Manage tasks and perform as much as possible independently, so I only need to review the results

Control my AI agents from my phone

Interact with knowledge base + AI via my phone

Analyze key metrics, provide a summary report, and identify the single most valuable action to drive progress

Receive notifications when the AI completes a task or requires my input, all manageable through my phone

BodySnatcher: Critical Agentic AI Vulnerability in ServiceNow. Researchers discovered CVE-2025-12420, a broken authentication flaw allowing unauthenticated attackers to impersonate any ServiceNow user using just an email address, then hijack AI agents to create admin backdoors. MORE

Copilot or Coconspirator: Tricking GitHub Copilot. Security researcher chains TOCTOU, prompt injection, and poisoned pipeline execution to steal secrets from repos using Copilot Agent. The attack requires only creating a legitimate-looking issue that maintainers assign to Copilot. MORE

The Browser is the Sandbox for AI Agents. Paul Kinlan explores how the browser's 30-year security model for running hostile code might be better suited for agentic AI than custom VMs, examining file system isolation, CSP network controls, and WebAssembly sandboxing. MORE

Scaling Long-Running Autonomous Coding Agents. Cursor ran hundreds of agents for weeks, writing over a million lines of code to build a web browser from scratch. Key insight: separating planners from workers and using model-specific roles dramatically improved coordination. MORE

AI Models Now Exploit Real-World Vulnerabilities Without Custom Tools. Anthropic reports Claude Sonnet 4.5 can autonomously replicate the Equifax breach using only standard Kali Linux tools, highlighting the urgency of patching known CVEs before AI agents exploit them at scale. MORE

Bending Spoons Layoffs at Vimeo. Almost the entire engineering team is gone, with less than 15 people left. The acquisition pattern continues as the company strips acquired products down to skeleton crews. MORE

AI-Assisted Development at Block. How Block's engineering culture is adapting to AI-assisted development, with insights on integrating tools without abandoning engineering rigor and code quality standards. MORE

Claude Code Psychosis. Jasmine Sun's honest take on her Claude Code journey from frustrated beginner to manic builder, questioning whether your problems are actually software-shaped or if you're just procrastinating with shiny new tools. MORE

Claude + Obsidian Got a Level Up. Eleanor Konik walks through setting up Claude Code in Obsidian using the Terminal plugin, sharing practical tips for knowledge workers who aren't terminal natives but want AI to help with vault maintenance. MORE

From Vibe Coding to TinyStakeholders. A non-technical PM built a complete website in 4 days using Claude Code, turning 300 Lenny's Podcast episodes into parenting tips. Includes practical lessons on agent fatigue, YOLO mode disasters, and illustration generation. MORE

sec-context: AI Code Security Anti-Patterns by Arcanum Information Security. A comprehensive security reference distilled from 150+ sources to help LLMs generate safer code. Includes the top 10 AI code anti-patterns with 86% XSS failure rates and slopsquatting dependency risks. MORE

Why to shell script. A developer creates a shell script to automatically monitor Aurora Borealis forecasts by scraping data from the National Weather Service website and displaying KP values in their desktop status bar. The script uses curl, awk, and ImageMagick to fetch forecast data, parse the highest KP values for nighttime hours, and send notifications with combined forecast images when aurora activity is likely. MORE

@BRuteLogic - CyberSecurity AI | XSS SQLi SSRF | WAF bypass | hack2learn

@rjgilbert - days @beehiiv. nights @workspacesxyz + @h1gallery.

@chriscoyier - Co-founder @CodePen. Podcasts @ShopTalkShow. Ran CSS-Tricks 2007-2022.

@bbuerhaus - security research, bug bounty, and puzzles

@aakashgupta - Building multiple profitable businesses and sharing the journey

Wilson Lin on FastRender: A Browser Built by Thousands of Parallel Agents. Simon Willison interviews the Cursor engineer behind FastRender, revealing how 2,000 concurrent agents coordinated via planner/worker hierarchies to write 30,000 commits with minimal merge conflicts. MORE

How AWS S3 is Built. The Pragmatic Engineer podcast dives deep into S3's architecture with VP Mai-Lan Tomsen Bukovec, covering 11 nines of durability, formal methods in production, the quiet Rust takeover, and why scale must be to your advantage. MORE

Understanding CSS Layout Fundamentals. Polypane's comprehensive guide explains why CSS layout feels hard: developers are expected to use it without being taught how it works. Covers normal flow, box model, margin collapse, positioning, stacking contexts, and how Flex/Grid differ. MORE

Sounds on the Web. Raphael Salaja argues we've collectively decided the web should be mute, but sound provides faster feedback (25ms vs 250ms for visual), emotional resonance, and presence that pixels alone can't achieve. MORE

The Optimizer: Productive, But Miserable. Explore how productivity obsession can lead to burnout and unhappiness despite achieving goals. Dr. K examines why constantly optimizing everything makes people efficient but emotionally drained. MORE

Clawdbot: AI Assistant via Telegram. Run an AI agent from your phone that actually does things, from querying finances with hledger to managing Linear tasks to modifying your NixOS server config. Includes practical skills for media requests, X bookmark search, and daily briefings. MORE

last30days-skill for Claude Code. A skill that researches any topic across Reddit and X from the last 30 days, then writes copy-paste-ready prompts. Great for discovering what prompting techniques actually work for any AI tool. MORE

KeyClu for macOS. Simple and handy overview of application shortcuts. Press Command twice and hold to see a list of all shortcuts for your current app. Install via Homebrew with brew install --cask keyclu. MORE

BucketDrop for macOS. A tiny open-source menu bar app for uploading files to your own S3-compatible storage. No dashboards, no syncing folders, no vendor lock-in. Just drop a file and get a shareable URL instantly. MORE

nanolang: A Tiny Language for LLM Code Generation. An experimental language designed specifically for coding LLMs to target, exploring whether purpose-built languages could improve AI code generation quality. MORE

Creepy Crawlers: Hunting WordPress Plugin Scanners. GreyNoise analyzed 90 days of WordPress plugin enumeration traffic, finding coordinated reconnaissance campaigns with 91 IPs exclusively targeting post-smtp for email infrastructure compromise. MORE

Andrew Wilkinson demonstrates how Claude Opus 4.5 has transformed his work and personal life, from building a relationship therapy app to creating automated email systems and personal styling tools. He argues that AI coding capabilities are so advanced they feel like having "30 free employees working 24/7 for $40 a day," fundamentally changing the economics of software development. MORE

Gift Cards Security Research. Detailed writeup on finding 9 vulnerabilities worth $6,500 by purchasing 30+ gift cards to access unexplored attack surfaces. Includes race conditions, IDORs, and email HTML injection across multiple platforms. MORE

Stealing Salesforce OAuth Tokens Using the WAF. Security research demonstrating how WAF configurations can be exploited to steal OAuth tokens in Salesforce environments. MORE

This interactive guide breaks down how browsers work from URL entry to pixel rendering, using hands-on examples to build intuition rather than overwhelming technical detail. Perfect for engineers and curious web users who want to understand the magic behind typing a URL and seeing a webpage appear. MORE

Bug Bounty Masterclass from Wiz. Start small, stay consistent, reach the top. A comprehensive guide to building a successful bug bounty career from the Wiz security team. MORE

From Chaos to Clarity: 4-Step Weekly Review System. MORE

7 Things to Delete From Your Business Immediately. From ditching revenue-focused decisions to eliminating internal emails. This counterintuitive approach of removing complexity rather than adding more systems led to better profits and smoother operations. MORE

How to Force Your Brain to Accomplish Your Goals in 2026. Brain-hacking techniques to force yourself to actually achieve your 2026 goals instead of abandoning them by February. Learn science-backed methods to rewire your mind for consistent progress and overcome the mental barriers that derail most people's resolutions. MORE

The Ultimate Guide to Discipline. This comprehensive guide breaks down the psychology and practical strategies behind building unshakeable self-discipline in your daily life. Learn actionable techniques to overcome procrastination, stick to goals, and develop the mental toughness needed for long-term success. MORE

The Ghost in the Machine: Discover why AI detectors are blind to "hybrid fakes" and the simple ⁠llms.txt trick that ensures your work is found by the new architects of information.

The Architect’s Secret: Go behind the curtain with a private lesson from the builder of Claude Code and a masterclass on shipping products with Cursor—no coding experience required.

The $300k Breach: A descent into the gritty history of the Masters of Deception hacker group and a 10-hour marathon breakdown of massive vulnerabilities within the Meta machine.

The Physics of the Impossible: Explore the mind-bending precision of ASML, the machines that manipulate light to power the modern world, and the "War on Slop" in the age of AI-generated mediocrity.

The Internal Revision: Distilled wisdom on the "7 Rules for Life" and a raw reflection on the lies we tell ourselves about resilience, potential, and the stories we are forced to rewrite.