Just open sourced my 6 month bastion host project

Hello r/opensource !

I’ve been working on **Orion-Belt** privately for about 6 months now. It’s a self-hosted Privileged Access Management (PAM) system I built to solve some specific infrastructure headaches in my own environment.

I decided to build this because I hit a wall with the current options:

* **The Teleport Struggle:** I tried Teleport Community Edition, but it felt too stripped down for my needs. More importantly, it was a nightmare to get running on my **Alpine-based home lab**—I couldn't get it to compile or run reliably on such a lightweight setup.
* **The "Enterprise Tax":** Most other PAM solutions are either locked behind massive price tags or are missing the basic features that make a PAM actually useful for a private setup.

Orion-Belt is my attempt to fill that gap with something that actually respects your hardware and is fully open-sourced.

After extensive development and testing, I decided to open source it by porting everything to a fresh repo.

**What it does:**

* Reverse SSH tunnel architecture - agents connect outbound to central gateway (no inbound firewall rules needed on your servers)
* Full SSH/SCP proxying with session recording
* Every keystroke and file transfer logged for audit trails
* Custom CLI tools (osh for ssh, ocp for scp)
* REST API for automation
* Relationship based access control with temporary access workflows
* Agnostic database backend ( PSQL is implemented for now with the possibility to implement more databases using the interface )

Built entirely in Go. Been running this on my own infrastrucure and the session replay feature alone has saved me countless hours when troubleshooting.

**Current state:**

This is **v0.2.0** \- core functionality is solid. SSH sessions work, file transfers work, recording and playback works.

Still have some features on the roadmap like MFA/TOTP and SSH certificate authority but wanted to get this out there ( check the ROADMAP in docs ).

**Looking for:**

**Contributors** who are into systems programming, security tooling, or just want to help build something useful.

Also open to feedback on architecture decisions and feature requests that would make this more valuable for your use cases.

Github: [https://github.com/zrougamed/orion-belt.git](https://github.com/zrougamed/orion-belt.git)

Happy to answer questions about implementation details, deployment, or how things work under the hood. I've been testing on Alpine Linux and Debian based VMs mostly but it should work on any linux distro.




https://redd.it/1q32los
@r_opensource

New to open source, need guidance selecting issues

So, I am going to start my open source contribution journey for GSoC 2026. When I look at the issues in repositories, I get confused which kind of issues I need to select and which kind of issues I need to avoid.

I see in almost all of the issues which are open, somebody has done pull requests or done some minor changes. Should I still contribute there?

Even if few issues exists which are new or untouched, it won't take much time someone to work on it.

What should I do man??


https://redd.it/1q30hmi
@r_opensource

NIS2 checker open source

Automated NIS2 Directive compliance scanning and reporting tool with comprehensive security checks, multiple report formats, and Docker deployment.

# Features

(https://github.com/fabriziosalmi/nis2-public#features)

🔍 Comprehensive Scanning: Ports, TLS/SSL, HTTP headers, DNS security
📊 Multiple Report Formats: HTML, JSON, Markdown with evidence collection
🐳 Docker Ready: Easy deployment with optional Grafana dashboards
🔐 Security Focused: Secrets detection, WAF/CDN identification, domain monitoring
🇮🇹 Italian Compliance: P.IVA, privacy policy, cookie consent checks
📈 Prometheus Integration: Metrics export for monitoring

100% free and open source, open to contributions:

https://github.com/fabriziosalmi/nis2-public

https://redd.it/1q2rd0v
@r_opensource

NOThub — GitHub‑style profile, but the “green squares” are your daily dev checklist (fully open source)

Hey everyone,
Building NOThub: a GitHub‑inspired profile/dashboard for solo students and beginner devs—but instead of showing commit contributions, the profile heatmap shows daily checklist tracking (learning, coding, notes, tests, planning, etc.).
The goal is to help people stay consistent and prove progress even when the work isn’t always public code (reading docs, debugging, planning, studying). Each day has a “Daily Entry” where you tick a checklist, set 1–3 goals, add short notes/blockers, and write the next step for tomorrow. Over time, your profile becomes a portfolio of consistency.
There will also be a small local CLI called not to log faster:
• not check (today’s checklist)
• not note "..." (quick notes)
• not start/stop (focus session timer)
• not sync (sync entries when online)
Important: this will be a fully open source project (code, issues, roadmap, docs), and contributions are welcome from day 1.


If you’re interested in contributing (frontend, backend, CLI, design), comment what you’d like to help with and what stack you


https://redd.it/1q39c4l
@r_opensource

GitHub - raghav4882/TerminallyQuick v4: Fast, user-friendly image processing tool for web developers with batch processing and modern format support
https://github.com/raghav4882/TerminallyQuick

https://redd.it/1q3cslm
@r_opensource

I built an open-source "Memento Mori" wallpaper generator to start the year
https://github.com/Ti-03/remainders

https://redd.it/1q3d3gi
@r_opensource

Open source is being DDoSed by AI slop and GitHub is making it worse

I've been following the AI slop problem closely and it seems like it's getting worse, not better.

**The situation:**

* Daniel Stenberg (curl) said the project is "effectively being DDoSed" by AI-generated bug reports. About 20% of submissions in 2025 were AI slop. At one point, volume spiked to 8x the usual rate. He's now considering whether to shut down their bug bounty program entirely.
* OCaml maintainers rejected a 13,000-line AI-generated PR. Their reasoning: reviewing AI code is *more* taxing than human code, and mass low-effort PRs "create a real risk of bringing the Pull-Request system to a halt."
* Anthony Fu (Vue ecosystem) and others have posted about being flooded with PRs from people who feed "help wanted" issues directly to AI agents, then loop through review comments like drones without understanding the code.
* GitHub is making this worse by integrating Copilot into issue/PR creation — and you can't block it or even tell which submissions came from Copilot.

**The pattern:**

People (often students padding resumes, or bounty hunters) use AI to mass-generate PRs and bug reports. The output looks plausible at first glance but falls apart under review. Maintainers — mostly unpaid volunteers — waste hours triaging garbage.

Some are comparing this to Hacktoberfest 2020 ("Shitoberfest"), except now it's year-round and the barrier is even lower.

**What I'm wondering:**

Is anyone building tools to help with this? Not "AI detection" (that's a losing game), but something like:

* Automated triage that checks if a PR actually runs, addresses the issue, or references nonexistent functions
* Cross-project contributor reputation — so maintainers can see "this person has mass-submitted 47 PRs across 30 repos with a 3% merge rate" vs "12 merged PRs, avg 1.5 review cycles"
* Better signals than just "number of contributions"

The data for reputation is already in the GitHub API (PR outcomes, review cycles, etc). Seems like someone should be building this.

**For maintainers here:** What would actually help you? What signals do you look at when triaging a PR from an unknown contributor?

https://redd.it/1q3f89b
@r_opensource

Best self-hosted bookmark manager?

Looking for **self-hosted bookmark managers** that are:

* Minimal and nice to look at
* Fast & easy to save links
* Good for organizing/tagging

Prefer something close to MyMind’s design/feel. Open-source or free to self-host is ideal.

https://redd.it/1q3gi3h
@r_opensource

OSS for dumping entire camera roll

Hi all.

So I’m an iPhone normie and am sick to bloody DEATH of how annoying it is to manually (not on the cloud) copy media from camera roll to a local hard drive. There are paid shithole grey market software for this (looking at you, iMazing) but holy shit it really cannot be that complicated—

TDLR: is there a GOOD, known oss/noscript(that a total coding normie can figure out) that can dump an iPhone’s entire camera roll with full quality?

I hope this makes sense. I would really appreciate any recommendations.

https://redd.it/1q3htxk
@r_opensource

Debugging open source issues is harder than writing the code

Issue reports come incomplete. reproduction steps are vague.
by the time you understand the problem, someone else has forked.

i’ve been experimenting with feeding issue logs and test failures into debugging tools to speed up triage. kodezi has been useful for mapping failures back to commits when context is thin.

maintainers already donate time. debugging shouldn’t drain more of it.

how are other maintainers handling this load?

https://redd.it/1q3k72w
@r_opensource

fdir: Command-line utility to list, filter, and sort files in a directory
https://github.com/VG-dev1/fdir

https://redd.it/1q3kjpe
@r_opensource

Good text-to-speech software that sounds natural and with download option?

thank you

https://redd.it/1q3ld4k
@r_opensource

BYOB self-hosting vs fully on-premise

Curious what people think about open-source projects that are not necessarily on-premise deployable but tightly coupled to a specific cloud provider.

Personally, I am currently working on a project that uses SST to deploy gracefully to AWS. It's fully open-source, but I get that a lot of people here on Reddit look down on this as it's not "fully" self-hostable as they still don't own the hardware.

Mostly trying to understand expectations before I commit harder to this architecture - I am aware that I can substitute most of what AWS provides with containterizable tools (Minio instead of S3, Redis/BullMQ instead of SQS...)

Would love to hear how others think about this, especially maintainers of open-source/self-hosted tools.

https://redd.it/1q3foyl
@r_opensource

I built a customizable widget library(shadcn inspired) for flutter with live playground (Feedback Appreciated!)

Hi, I built a component library of sorts (with web preview) that lets you customize and export Flutter UI components with real-time theme changes along with the UI components themselves (lib) kinda like tweakcn+shadcn. Zero dependencies, Flutter 3.0.0+, integration-friendly, and great for quick builds/hackathons. It has over 12+theme presets including ones of popular apps!(do recommend any cool theme ideas, will try to add)

designing UI is extremely intuitive do try out!
Repo: https://github.com/TejasS1233/flutter-studio

would appreciate feedback/suggestions


https://redd.it/1q3ol07
@r_opensource

Unique features of C++ DataFrame (2)
https://github.com/hosseinmoein/DataFrame

https://redd.it/1q3ry3l
@r_opensource

Pinterest and Cosmos

I found an alternative to Pinterest - its called cosmos, it doesnt have ai slop and ads,, but is it open source? Does it spy on my data? I cant find it anywhere so i dont know its pretty new

https://redd.it/1q3slfz
@r_opensource

BlackScreen: turn all your screens black

Hi all,


BlackScreen is my new open source program for PC that turns all your screens black until you click to exit.

It is available as Python noscript and also as Rust program. Ready-to-use binary compatible with Windows 10 and 11 (64-bit) is attached to the release.


You can find it at https://github.com/Messina-Agata/BlackScreen :)

https://redd.it/1q3ug8h
@r_opensource

I built an open-source IDE and framework for Android apps development in Swift
http://docs.swifdroid.com/app/

https://redd.it/1q3wt4s
@r_opensource

I Built a Weather App Using React Native & TypeScript
https://youtu.be/Lj7ITw_tCFc?si=rPAYh9535JJieoxA

https://redd.it/1q3yblr
@r_opensource

we are building an OpenSource Youtube Alternative | Booster

https://www.boostervideos.net/about

We’re two brothers who decided to build a new video platform from scratch. We’ve been working on this project, called Booster, for about two months now.

The idea came from our own frustration with existing video platforms. With Booster, we’re trying to improve the experience by using voluntary ads that give rewards to users, allowing them to boost and support their favorite channels and friends directly, and avoid content made with AI and Vertical Short Form videos.

The theme you see right now in the screen is now available for free to every user who logs in and creates a new account. We would like to know from webdevs, how we can improve it and make it better, and also know if there is any bugs or something you would llike to point out.

Regarding costs, we've solved the high costs of infrastructure thanks to our provider, so it doesn't pose a big expense, thanks to their encoding and CDN.

Regarding revenue, monetization currently would come from a virtual currency called XP, which users can either earn for free by watching voluntary feature videos or purchase. XP is used to boost channels and buy personalization assets. We also plan to implement voluntary, rewarded ads that give users free XP. The goal is to test whether users and creators actually like and adopt this model.

Moderation is made through community votes, which are a way of letting the users and the common viewer decide if the report of a specific user was accurate or not.

In the link, we've included the about page, which includes how Booster works, plus the Discord and the open GitHub.

https://redd.it/1q3zt1t
@r_opensource

Tiny PHP pretty-printer that formats arrays like PyTorch tensors

I’ve released a small helper for anyone working with PHP + data-heavy code (ML experiments, debugging, logs, educational projects, etc.).

PrettyPrint is a zero-dependency callable pretty-printer for PHP arrays with clean, Python-style formatting. It supports aligned 2D tables, PyTorch-like tensor views, summarization (head/tail rows & columns), and works both in CLI and web contexts.

Install:

composer require apphp/pretty-print

Examples:

Aligned 2D table:

pprint(1, 23, 456, 12, 3, 45);
// [ 1, 23, 456,
// 12, 3, 45]

PyTorch-style 2D output:

pprint($matrix);
// tensor(
// [ 1, 2, 3, 4, 5,
// 6, 7, 8, 9, 10,
// 11, 12, 13, 14, 15
// ])

Summaries for big matrices:

pprint($m, headRows: 2, tailRows: 1, headCols: 2, tailCols: 2);

3D tensors with ellipsis:

pprint($tensor3d, headB: 1, tailB: 1);
// tensor(
// [ 1, 2, ..., 4, 5,
// 6, 7, ..., 9, 10,
// ...,
// 21, 22, ..., 24, 25
// ])

Also supports labels, precision, start/end strings, and even acts as a callable object:

$pp = new PrettyPrint();
$pp('Hello', 42);
// Hello 42

You may find much more configuration features in repo: *https://github.com/apphp/pretty-print*

If you often stare at messy print_r() dumps to print arrays, this might make your day slightly better 😄

https://redd.it/1q40sko
@r_opensource