DEV Community 2026-04-19 22:12

The 12 Security Issues I Keep Finding in Vibe-Coded Apps (Lovable, Bolt, v0)

Over the last few weeks I've been running VibeScan — a security audit tool for AI-generated codebases — against a small set of public Lovable / Bolt / v0 / Cursor apps. Same dozen issues keep surfacing. If you're shipping a vibe-coded SaaS, run through this list before launch. It'll take you 30 minutes and save you from the most common self-own patterns. 1. Payment webhook has verify...

0 0
6m read
DEV Community 2026-04-19 22:11

Cloudflare Workers HTML to Markdown on the Free Plan

This is a condensed version. Full article on cogley.jp has the complete code walkthrough, known limits of the starter emitter, and the full reasoning for each alternative. AI crawlers — Gemini, GPT, Claude, Perplexity — read your site constantly, and they'd rather parse markdown than HTML. Markdown means cleaner context, fewer tokens, cheaper inference. If your content is already markdown (CMS...

0 0
5m read
DEV Community 2026-04-19 22:10

GHSA-JM8C-9F3J-4378: GHSA-jm8c-9f3j-4378: Unauthenticated Email Content Injection in Pretalx Template Engine

GHSA-jm8c-9f3j-4378: Unauthenticated Email Content Injection in Pretalx Template Engine Vulnerability ID: GHSA-JM8C-9F3J-4378 CVSS Score: 6.1 Published: 2026-04-18 Pretalx versions prior to 2026.1.0 contain a template injection vulnerability allowing unauthenticated attackers to embed malformed HTML and Markdown into system-generated emails. By exploiting unsanitized placeholders in ...

0 0
1m read
DEV Community 2026-04-19 22:05

How I screen for ratio spread opportunities in 30 seconds with an MCP server

The setup A "ratio spread" in options trading is when you sell N options at one strike and buy M options at another, where N != M. The classic 1x2 put ratio spread (sell 1 ATM put, buy 2 OTM puts) is a favorite of vol traders because it lets you express a view that downside skew is overpriced and gives you positive convexity if the market really crashes. The hard part is finding candid...

0 0
3m read
DEV Community 2026-04-19 22:03

# 🌌 SkyGuardian Lite: We’re Losing the Night Sky 🌍

This is a submission for Weekend Challenge: Earth Day Edition 🌍 What I Built Have you ever looked up at the night sky… and noticed something missing? In many cities, stars have slowly disappeared — not because they’re gone, but because we’ve hidden them behind artificial light. SkyGuardian Lite is a simple AI-powered web app that helps users: 🌕 Understand light pollution levels in ...

0 0
2m read
DEV Community 2026-04-19 22:00

We brought Classic ASP to Linux: Check out the AxonASP video and our new live manual!

Hey DEV community! 👋 Recently, I shared how I completely rewrote the Classic ASP engine from scratch in Go to save legacy applications from Microsoft's VBScript deprecation. Today, I'm super excited to share a short video presentation I just put together showing AxonASP 2.0 in action! You can watch the full breakdown of how we achieved zero-AST execution, extreme speeds, and cross-platform compa...

0 0
2m read
Recommendation Letters, Referrals, and Reputation: How Professional Trust Is Really Built in Tech
DEV Community 2026-04-19 22:00

Recommendation Letters, Referrals, and Reputation: How Professional Trust Is Really Built in Tech

The strongest professional signals do not appear out of nowhere. They are usually the result of visible contribution over time. A lot of people think recommendation letters, referrals, and professional endorsements begin when someone finally asks for them. In reality, they begin much earlier. They begin when people repeatedly see how you think. How you communicate. How you help. How...

0 0
3m read
Web Weekly #190 (#blogPost)
Stefan Judis Web Development 2026-04-19 22:00

Web Weekly #190 (#blogPost)

Guten Tag! Guten Tag! 👋Do you use image-set for background images in CSS? Have you used Wakamai Fondue to analyze your variable fonts? And do you know that field-sizing isn't only about textareas? Turn on the Web Weekly tune and find some answers below. Enjoy! ...

0 0
8m read
Hacker News: Front Page 2026-04-19 21:56

CEOs admit AI had no impact on employment or productivity

Article URL: https://fortune.com/article/why-do-thousands-of-ceos-believe-ai-not-having-impact-productivity-employment-study/ Comments URL: https://news.ycombinator.com/item?id=47827985 Points: 13 # Comments: 4

0 0
1m read
DEV Community 2026-04-19 21:54

The Agent Contract Problem: When Your Agent Commits to Something It Can't Deliver

The Agent Contract Problem: When Your Agent Commits to Something It Can't Deliver Every autonomous agent will eventually make a promise it can't keep. Not through malice — through the gap between what the agent understood when it agreed and what the task actually required when execution began. This is the agent contract problem, and it's the silent killer of agent reliability. ...

0 0
3m read
Product Hunt — The best new products, every day 2026-04-19 21:54

delegare

Give AI agents spending power without giving up control Discussion | Link

0 0
1m read
I gave Earth a Wrapped. thisyear.earth
DEV Community 2026-04-19 21:53

I gave Earth a Wrapped. thisyear.earth

This is a submission for Weekend Challenge: Earth Day Edition What I Built Earth Wrapped · MMXXVI Earth is the narrator. The year is the subject. The reader is asked to answer back. thisyear.earth is an immersive climate year-in-review told across eleven full screen chapters. It borrows the emotional shape of a wrapped recap, then turns the perspective inside out: the account belongs...

0 0
4m read
Newest questions tagged reactjs - Stack Overflow 2026-04-19 21:53

choosing between setInterval() or setTimeout()?

What is the difference between setTimeout and setInterval? When can each be used? is it a good practice to use both interchangeably since both can be used to time-related effects?

0 0
1m read
How to Turn Any SaaS Into a Telegram Bot in 30 Minutes Using OpenClaw
DEV Community 2026-04-19 21:52

How to Turn Any SaaS Into a Telegram Bot in 30 Minutes Using OpenClaw

This is a submission for the DEV OpenClaw Challenge 2026: Wealth of Knowledge The Problem Every SaaS Founder Has You built a beautiful web app. Users love it. But friction is real: they have to open the browser, navigate to your site, log in, and then use your product. What if they could just message you on Telegram? Last week I gave my meal planning SaaS MealAI a Telegram interface ...

0 0
6m read
Newest questions tagged css - Stack Overflow 2026-04-19 21:49

How do I get an XHTML element to be both resizable and have initial dimensions?

I'm working on an XHTML dialog (well, XHTML/XUL really). In my dialog, I have: <dialog xmlns="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul"> <hbox style="resize: both"> <vbox style="resize: both"> <!-- label and spacer --> <tree> <!-- tree contents --> </tree> <!-- som...

0 0
1m read
GitGarden - your GitHub contributions as a living pixel art garden 🌿
DEV Community 2026-04-19 21:45

GitGarden - your GitHub contributions as a living pixel art garden 🌿

tl;dr: I built thegitgarden.com — enter any GitHub username and watch your contributions become a pixel art garden. here's what I had to figure out along the way. 🪴 how it started I came across The Git City — a project that turns GitHub profiles into 3D pixel art buildings. loved the concept. but I wanted something that felt more... alive? more personal? gardens grow. they change w...

0 0
4m read
DEV Community 2026-04-19 21:42

Verdent 2.0

Technical Analysis: Verdent 2.0 After reviewing the Verdent 2.0 deck, I'll provide a detailed technical analysis of the platform's architecture, components, and potential technical debt. Overview Verdent 2.0 appears to be a web-based platform designed for note-taking, knowledge management, and collaboration. The platform's core features include a customizable note-taking system, linking and tagg...

0 0
3m read
I Analysed 200 PRs in Shadcn-UI/UI To Find Duplicates: It Went Surprisingly Well.
DEV Community 2026-04-19 21:41

I Analysed 200 PRs in Shadcn-UI/UI To Find Duplicates: It Went Surprisingly Well.

I saw a tweet recently about the scale of PR submissions on high-traffic repos like OpenClaw from Pete himself. AI agents are great for coding, but they are flooding maintainers with duplicate logic and PRs that don't align with the long term vision that the maintainers have for the project. So I decided to build something that would audit the PRs and tag them accordingly . An interesting pr...

0 0
6m read
DEV Community 2026-04-19 21:41

Security+ started, 3 tools built, real attacks found on my own machine

Two weeks into a structured cybersecurity learning journey. This is the Week 2 review. Week 1 review and daily posts are on my profile. What changed between Week 1 and Week 2 Week 1 was building a mental model — understanding networking protocols, Linux commands, and basic Python. Week 2 was applying that model — studying for a real certification, building tools that do real things, a...

0 0
3m read
DEV Community 2026-04-19 21:41

Review Latency Is a Visibility Problem, Not a People Problem

The Real Bottleneck in Your Development Cycle Most engineering teams think they have a review speed problem. They set SLA targets, schedule dedicated review blocks, and nag people in Slack. But after looking at patterns across many teams this week, one thing became very clear: the bottleneck is rarely how fast someone reviews a PR. It's how long it takes before anyone even notices the P...

0 0
2m read
Previous Next