly generating working implementations rather than just guiding them.

The Ultimate RSVP Platform Create, share, and manage events with zero friction.

🌵 Mobile first open-source RSVP platform. Alternative for meetup.com & eventbrite and partiful for small companies and groups.

Like the cactus, great events bloom under any condition when managed with care. Cactoide(ae) helps you streamline RSVPs, simplify coordination, and keep every detail efficient—so your gatherings are resilient, vibrant, and unforgettable.

• Cactoide(ae) 🌵 @ GitHub.

The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.

Despite its name, LLVM has little to do with traditional virtual machines. The name "LLVM" itself is not an acronym; it is the full name of the project.

• The LLVM Compiler Infrastructure @ GitHub.

Related contents:

• Why ML Needs a New Programming Language @ Signals & Threads.

Open device management for everyone.

Open-source platform for IT and security teams with thousands of computers. Designed for APIs, GitOps, webhooks, YAML, and humans.

Organizations like Fastly and Gusto use Fleet for vulnerability reporting, detection engineering, device management (MDM), device health monitoring, posture-based access control, managing unused software licenses, and more.

• Fleet @ GitHub.

Keep your lambdas warm during winter. ♨

WarmUp solves cold starts by creating a scheduled lambda (the warmer) that invokes all the selected service's lambdas in a configured time interval (default: 5 minutes) and forcing your containers to stay warm.

A tool to identify and investigate inauthentic GitHub user accounts and repositories.

ghbuster is a tool to detect suspicious GitHub repositories and users using heuristics. It is designed to help identify potentially malicious or inauthentic accounts and repositories on GitHub.

Open Source Continuous Profiling Platform. Debug performance issues down to a single line of code.

Grafana Pyroscope is a continuous profiling platform designed to surface performance insights from your applications, helping you optimize resource usage such as CPU, memory, and I/O operations. With Pyroscope, you can both proactively and reactively address performance bottlenecks across your system.

• Pyroscope @ GitHub.

Related contents:

• Traces with Tempo & Profiling with Pyroscope (via Terraform) @ Dev Genius' Medium.

Distributed tracing backend.

Grafana Tempo is a high volume, minimal dependency distributed tracing backend.

• Grafana Tempo @ GitHub.

Related contents:

• Traces with Tempo & Profiling with Pyroscope (via Terraform) @ Dev Genius' Medium.

The Real-time Data Platform.

• Redis @ GitHub

Related contents:

• How In-Memory Caching Works in Redis @ freeCodeCamp.

A Model Context Protocol server that provides read-only access to PostgreSQL databases. This server enables LLMs to inspect database schemas and execute read-only queries.

Related contents:

• MCP vulnerability case study: SQL injection in the Postgres MCP server @ Datadog.

stress-ng will stress test a computer system in various selectable ways. It was designed to exercise various physical subsystems of a computer as well as the various operating system kernel interfaces.

Related contents:

• %CPU Utilization Is A Lie @ Brendan Long.

A Go-based GitHub Action that creates cryptographically verifiable attestations for URL content monitoring. This action can be used in any GitHub workflow to generate and verify attestations when the content of specified URLs changes.

Related contents:

• Turning Github Actions into an oracle @ Ethan Heilman.

Library and command line tool to detect SHA-1 collision in a file.

Related contents:

• Turning Github Actions into an oracle @ Ethan Heilman.

The Caster is a open-source FPGA-based low-latency electrophoretics display controller (EPDC) design that can be embedded into multiple different classes of devices.

Related contents:

• E-Paper Display Reaches the Realm of LCD Screens @ IEEE Spectrum.

Open-source Eink monitor with an emphasis on low latency.

Related contents:

• E-Paper Display Reaches the Realm of LCD Screens @ IEEE Spectrum.

A C++ library for reading MacBook lid angle sensor data, based on reverse engineering of HID device specifications.

Open source Canva AI alternative.

AI Design Agent. Draw, chat, point, than get outcome from leading AIs — all in one canvas.

The world's first open-source multimodal creative assistant This is a substitute for Canva and Manus that prioritizes privacy and is usable locally.

• Jaaz @ GitHub.