Vulnerabilities in artificial intelligence platforms: the example of XSS in Mintlify and the dangers of supply chain attacks
https://www.reddit.com/r/programming/comments/1pqpt6s/vulnerabilities_in_artificial_intelligence/
<!-- SC_OFF -->The flaw discovered in this article arose from an endpoint that served static resources without validating the domain correctly, allowing Cross-Site Scripting (XSS) on large customer websites. Although it was not a case of 'AI-generated' code being executed at runtime, the platform itself is powered by AI. This raises a larger concern: even when LLMs do not directly create vulnerable code, the AI ecosystem in general accelerates the adoption and integration of third-party tools, prioritizing speed and convenience, often at the expense of thorough security analysis. Such rapid integrations can lead to critical flaws, such as inadequate input validation or poor access controls, creating a favorable environment for supply chain attacks. Research shows that code generated by LLMs often contains common vulnerabilities, such as XSS, SQL injection, and missing security headers. This leads to a reflection: does this happen because the models are trained on billions of lines of old code, where insecure practices are common? Or is it because LLMs prioritize immediate functionality and conciseness over the robustness of the security architecture? <!-- SC_ON --> submitted by /u/Fragrant-Age-2099 (https://www.reddit.com/user/Fragrant-Age-2099)
[link] (https://gist.github.com/hackermondev/5e2cdc32849405fff6b46957747a2d28?referrer=grok.com) [comments] (https://www.reddit.com/r/programming/comments/1pqpt6s/vulnerabilities_in_artificial_intelligence/)
https://www.reddit.com/r/programming/comments/1pqpt6s/vulnerabilities_in_artificial_intelligence/
<!-- SC_OFF -->The flaw discovered in this article arose from an endpoint that served static resources without validating the domain correctly, allowing Cross-Site Scripting (XSS) on large customer websites. Although it was not a case of 'AI-generated' code being executed at runtime, the platform itself is powered by AI. This raises a larger concern: even when LLMs do not directly create vulnerable code, the AI ecosystem in general accelerates the adoption and integration of third-party tools, prioritizing speed and convenience, often at the expense of thorough security analysis. Such rapid integrations can lead to critical flaws, such as inadequate input validation or poor access controls, creating a favorable environment for supply chain attacks. Research shows that code generated by LLMs often contains common vulnerabilities, such as XSS, SQL injection, and missing security headers. This leads to a reflection: does this happen because the models are trained on billions of lines of old code, where insecure practices are common? Or is it because LLMs prioritize immediate functionality and conciseness over the robustness of the security architecture? <!-- SC_ON --> submitted by /u/Fragrant-Age-2099 (https://www.reddit.com/user/Fragrant-Age-2099)
[link] (https://gist.github.com/hackermondev/5e2cdc32849405fff6b46957747a2d28?referrer=grok.com) [comments] (https://www.reddit.com/r/programming/comments/1pqpt6s/vulnerabilities_in_artificial_intelligence/)
A Decade on Datomic - Davis Shepherd & Jonathan Indig (Netflix)
https://www.reddit.com/r/programming/comments/1pqr8f6/a_decade_on_datomic_davis_shepherd_jonathan_indig/
submitted by /u/alexdmiller (https://www.reddit.com/user/alexdmiller)
[link] (https://www.youtube.com/watch?v=gJ9UZlr6C6M) [comments] (https://www.reddit.com/r/programming/comments/1pqr8f6/a_decade_on_datomic_davis_shepherd_jonathan_indig/)
https://www.reddit.com/r/programming/comments/1pqr8f6/a_decade_on_datomic_davis_shepherd_jonathan_indig/
submitted by /u/alexdmiller (https://www.reddit.com/user/alexdmiller)
[link] (https://www.youtube.com/watch?v=gJ9UZlr6C6M) [comments] (https://www.reddit.com/r/programming/comments/1pqr8f6/a_decade_on_datomic_davis_shepherd_jonathan_indig/)
Engineering Lessons from 12 Projects Shipped in 2025
https://www.reddit.com/r/programming/comments/1pqtia4/engineering_lessons_from_12_projects_shipped_in/
<!-- SC_OFF -->In 2025, engineers on our team shipped projects across growth, payments, content creation, analytics, and infrastructure. Some of this work was user-facing, other projects were migrations and rewrites that paid down years of technical debt. Across the board, the hardest problems involved breaking long-standing assumptions, navigating legacy systems, or making explicit tradeoffs between product outcomes, performance, and velocity. We generalized our learnings through a collection of short engineering case studies framed around the practical challenges of building and maintaining production software: https://www.patreon.com/posts/year-in-review-146102084 <!-- SC_ON --> submitted by /u/patreon-eng (https://www.reddit.com/user/patreon-eng)
[link] (https://www.patreon.com/posts/year-in-review-146102084) [comments] (https://www.reddit.com/r/programming/comments/1pqtia4/engineering_lessons_from_12_projects_shipped_in/)
https://www.reddit.com/r/programming/comments/1pqtia4/engineering_lessons_from_12_projects_shipped_in/
<!-- SC_OFF -->In 2025, engineers on our team shipped projects across growth, payments, content creation, analytics, and infrastructure. Some of this work was user-facing, other projects were migrations and rewrites that paid down years of technical debt. Across the board, the hardest problems involved breaking long-standing assumptions, navigating legacy systems, or making explicit tradeoffs between product outcomes, performance, and velocity. We generalized our learnings through a collection of short engineering case studies framed around the practical challenges of building and maintaining production software: https://www.patreon.com/posts/year-in-review-146102084 <!-- SC_ON --> submitted by /u/patreon-eng (https://www.reddit.com/user/patreon-eng)
[link] (https://www.patreon.com/posts/year-in-review-146102084) [comments] (https://www.reddit.com/r/programming/comments/1pqtia4/engineering_lessons_from_12_projects_shipped_in/)
Microsoft to move away from C/C++ to Rust using AI assisted coding
https://www.reddit.com/r/programming/comments/1pqulm0/microsoft_to_move_away_from_cc_to_rust_using_ai/
submitted by /u/ishammohamed (https://www.reddit.com/user/ishammohamed)
[link] (https://www.linkedin.com/posts/galenh_principal-software-engineer-coreai-microsoft-activity-7407863239289729024-WTzf) [comments] (https://www.reddit.com/r/programming/comments/1pqulm0/microsoft_to_move_away_from_cc_to_rust_using_ai/)
https://www.reddit.com/r/programming/comments/1pqulm0/microsoft_to_move_away_from_cc_to_rust_using_ai/
submitted by /u/ishammohamed (https://www.reddit.com/user/ishammohamed)
[link] (https://www.linkedin.com/posts/galenh_principal-software-engineer-coreai-microsoft-activity-7407863239289729024-WTzf) [comments] (https://www.reddit.com/r/programming/comments/1pqulm0/microsoft_to_move_away_from_cc_to_rust_using_ai/)
FastAPI for TypeScript Developers
https://www.reddit.com/r/programming/comments/1pqvqll/fastapi_for_typenoscript_developers/
<!-- SC_OFF -->I've been getting back into Python, and boy oh boy things have changed! <!-- SC_ON --> submitted by /u/lorenseanstewart (https://www.reddit.com/user/lorenseanstewart)
[link] (https://www.lorenstew.art/blog/fastapi-for-typenoscript-developers) [comments] (https://www.reddit.com/r/programming/comments/1pqvqll/fastapi_for_typenoscript_developers/)
https://www.reddit.com/r/programming/comments/1pqvqll/fastapi_for_typenoscript_developers/
<!-- SC_OFF -->I've been getting back into Python, and boy oh boy things have changed! <!-- SC_ON --> submitted by /u/lorenseanstewart (https://www.reddit.com/user/lorenseanstewart)
[link] (https://www.lorenstew.art/blog/fastapi-for-typenoscript-developers) [comments] (https://www.reddit.com/r/programming/comments/1pqvqll/fastapi_for_typenoscript_developers/)
Exploring Prometheus Internals: TSDB and XOR Encoding
https://www.reddit.com/r/programming/comments/1pqy0lm/exploring_prometheus_internals_tsdb_and_xor/
submitted by /u/Helpful_Geologist430 (https://www.reddit.com/user/Helpful_Geologist430)
[link] (https://cefboud.com/posts/prometheus-monitoring-alertmanager-internals-tsdb/) [comments] (https://www.reddit.com/r/programming/comments/1pqy0lm/exploring_prometheus_internals_tsdb_and_xor/)
https://www.reddit.com/r/programming/comments/1pqy0lm/exploring_prometheus_internals_tsdb_and_xor/
submitted by /u/Helpful_Geologist430 (https://www.reddit.com/user/Helpful_Geologist430)
[link] (https://cefboud.com/posts/prometheus-monitoring-alertmanager-internals-tsdb/) [comments] (https://www.reddit.com/r/programming/comments/1pqy0lm/exploring_prometheus_internals_tsdb_and_xor/)
Revenue Goals vs. Code Quality: What Really Drives Technical Debt
https://www.reddit.com/r/programming/comments/1pqzkg2/revenue_goals_vs_code_quality_what_really_drives/
submitted by /u/ArtisticProgrammer11 (https://www.reddit.com/user/ArtisticProgrammer11)
[link] (https://www.hyperact.co.uk/blog/how-revenue-decisions-shape-technical-debt) [comments] (https://www.reddit.com/r/programming/comments/1pqzkg2/revenue_goals_vs_code_quality_what_really_drives/)
https://www.reddit.com/r/programming/comments/1pqzkg2/revenue_goals_vs_code_quality_what_really_drives/
submitted by /u/ArtisticProgrammer11 (https://www.reddit.com/user/ArtisticProgrammer11)
[link] (https://www.hyperact.co.uk/blog/how-revenue-decisions-shape-technical-debt) [comments] (https://www.reddit.com/r/programming/comments/1pqzkg2/revenue_goals_vs_code_quality_what_really_drives/)
I implemented secure password hashing in a Java Swing Library Management System (SHA-256)
https://www.reddit.com/r/programming/comments/1pr6i2u/i_implemented_secure_password_hashing_in_a_java/
<!-- SC_OFF -->Hi everyone 👋 I’m building a real-world Java Swing Library Management System, and in Part 32 I focused on something many beginner projects ignore: secure password storage. In this video, I implemented: 🔐 Password hashing using SHA-256 ❌ No plain-text passwords in MySQL ✅ Proper login preparation for real applications ☕ Java Swing + 🛢 MySQL integration This is part of a User Management Module, not just a demo — it’s designed like a real system you’d see in production (for learning purposes). 🎥 Video: Part 32 — Java Swing Library System | User Management – Secure Hashed Password
Part 32 — Java Swing Library System | Part 9 User Management Module – Secure Hashed Password (https://www.youtube.com/watch?v=tZGDawjVaD4&t=219s) I’d really appreciate feedback from experienced Java developers: Is SHA-256 okay for learning projects? What would you recommend next? (salt, bcrypt, login verification, forgot password?) Thanks for reading 🙏
I hope this helps other Java Swing learners too. <!-- SC_ON --> submitted by /u/Substantial-Log-9305 (https://www.reddit.com/user/Substantial-Log-9305)
[link] (https://www.youtube.com/watch?v=tZGDawjVaD4&t=219s) [comments] (https://www.reddit.com/r/programming/comments/1pr6i2u/i_implemented_secure_password_hashing_in_a_java/)
https://www.reddit.com/r/programming/comments/1pr6i2u/i_implemented_secure_password_hashing_in_a_java/
<!-- SC_OFF -->Hi everyone 👋 I’m building a real-world Java Swing Library Management System, and in Part 32 I focused on something many beginner projects ignore: secure password storage. In this video, I implemented: 🔐 Password hashing using SHA-256 ❌ No plain-text passwords in MySQL ✅ Proper login preparation for real applications ☕ Java Swing + 🛢 MySQL integration This is part of a User Management Module, not just a demo — it’s designed like a real system you’d see in production (for learning purposes). 🎥 Video: Part 32 — Java Swing Library System | User Management – Secure Hashed Password
Part 32 — Java Swing Library System | Part 9 User Management Module – Secure Hashed Password (https://www.youtube.com/watch?v=tZGDawjVaD4&t=219s) I’d really appreciate feedback from experienced Java developers: Is SHA-256 okay for learning projects? What would you recommend next? (salt, bcrypt, login verification, forgot password?) Thanks for reading 🙏
I hope this helps other Java Swing learners too. <!-- SC_ON --> submitted by /u/Substantial-Log-9305 (https://www.reddit.com/user/Substantial-Log-9305)
[link] (https://www.youtube.com/watch?v=tZGDawjVaD4&t=219s) [comments] (https://www.reddit.com/r/programming/comments/1pr6i2u/i_implemented_secure_password_hashing_in_a_java/)
Mastering AI Coding: The Universal Playbook of Tips, Tricks, and Patterns
https://www.reddit.com/r/programming/comments/1pr7wc9/mastering_ai_coding_the_universal_playbook_of/
<!-- SC_OFF -->A very useful, neither hype'y nor shilly, set of universal principles and approaches that makes AI-assisted coding (not vibing!) productive - for many, but not all, programming tasks. We are not talking about vibe coding here, were you don't know what's going on - we're talking about planning your changes carefully and in a detailed way with AI and letting it to write most, but not all, of the code. I've been experimenting with this approach as of late and for popular programming stacks, as long as you validate the output and work in incremental steps, it can speed up some (not all) programming tasks a lot :) Especially if you set up the code repo properly and have good and cohesive code conventions <!-- SC_ON --> submitted by /u/BinaryIgor (https://www.reddit.com/user/BinaryIgor)
[link] (https://www.siddharthbharath.com/mastering-ai-coding-the-universal-playbook-of-tips-tricks-and-patterns/) [comments] (https://www.reddit.com/r/programming/comments/1pr7wc9/mastering_ai_coding_the_universal_playbook_of/)
https://www.reddit.com/r/programming/comments/1pr7wc9/mastering_ai_coding_the_universal_playbook_of/
<!-- SC_OFF -->A very useful, neither hype'y nor shilly, set of universal principles and approaches that makes AI-assisted coding (not vibing!) productive - for many, but not all, programming tasks. We are not talking about vibe coding here, were you don't know what's going on - we're talking about planning your changes carefully and in a detailed way with AI and letting it to write most, but not all, of the code. I've been experimenting with this approach as of late and for popular programming stacks, as long as you validate the output and work in incremental steps, it can speed up some (not all) programming tasks a lot :) Especially if you set up the code repo properly and have good and cohesive code conventions <!-- SC_ON --> submitted by /u/BinaryIgor (https://www.reddit.com/user/BinaryIgor)
[link] (https://www.siddharthbharath.com/mastering-ai-coding-the-universal-playbook-of-tips-tricks-and-patterns/) [comments] (https://www.reddit.com/r/programming/comments/1pr7wc9/mastering_ai_coding_the_universal_playbook_of/)
We revoked our v1.0 status. Why we're rolling NalthJS back to v0.9.0 to prioritize security architecture.
https://www.reddit.com/r/programming/comments/1pr8mhf/we_revoked_our_v10_status_why_were_rolling/
<!-- SC_OFF -->We made a mistake that I think a lot of open source maintainers make: we chased the "v1.0" label before the architecture was truly battle-hardened. NalthJS is designed to be a security-first framework (enforcing headers, sanitization, and encryption by default). But we realized that keeping the v1.0 badge implies a "finished" state that discouraged the kind of radical architectural improvements we're currently making. So, we're doing something unpopular: we're rolling back to v0.9.0 Beta. We're choosing to break things now so they don't break in prod later. I'd love to hear from other maintainers have you ever "undone" a major release to save the project's long-term integrity <!-- SC_ON --> submitted by /u/Evening-Direction-71 (https://www.reddit.com/user/Evening-Direction-71)
[link] (https://nalthjs.com/) [comments] (https://www.reddit.com/r/programming/comments/1pr8mhf/we_revoked_our_v10_status_why_were_rolling/)
https://www.reddit.com/r/programming/comments/1pr8mhf/we_revoked_our_v10_status_why_were_rolling/
<!-- SC_OFF -->We made a mistake that I think a lot of open source maintainers make: we chased the "v1.0" label before the architecture was truly battle-hardened. NalthJS is designed to be a security-first framework (enforcing headers, sanitization, and encryption by default). But we realized that keeping the v1.0 badge implies a "finished" state that discouraged the kind of radical architectural improvements we're currently making. So, we're doing something unpopular: we're rolling back to v0.9.0 Beta. We're choosing to break things now so they don't break in prod later. I'd love to hear from other maintainers have you ever "undone" a major release to save the project's long-term integrity <!-- SC_ON --> submitted by /u/Evening-Direction-71 (https://www.reddit.com/user/Evening-Direction-71)
[link] (https://nalthjs.com/) [comments] (https://www.reddit.com/r/programming/comments/1pr8mhf/we_revoked_our_v10_status_why_were_rolling/)
From the AskProgramming community on Reddit
https://www.reddit.com/r/programming/comments/1pr8u7j/from_the_askprogramming_community_on_reddit/
submitted by /u/maniiso (https://www.reddit.com/user/maniiso)
[link] (https://www.reddit.com/r/AskProgramming/comments/1pr8t48/starting_to_learn_python/?share_id=eM5VEISHfHRwZUyJr0yte&utm_content=1&utm_medium=ios_app&utm_name=ioscss&utm_source=share&utm_term=1) [comments] (https://www.reddit.com/r/programming/comments/1pr8u7j/from_the_askprogramming_community_on_reddit/)
https://www.reddit.com/r/programming/comments/1pr8u7j/from_the_askprogramming_community_on_reddit/
submitted by /u/maniiso (https://www.reddit.com/user/maniiso)
[link] (https://www.reddit.com/r/AskProgramming/comments/1pr8t48/starting_to_learn_python/?share_id=eM5VEISHfHRwZUyJr0yte&utm_content=1&utm_medium=ios_app&utm_name=ioscss&utm_source=share&utm_term=1) [comments] (https://www.reddit.com/r/programming/comments/1pr8u7j/from_the_askprogramming_community_on_reddit/)
The Development Process to Build a Fuel Delivery App
https://www.reddit.com/r/programming/comments/1pr9j5x/the_development_process_to_build_a_fuel_delivery/
submitted by /u/HiShivanshgiri (https://www.reddit.com/user/HiShivanshgiri)
[link] (https://www.techanicinfotech.com/fuel-delivery-app-development) [comments] (https://www.reddit.com/r/programming/comments/1pr9j5x/the_development_process_to_build_a_fuel_delivery/)
https://www.reddit.com/r/programming/comments/1pr9j5x/the_development_process_to_build_a_fuel_delivery/
submitted by /u/HiShivanshgiri (https://www.reddit.com/user/HiShivanshgiri)
[link] (https://www.techanicinfotech.com/fuel-delivery-app-development) [comments] (https://www.reddit.com/r/programming/comments/1pr9j5x/the_development_process_to_build_a_fuel_delivery/)
How my knowledge in other subdomains in Software Engineering united to exponentially increase MLOps potential
https://www.reddit.com/r/programming/comments/1prdbkt/how_my_knowledge_in_other_subdomains_in_software/
submitted by /u/innatari (https://www.reddit.com/user/innatari)
[link] (https://thenukaovin.medium.com/how-mlops-turned-my-breadth-into-a-strength-68b03c25ceb6) [comments] (https://www.reddit.com/r/programming/comments/1prdbkt/how_my_knowledge_in_other_subdomains_in_software/)
https://www.reddit.com/r/programming/comments/1prdbkt/how_my_knowledge_in_other_subdomains_in_software/
submitted by /u/innatari (https://www.reddit.com/user/innatari)
[link] (https://thenukaovin.medium.com/how-mlops-turned-my-breadth-into-a-strength-68b03c25ceb6) [comments] (https://www.reddit.com/r/programming/comments/1prdbkt/how_my_knowledge_in_other_subdomains_in_software/)
GPU Accelerated Data Structures on Google Colab
https://www.reddit.com/r/programming/comments/1prdkhw/gpu_accelerated_data_structures_on_google_colab/
submitted by /u/DataBaeBee (https://www.reddit.com/user/DataBaeBee)
[link] (https://leetarxiv.substack.com/p/gpu-accelerated-data-structures-on) [comments] (https://www.reddit.com/r/programming/comments/1prdkhw/gpu_accelerated_data_structures_on_google_colab/)
https://www.reddit.com/r/programming/comments/1prdkhw/gpu_accelerated_data_structures_on_google_colab/
submitted by /u/DataBaeBee (https://www.reddit.com/user/DataBaeBee)
[link] (https://leetarxiv.substack.com/p/gpu-accelerated-data-structures-on) [comments] (https://www.reddit.com/r/programming/comments/1prdkhw/gpu_accelerated_data_structures_on_google_colab/)
[D] Awesome Production Machine Learning - A curated list of OSS libraries to deploy, monitor, version and scale your machine learning
https://www.reddit.com/r/programming/comments/1prdrb3/d_awesome_production_machine_learning_a_curated/
submitted by /u/axsauze (https://www.reddit.com/user/axsauze)
[link] (https://github.com/EthicalML/awesome-production-machine-learning/) [comments] (https://www.reddit.com/r/programming/comments/1prdrb3/d_awesome_production_machine_learning_a_curated/)
https://www.reddit.com/r/programming/comments/1prdrb3/d_awesome_production_machine_learning_a_curated/
submitted by /u/axsauze (https://www.reddit.com/user/axsauze)
[link] (https://github.com/EthicalML/awesome-production-machine-learning/) [comments] (https://www.reddit.com/r/programming/comments/1prdrb3/d_awesome_production_machine_learning_a_curated/)
Google's boomerang year: 20% of AI software engineers hired in 2025 were ex-employees
https://www.reddit.com/r/programming/comments/1prgwty/googles_boomerang_year_20_of_ai_software/
submitted by /u/washedFM (https://www.reddit.com/user/washedFM)
[link] (https://www.cnbc.com/2025/12/19/google-boomerang-year-20percent-ai-software-devs-hired-2025-ex-employees.html) [comments] (https://www.reddit.com/r/programming/comments/1prgwty/googles_boomerang_year_20_of_ai_software/)
https://www.reddit.com/r/programming/comments/1prgwty/googles_boomerang_year_20_of_ai_software/
submitted by /u/washedFM (https://www.reddit.com/user/washedFM)
[link] (https://www.cnbc.com/2025/12/19/google-boomerang-year-20percent-ai-software-devs-hired-2025-ex-employees.html) [comments] (https://www.reddit.com/r/programming/comments/1prgwty/googles_boomerang_year_20_of_ai_software/)
Tech Talk: Improving Window Resize Behavior | Electron
https://www.reddit.com/r/programming/comments/1prhpef/tech_talk_improving_window_resize_behavior/
submitted by /u/mitchchn (https://www.reddit.com/user/mitchchn)
[link] (https://www.electronjs.org/blog/tech-talk-window-resize-behavior) [comments] (https://www.reddit.com/r/programming/comments/1prhpef/tech_talk_improving_window_resize_behavior/)
https://www.reddit.com/r/programming/comments/1prhpef/tech_talk_improving_window_resize_behavior/
submitted by /u/mitchchn (https://www.reddit.com/user/mitchchn)
[link] (https://www.electronjs.org/blog/tech-talk-window-resize-behavior) [comments] (https://www.reddit.com/r/programming/comments/1prhpef/tech_talk_improving_window_resize_behavior/)
Modeling Large Codebases as Static Knowledge Graphs: Design Trade-offs
https://www.reddit.com/r/programming/comments/1priv8c/modeling_large_codebases_as_static_knowledge/
<!-- SC_OFF -->When working with large codebases, structural information such as module boundaries, dependency relationships, and hierarchy is often implicit and hard to reason about. One approach I’ve been exploring is representing codebases as static knowledge graphs, where files, modules, and symbols become explicit nodes, and architectural relationships are encoded as edges. This raises several design questions: - What information is best captured statically versus dynamically? - How detailed should graph nodes and edges be? - Where do static representations break down compared to runtime analysis? - How can such graphs remain maintainable as the code evolves? I’m interested in hearing from people who have worked on: - Static analysis tools - Code indexing systems - Large-scale refactoring or architecture tooling For context, I’ve been experimenting with these ideas in an open-source project, but I’m mainly interested in the broader design discussion. <!-- SC_ON --> submitted by /u/codevoygee (https://www.reddit.com/user/codevoygee)
[link] (https://github.com/yunusgungor/knowgraph) [comments] (https://www.reddit.com/r/programming/comments/1priv8c/modeling_large_codebases_as_static_knowledge/)
https://www.reddit.com/r/programming/comments/1priv8c/modeling_large_codebases_as_static_knowledge/
<!-- SC_OFF -->When working with large codebases, structural information such as module boundaries, dependency relationships, and hierarchy is often implicit and hard to reason about. One approach I’ve been exploring is representing codebases as static knowledge graphs, where files, modules, and symbols become explicit nodes, and architectural relationships are encoded as edges. This raises several design questions: - What information is best captured statically versus dynamically? - How detailed should graph nodes and edges be? - Where do static representations break down compared to runtime analysis? - How can such graphs remain maintainable as the code evolves? I’m interested in hearing from people who have worked on: - Static analysis tools - Code indexing systems - Large-scale refactoring or architecture tooling For context, I’ve been experimenting with these ideas in an open-source project, but I’m mainly interested in the broader design discussion. <!-- SC_ON --> submitted by /u/codevoygee (https://www.reddit.com/user/codevoygee)
[link] (https://github.com/yunusgungor/knowgraph) [comments] (https://www.reddit.com/r/programming/comments/1priv8c/modeling_large_codebases_as_static_knowledge/)
Sergey Brin, on whether students should pick Computer Science in 2026
https://www.reddit.com/r/programming/comments/1prlib8/sergey_brin_on_whether_students_should_pick/
submitted by /u/Frequent-Football984 (https://www.reddit.com/user/Frequent-Football984)
[link] (https://youtu.be/YhxROT5FglI?si=KlFxDK61rXqJ6grz) [comments] (https://www.reddit.com/r/programming/comments/1prlib8/sergey_brin_on_whether_students_should_pick/)
https://www.reddit.com/r/programming/comments/1prlib8/sergey_brin_on_whether_students_should_pick/
submitted by /u/Frequent-Football984 (https://www.reddit.com/user/Frequent-Football984)
[link] (https://youtu.be/YhxROT5FglI?si=KlFxDK61rXqJ6grz) [comments] (https://www.reddit.com/r/programming/comments/1prlib8/sergey_brin_on_whether_students_should_pick/)
What do people love about Rust?
https://www.reddit.com/r/programming/comments/1prm89i/what_do_people_love_about_rust/
submitted by /u/steveklabnik1 (https://www.reddit.com/user/steveklabnik1)
[link] (https://blog.rust-lang.org/2025/12/19/what-do-people-love-about-rust/) [comments] (https://www.reddit.com/r/programming/comments/1prm89i/what_do_people_love_about_rust/)
https://www.reddit.com/r/programming/comments/1prm89i/what_do_people_love_about_rust/
submitted by /u/steveklabnik1 (https://www.reddit.com/user/steveklabnik1)
[link] (https://blog.rust-lang.org/2025/12/19/what-do-people-love-about-rust/) [comments] (https://www.reddit.com/r/programming/comments/1prm89i/what_do_people_love_about_rust/)
Launching Remy
https://www.reddit.com/r/programming/comments/1pry78w/launching_remy/
<!-- SC_OFF -->Hey everyone — I’ve been working on a consumer app called Remy that’s meant to help in the moment when an alcohol craving hits. Most sobriety apps focus on tracking days or staying sober long-term. Remy is different — it’s designed for the day-to-day moments where you actually feel the urge to drink and need something right then to get through it. When a craving hits, you open the app and use: • Short grounding exercises (like urge surfing) • Simple games to distract and ride out the craving • An AI character (Remy) that gives personalized motivation based on your goals, stressors, and usual trigger times The idea is to reduce the intensity of the craving long enough for it to pass. It’s a mobile app (App Store launch soon — finishing up a few things), and I built it myself using Lovable and ElevenLabs for voice. I’m steadily adding more exercises and games, and I’m looking for early users / beta testers who are open to giving honest feedback — what works, what doesn’t, and what would make this actually useful. Let me know if you want to test it out and I will add you as a user. <!-- SC_ON --> submitted by /u/remy-the-fox (https://www.reddit.com/user/remy-the-fox)
[link] (https://remy-the-fox.lovable.app/) [comments] (https://www.reddit.com/r/programming/comments/1pry78w/launching_remy/)
https://www.reddit.com/r/programming/comments/1pry78w/launching_remy/
<!-- SC_OFF -->Hey everyone — I’ve been working on a consumer app called Remy that’s meant to help in the moment when an alcohol craving hits. Most sobriety apps focus on tracking days or staying sober long-term. Remy is different — it’s designed for the day-to-day moments where you actually feel the urge to drink and need something right then to get through it. When a craving hits, you open the app and use: • Short grounding exercises (like urge surfing) • Simple games to distract and ride out the craving • An AI character (Remy) that gives personalized motivation based on your goals, stressors, and usual trigger times The idea is to reduce the intensity of the craving long enough for it to pass. It’s a mobile app (App Store launch soon — finishing up a few things), and I built it myself using Lovable and ElevenLabs for voice. I’m steadily adding more exercises and games, and I’m looking for early users / beta testers who are open to giving honest feedback — what works, what doesn’t, and what would make this actually useful. Let me know if you want to test it out and I will add you as a user. <!-- SC_ON --> submitted by /u/remy-the-fox (https://www.reddit.com/user/remy-the-fox)
[link] (https://remy-the-fox.lovable.app/) [comments] (https://www.reddit.com/r/programming/comments/1pry78w/launching_remy/)