直近1週間の更新
2/26 (木)

Integrate OAuth Login with CKEditor Real-Time Collaboration
CKEditor Ecosystem Blog
Integrate OAuth with CKEditor real-time collaboration. Log in via Google, Microsoft, GitHub and more - identity patterns, tokens, and access control.
2時間前

AI エージェントを通じてコードとキャンバスを接続するデザインツール Paper を試してみた
azukiazusa のテックブログ2
Paper は AI エージェントを通じてコードとキャンバスを双方向に接続するデザインツールで、AI にデザインの作成やコードへの変換を任せることができます。Paper の MCP サーバーのツールを組み合わせることでキャンバス上のノードの情報を取得したり、デザインを挿入・編集したりすることができます。この記事では実際に Paper を試して、コードからデザインへ、デザインからコードへの双方向のワークフローがどのように実現されているのかを紹介します。
2時間前

「AIと一緒に開発する」を本格始動して 1ヶ月の振り返り
9
カミナシ エンジニアブログ
「カミナシ レポート」の開発・運用をしている furuya です。最近我が家では成長してきた子どもたちのことを考えて寝室含めて部屋の配置換えを検討しており、そのパズルに頭を悩ませています。それはさておき今回は「カミナシ レポート」の開発において AI Agent を主軸にした開発スタイルを取り入れたお話です。 背景 近年の AI Agent の進化は目覚ましいですね。日々情報がアップデートされる中、カミナシのエンジニアリング組織としてもこの流れについていかなければならない、ということで各チームいろんなことにトライしており、組織的にもそれが推奨されています。もちろん、前提として以前から GitH…
3時間前

Bun v1.3.10
bun.com
Fixes 155 issues (addressing 642 👍). New native REPL, --compile --target=browser for self-contained HTML, TC39 standard ES decorators, Windows ARM64 support, barrel import optimization, and a faster event loop. structuredClone up to 25x faster for arrays, Buffer.slice() 1.8x faster, path.parse() up to 7x faster, fewer closures in bundled output, and upgraded JavaScriptCore with 168x faster deep rope string slicing. Fixes Python asyncio-based MCP servers breaking with Bun.spawn(), plus numerous ...
7時間前

Stage 3 Decorators のことを思い出す時に読む記事
Object.create(null)
デコレータの Proposal が Stage 3 になってから約 4 年, TypeScript がサポートしてから約 3 年経っているにも関わらず, 未だに普段使いしなさすぎて全く使い方を覚えられていません. ということで TypeScript での使い方を中心に覚える / 忘れたら読んで思い出すために記事を書いておきます. なお具体的なユースケースについてはほぼ触れませんので悪しからず. それについてはまたの機会に... 仕様の本体 = ECMAScript への Proposal は以下. tc39/proposal-decorators: Decorators for ES6 cla…
8時間前

Google API Keys Weren't Secrets. But then Gemini Changed the Rules. Simon Willison's Weblog
<p><strong><a href="https://trufflesecurity.com/blog/google-api-keys-werent-secrets-but-then-gemini-changed-the-rules">Google API Keys Weren&#x27;t Secrets. But then Gemini Changed the Rules.</a></strong></p>Yikes! It turns out Gemini and Google Maps (and other services) share the same API keys... but Google Maps API keys are designed to be public, since they are embedded directly in web pages. Gemini API keys can be used to access private files and make ...
9時間前

STORES から1名が福岡Rubyist会議05で登壇&スポンサーとして協賛します
STORES Product Blog
こんにちは、技術広報のえんじぇるです。 STORES は、2026年2月28日に福岡で開催される福岡Rubyist会議05にスポンサーとして協賛します! この記事では、当日登壇するメンバーとブースについて紹介します。 登壇者の紹介 STORES からは、公募セッションとスポンサーセッションの2つの枠でメンバーが登壇します! セッション登壇 スピーカー: Shia 時間: 11:10-11:25 タイトル: 型を書かないRuby開発への挑戦 「型を書かなくても十分有用な型情報を得られる」を目標に開発中の LSP「type-guessr」について話します。 完全さを諦めることでいい感じの体験を目指…
9時間前

タップルのインフラリソースにおける最適化手法の設計
CyberAgent Developers Blog | サイバーエージェント デベロッパーズブログ
はじめに こんにちは!愛知工業大学大学院修士1年の杉原充稀です。 202 ...
9時間前

Quoting Benedict Evans Simon Willison's Weblog
<blockquote cite="https://www.ben-evans.com/benedictevans/2026/2/19/how-will-openai-compete-nkg2x"><p>If people are only using this a couple of times a week at most, and can’t think of anything to do with it on the average day, it hasn’t changed their life. OpenAI itself admits the problem, talking about a ‘capability gap’ between what the models can do and what people do with them, which seems to me like a way to avoid saying that you don’t have clear product-market fit. </p>...
9時間前

npm Introduces minimumReleaseAge and Bulk OIDC Configuration
Socket
npm rolls out a package release cooldown and scalable trusted publishing updates as ecosystem adoption of install safeguards grows.
10時間前

AI活用スキル向上ワークショップ「Orchestration Development Workshop」記事一覧 LINEヤフー Tech Blog (LY Corporation Tech Blog
LINEヤフーでは、開発業務に関わる全てのエンジニアを対象に、AI活用スキルを実践的に高めるワークショップ「Orchestration Development Workshop」を開始しました。この取...
11時間前

Upgrading from Rails 7.2 to Rails 8 - The Latest and Greatest
Saeloun Blog
Rails 8 (released November 2024) is the smoothest upgrade yet.The focus?Simplicity and performance - removing external dependencies while boosting speed.Solid Queue, Solid Cache, and Solid Cable eliminate Redis for many use cases.Built-in authentication removes the need for Devise.Ruby 3.4 (latest stable) with continued YJIT improvements delivers excellent performance.Note: This is Part 5 of our Rails Upgrade Series. Read Part 1: Planning Rails Upgrade for the overall strategy.Before We StartExp
13時間前

Nx Joins the Linux Foundation and the Agentic AI Foundation
Nx Blog
Nx joins the Linux Foundation and Agentic AI Foundation (AAIF) to help shape open standards for AI-powered development. Learn how the intersection of agentic AI and build tooling will transform software development workflows, and why Nx is committing to open collaboration with Anthropic, AWS, Google, and Microsoft to build the future of autonomous AI agents in developer tooling.
15時間前

An Exploit … in CSS?!
CSS-Tricks
Read an explanation of the recent CVE-2026-2441 vulnerability that was labeled a "CSS exploit" that "allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page."An Exploit … in CSS?! originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
16時間前

tldraw issue: Move tests to closed source repo Simon Willison's Weblog
<p><strong><a href="https://github.com/tldraw/tldraw/issues/8082">tldraw issue: Move tests to closed source repo</a></strong></p>It's become very apparent over the past few months that a comprehensive test suite is enough to build a completely fresh implementation of any open source library from scratch, potentially in a different language.</p><p>This has worrying implications for open source projects with commercial business models. Here's an exa...
16時間前

Claude Code Remote Control Simon Willison's Weblog
<p><strong><a href="https://code.claude.com/docs/en/remote-control">Claude Code Remote Control</a></strong></p>New Claude Code feature dropped yesterday: you can now run a "remote control" session on your computer and then use the Claude Code for web interfaces (on web, iOS and native desktop app) to send prompts to that session.</p><p>It's a little bit janky right now. Initially when I tried it I got the error "Remote Control is not enabled for y...
20時間前

I vibe coded my dream macOS presentation app Simon Willison's Weblog
<p>I gave a talk this weekend at Social Science FOO Camp in Mountain View. The event was a classic unconference format where anyone could present a talk without needing to propose it in advance. I grabbed a slot for a talk I titled "The State of LLMs, February 2026 edition", subtitle "It's all changed since November!". I vibe coded a custom macOS app for the presentation the night before.</p><p><img src="https://static.simonwillison.net/static/2026/state-of-llms.jpg" alt="A...
20時間前

npm package 実装用のテンプレートを更新した
mizdra's blog
「npm-package-template」という、id:mizdra が爆速で npm package を実装するための開発テンプレートがある。以前ブログで紹介した。 github.com www.mizdra.net 毎年ちょっとした変更を加えているのだけど、今年は色々な事情があって大きな変更を加えた。高速な formatter/linter が登場したり、npmjs.com へのサプライチェーン攻撃が流行ったり、Coding Agent が普及したり... 時代が変化してるので、それに合わせたテンプレートに変えてみた。 Update 2026/02 (Part 1) by mizdra …
20時間前

Working with Legacy Code
Frontend Masters Boost RSS Feed
From Nicholas C. Zakas’s regularly interesting newsletter: The best way to work with legacy code is to approach it patiently—understand small parts, write tests, and document what you learn. My favorite line about legacy code, which I’ve probably shared too much, is when David Khourshid called it “Legendary Code”. Legacy code feels a smidge mean […]
1日前
2/25 (水)

A Complete Guide to Bookmarklets
CSS-Tricks
Browsers don't just let you bookmark web pages. You can also bookmark JavaScript, allowing you to do so much more than merely save pages.A Complete Guide to Bookmarklets originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
1日前

What’s New in CKEditor’s Converters: Introducing Export to PDF v2 and More
CKEditor Ecosystem Blog
Discover Export to PDF v2 with mirror margins, metadata, password protection, and digital signatures. Plus new footnote support for Word converters.
1日前

How OpenEvidence built a healthcare AI that physicians actually trust
Vercel News
Andy Yoon was scrolling through Slack when he saw the message: OpenEvidence had gone viral on TikTok.Not "gaining traction.” viral, reaching around two million views in less than a week. ActuallyThis is usually when you rally the troops, spin up emergency capacity, and start making phone calls you really didn't want to make.Andy, Lead Frontend Engineer, did none of those things.Instead, he watched the numbers climb. He checked the logs—everything green. Response times: still fast. Error rates: s
1日前

Activity log now tracks 100% of team and project changes
Vercel News
The now captures every change made to your team and project settings, giving you complete visibility into who changed what and when.activity logPreviously, some settings changes went untracked. With 88 new events added, activity log coverage is now 100%, so no action goes unrecorded. or learn more about the .Try it outactivity logRead more
1日前

The Index: Issue #167
Piccalilli - Everything
Before we get into the Good Links™, allow me to share our brand new homepage with you. I'd love it if you checked it out!Chip awayA really good read about an infamous design pattern and how to be more deliberate in their pattern choices.Blogs are backA great new RSS reader and discovery service that helps you to find more writing, away from the algorithms and timelines.Everything you never wanted to know about visually-hiddenExtremely deep dive here with some interesting and simpler solutions to
1日前

プラットフォームごとの Chat ボットの実装を抽象化する Chat SDK
azukiazusa のテックブログ2
Chat SDK は TypeScript で記述されたライブラリで、1 つのコードベースで複数のチャットプラットフォームに対応するチャットボットを開発できるようになります。イベント型アーキテクチャを採用しており、メンション, メッセージ, リアクション, スラッシュコマンドなどのイベントに型安全なハンドラーを定義できます。この記事では実際に Chat SDK を使用して、Slack 向けのチャットボットを実装する方法を紹介します。
1日前

Deno 2.7: Temporal API, Windows ARM, and npm overrides
Deno
Deno 2.7 stabilizes the Temporal API, adds Windows on ARM builds, npm overrides in package.json, brotli compression streams, self-extracting compiled binaries, deno create, and dozens of Node.js compatibility improvements.
1日前

What's New in WebGPU (Chrome 146)
developer.chrome.com: Blog
Support WebGPU compatibility mode on OpenGL ES 3.1 and transient attachments.
1日前

Quoting Kellan Elliott-McCrea Simon Willison's Weblog
<blockquote cite="https://laughingmeme.org/2026/02/09/code-has-always-been-the-easy-part.html"><p>It’s also reasonable for people who entered technology in the last couple of decades because it was good job, or because they enjoyed coding to look at this moment with a real feeling of loss. That feeling of loss though can be hard to understand emotionally for people my age who entered tech because we were addicted to feeling of agency it gave us. The web was objectively awful as a te...
1日前

同時接続数30万超のチャットサービスのメッセージ配信基盤をRedis Pub/SubからRedis Streamsにした話 LINEヤフー Tech Blog (LY Corporation Tech Blog
この記事は、合併前の旧ブログに掲載していた記事(初出:2023年9月5日)を、現在のブログへ移管したものです。現時点の情報に合わせ、表記やリンクの調整を行っています。Overview30万を超える同時...
1日前

3日間で技術書を書き上げる - 執筆ハッカソンイベント「Bookathon」 協賛レポート LINEヤフー Tech Blog (LY Corporation Tech Blog
こんにちは、Dev Content DivisionのDiv Leadをしているmochikoです。LINEヤフー株式会社で開発者向けのドキュメントを書くテクニカルライターとして働く傍ら、個人としても...
1日前

Linear walkthroughs Simon Willison's Weblog
<p><em><a href="https://simonwillison.net/guides/agentic-engineering-patterns/">Agentic Engineering Patterns</a> &gt;</em></p> <p>Sometimes it's useful to have a coding agent give you a structured walkthrough of a codebase. </p><p>Maybe it's existing code you need to get up to speed on, maybe it's your own code that you've forgotten the details of, or maybe you vibe coded the whole thing and need to understand how it actually works.</...
2日前

Why now is the moment to join 1Password Go-To-Market
Blog on 1Password Blog
When you build a great company, a few things happen: customers trust you, they stay with you, and they bring you along as they grow. From there, revenue grows, relationships deepen, and you end up with something you can be proud of. That’s the lens I’m bringing into 2026 at 1Password.The opportunity in front of us is bigger than ever. The companies shaping our industries and culture are logging in with 1Password, and they’re trusting us with their most important business interactions. That level
2日前

Life's too short to hand-write API types: OpenAPI-driven React
Evil Martians
Transform your React development with contract-first APIs. Generate TypeScript types, build type-safe clients, and develop with mocks while backend implements—no more waiting, no more integration chaos.
2日前

Top 5 NextAuth alternatives for secure authentication in 2026
WorkOS Blog
Enterprise authentication solutions for Next.js apps outgrowing NextAuth.
2日前

Amebaブログで取り組んだ、DynamoDBからMySQLへのストレージ移行の話
CyberAgent Developers Blog | サイバーエージェント デベロッパーズブログ
はじめに こんにちは、26卒内定者でバックエンドエンジニアの相馬大和です! 本記事では、内定者バイト ...
2日前

A Monorepo Is NOT a Monolith
Nx Blog
Common objections to monorepos debunked: they are not monoliths, they scale, and they work great with AI.
2日前

Risky Biz Podcast: Open Source Risk Is Compounding as AI Agents Write 90% of New Code
Socket
AI agents are writing more code than ever, and that's creating new supply chain risks. Feross joins the Risky Business Podcast to break down what that means for open source security.
2日前

How we rebuilt Next.js with AI in one week
The Cloudflare Blog
One engineer used AI to rebuild Next.js on Vite in a week. vinext builds up to 4x faster, produces 57% smaller bundles, and deploys to Cloudflare Workers with a single command.
2日前

go-size-analyzer Simon Willison's Weblog
<p><strong><a href="https://github.com/Zxilly/go-size-analyzer">go-size-analyzer</a></strong></p>The Go ecosystem is <em>really</em> good at tooling. I just learned about this tool for analyzing the size of Go binaries using a pleasing treemap view of their bundled dependencies.</p><p>You can install and run the tool locally, but it's also compiled to WebAssembly and hosted at <a href="https://gsa.zxilly.dev/">gsa.zxilly.dev</...
2日前

Multi-agent workflows often fail. Here’s how to engineer ones that don’t.
The GitHub Blog
Most multi-agent workflow failures come down to missing structure, not model capability. Learn the three engineering patterns that make agent systems reliable.The post Multi-agent workflows often fail. Here’s how to engineer ones that don’t. appeared first on The GitHub Blog.
2日前
2/24 (火)

How I Setup Production-Grade Deployment for My (Somewhat) Vibe-Coded App
Frontend Masters Boost RSS Feed
Some solid advice from a couple of Frontend Masters courses made for a fast, secure, and ready to scale deployment system.
2日前

Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 Mozilla Hacks – the Web developer blog
Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted HTML before inserting it into the DOM. Firefox 148 is the first browser to ship this standardized security enhancing API, advancing a safer web for everyone. We […]The post Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 appeared first on Mozilla Hacks - the Web developer blog.
2日前

Security boundaries in agentic architectures
Vercel News
Most agents today run generated code with full access to your secrets.As more agents adopt coding agent patterns, where they read filesystems, run shell commands, and generate code, they're becoming multi-component systems that each need a different level of trust.While most teams run all of these components in a single security context, because that's how the default tooling works, we recommend thinking about these security boundaries differently.Below we walk through:More agents are adopting t
2日前

Python Vercel Functions bundle size limit increased to 500MB
Vercel News
The for using the Python runtime is now 500MB, increasing the maximum uncompressed deployment bundle size from 250MB.bundle size limitVercel FunctionsLearn more in the , or deploy or on Vercel to get started.functions limitations documentationFastAPIFlaskRead more
2日前

GPT 5.3 Codex is now on AI Gateway
Vercel News
GPT 5.3 Codex is now available on AI Gateway. GPT 5.3 Codex brings together the coding strengths of GPT-5.2-Codex and the reasoning depth of GPT-5.2 in a single model that's 25% faster and more token-efficient.Built for long-running agentic work, the model handles research, tool use, and multi-step execution across the full software lifecycle, from debugging and deployment to product documents and data analysis. Additionally, you can steer it mid-task without losing context. For web development,
2日前

Slack Agent Skill simplifies building Slack agents with coding assistants
Vercel News
is now available, enabling developers to build and deploy Slack agents in a single session with their coding agent of choice.The Slack Agent SkillThe skill handles the complexity of OAuth configuration, webhook handlers, event subscriptions, and deployment so you can focus on what your agent should do rather than on infrastructure setup.The wizard walks through five stages:Install the skill and run the wizard by invoking it in your coding agent (for example, in Claude Code)./slack-agent newTry t
2日前

First run the tests Simon Willison's Weblog
<p><em><a href="https://simonwillison.net/guides/agentic-engineering-patterns/">Agentic Engineering Patterns</a> &gt;</em></p> <p>Automated tests are no longer optional when working with coding agents.</p><p>The old excuses for not writing them - that they're time consuming and expensive to constantly rewrite while a codebase is rapidly evolving - no longer hold when an agent can knock them into shape in just a few minutes.</p><...
2日前

A 2026 Piccalilli homepage redesign
Piccalilli - Everything
Last year, we invested lots of time, working out how this publication was being perceived, via a couple of surveys and one-on-one interviews with our readers. We learned a hell of a lot, but the main thing that stuck out was that people were confused about what we're all about. Are we a blog, are we a publication? Turns out not many know, which is not ideal 😅Well, we've aimed to address and highlight all of that in a homepage redesign that we've just launched.As you can see, we're not messing a...
2日前

How Can AI Help Optimize Which Tests to Run in CI/CD?
Semaphore
As projects grow, test suites grow with them. What starts as a 2-minute CI run becomes 15 minutes. Then 30. Eventually, developers wait longer for feedback than they spend writing code. The problem isn’t too many tests. The problem is running all tests for every change. This is where AI-assisted test selection can help. Instead […]The post How Can AI Help Optimize Which Tests to Run in CI/CD? appeared first on Semaphore.
2日前

テキストサイズの拡大設定の問題と解決策
azukiazusa のテックブログ2
WCAG 2.2 では、ユーザーが画像拡大ソフトや支援技術を使用せずに、200% までテキストを拡大してもコンテンツが正しく表示されることを要求しています。しかし、テキストサイズの拡大に関しては、ブラウザや OS の設定を尊重せず、ユーザーがテキストサイズを拡大してもコンテンツが拡大されないという問題が長年存在していました。この記事では、この問題の原因と解決策について解説します。
2日前

2026年3月の技術系イベント予定 LINEヤフー Tech Blog (LY Corporation Tech Blog
LINEヤフー株式会社では、技術に関するイベントや勉強会の主催・協賛などを行っています。最新情報は各リンク先でご確認ください。タイミングによっては、申し込み開始前や既に満席となっていることがあります。...
2日前

[MySQL Workbench] VISUAL EXPLAIN でインデックスの挙動を確認する LINEヤフー Tech Blog (LY Corporation Tech Blog
この記事は、合併前の旧ブログに掲載していた記事(初出:2018年8月20日)を、現在のブログへ移管したものです。現時点の情報に合わせ、表記やリンクの調整を行っています。開発3センターでサーバサイドの開...
2日前

【お蔵入り】ライドシェアドライバーアプリのSwiftUI作品集!
newmo 技術ブログ
newmoでソフトウェアエンジニアをしているはるふ(@_ha1f)です。 今はAI配車チームにいますが、昨年の今頃は、ライドシェアのドライバー向けのiOSアプリを開発しておりました。 ライドシェアドライバーアプリは、ドライバーが乗務を開始して、配車依頼を受けて、お客さんを迎えに行って送り届ける。そのフローを支えるアプリです。 主としてTCA(The Composable Architecture)とSwiftUIで構築し、Google Maps Navigation SDKでリアルタイムのナビゲーションを行っていました。 タクシーの車載用のアプリも並行して作っており、バックエンドは多くの部分を…
3日前

Identity and Accountability in the Age of AI Agents
Blog on 1Password Blog
AI agents have crossed the line from assisting humans to acting on their behalf. In production environments, that shift changes the security model.Security leaders say that the main challenge isn’t getting an agent to do something useful. It’s knowing, at runtime, what actions are permitted, which identity it’s operating under, and how to reconstruct what happened afterward. I recently contributed to the 2026: The End of Vibe Adoptionwhitepaper with researchers from Stanford’s Trustworthy AI Res
3日前

How 1Password secures agent architectures
Blog on 1Password Blog
Since 1Password began, we have built security into the places where work actually happens. Security is not treated as an overlay or a separate workflow, we build directly into the browser, command lines, developer tools, and IDEs, where decisions are made and actions take place. We believe that if you want to improve security outcomes, you build where the work happens, making the secure path the simplest one. That design philosophy is even more critical in the age of AI agents.Agent architecture
3日前

The React Foundation: A New Home for React Hosted by the Linux Foundation
React Blog
The React Foundation has officially launched, hosted by the Linux Foundation.
3日前

React Native Comes to Meta Quest
React Native Blog
React Native has always focused on helping developers reuse knowledge across platforms. What started with Android and iOS has steadily expanded to Apple TV, Windows, macOS, and even the web with react-strict-dom. In 2021, the Many Platform Vision post outlined a future where React Native could adapt to new devices and form factors without fragmenting the ecosystem.
3日前

The best authorization platforms for managing AI agent permissions in 2026
WorkOS Blog
The top authorization platforms for controlling AI agent access to your application's resources.
3日前

The Future of Self-Paced Online Education
Tony Alicea
The Future of Self-Paced Online EducationA lot of words have been dedicated to how LLMs are changing the landscape of software development. But there's another arena that has been massively impacted by the rise of AI and deserves more discussion: the self-paced online education industry.Thousands upon thousands of developers are self-taught, and that education, for many, included self-paced video courses. The student appetite for inexpensive (compared to universities) video course education powe
3日前

Ladybird adopts Rust, with help from AI Simon Willison's Weblog
<p><strong><a href="https://ladybird.org/posts/adopting-rust/">Ladybird adopts Rust, with help from AI</a></strong></p>Really interesting case-study from Andreas Kling on advanced, sophisticated use of coding agents for ambitious coding projects with critical code. After a few years hoping Swift's platform support outside of the Apple ecosystem would mature they switched tracks to Rust their memory-safe language of choice, starting with an AI-assisted port of...
3日前

Writing about Agentic Engineering Patterns Simon Willison's Weblog
<p>I've started a new project to collect and document <strong><a href="https://simonwillison.net/guides/agentic-engineering-patterns/">Agentic Engineering Patterns</a></strong> - coding practices and patterns to help get the best results out of this new era of coding agent development we find ourselves entering.</p><p>I'm using <strong>Agentic Engineering</strong> to refer to building software using coding agents - tools like Claude Code and...
3日前

Four Malicious NuGet Packages Target ASP.NET Developers With JIT Hooking and Credential Exfiltration
Socket
Socket uncovered four malicious NuGet packages targeting ASP.NET apps, using a typosquatted dropper and localhost proxy to steal Identity data and backdoor apps.
3日前

Writing code is cheap now Simon Willison's Weblog
<p><em><a href="https://simonwillison.net/guides/agentic-engineering-patterns/">Agentic Engineering Patterns</a> &gt;</em></p> <p>The biggest challenge in adopting agentic engineering practices is getting comfortable with the consequences of the fact that <em>writing code is cheap now</em>.</p><p>Code has always been expensive. Producing a few hundred lines of clean, tested code takes most software developers a full day or mo...
3日前

Quoting Paul Ford Simon Willison's Weblog
<blockquote cite="https://ftrain.com/leading-thoughts"><p>The paper asked me to explain vibe coding, and I did so, because I think something big is coming there, and I'm deep in, and I worry that normal people are not able to see it and I want them to be prepared. But people can't just read something and hate you quietly; they can't see that you have provided them with a utility or a warning; they need their screech. You are distributed to millions of people, and become the local pr...
3日前

Virtual Scroll-Driven 3D Scenes
Frontend Masters Boost RSS Feed
You can capture scrolling events and do your own work with the information in them. It can do cool things, but you've got work to do.
3日前

Build a dinosaur runner game with Deno, pt. 6
Deno
Add structured logging, distributed traces, and game analytics to your Deno game and learn how to use Deno Deploy's built-in logs, traces, and metrics dashboards.
3日前
2/23 (月)

Loading Smarter: SVG vs. Raster Loaders in Modern Web Design
CSS-Tricks
Let’s get nuanced in this article and discuss the capabilities of both SVG and raster imaged so that you can make informed decisions in your own work.Loading Smarter: SVG vs. Raster Loaders in Modern Web Design originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
3日前

Reply guy Simon Willison's Weblog
<p>The latest scourge of Twitter is AI bots that reply to your tweets with generic, banal commentary slop, often accompanied by a question to "drive engagement" and waste as much of your time as possible.</p><p>I just <a href="https://twitter.com/simonw/status/2025918174894673986">found out</a> that the category name for this genre of software is <strong>reply guy</strong> tools. Amazing.</p> <p>Tags: <a href="https://simonwillison.net/ta...
3日前

Quoting Summer Yue Simon Willison's Weblog
<blockquote cite="https://twitter.com/summeryue0/status/2025836517831405980"><p>Nothing humbles you like telling your OpenClaw “confirm before acting” and watching it speedrun deleting your inbox. I couldn’t stop it from my phone. I had to RUN to my Mac mini like I was defusing a bomb.</p><p><img alt="Screenshot of a WhatsApp or similar messaging conversation showing a user repeatedly trying to stop an AI agent (appearing to be &quot;OpenClaw&quot;) that is au...
3日前

Introducing npm i chat – One codebase, every chat platform
Vercel News
Building chatbots across multiple platforms traditionally requires maintaining separate codebases and handling individual platform APIs.Today, we're open sourcing the new in public beta. It's a unified TypeScript library that lets teams write bot logic once and deploy it to Slack, Microsoft Teams, Google Chat, Discord, GitHub, and Linear.Chat SDKThe event-driven architecture includes type-safe handlers for mentions, messages, reactions, button clicks, and slash commands. Teams can build user int
3日前

Safely inject credentials in HTTP headers with Vercel Sandbox
Vercel News
can now automatically inject HTTP headers into outbound requests from sandboxed code. This keeps API keys and tokens safely outside the sandbox VM boundary, so apps running inside the sandbox can call authenticated services without ever accessing the credentials.Header injection is configured as part of the network policy using . When the sandbox makes an HTTPS request to a matching domain, the firewall adds or replaces the specified headers before forwarding the request.Vercel SandboxtransformT
3日前

Support for now.json will be removed on March 31, 2026
Vercel News
Support for the legacy config file will be officially removed on . Migrate existing files by renaming them to no other content changes are required.now.jsonnow.jsonvercel.json,March 31st, 2026For more advanced use cases, try for programmatic project configuration.vercel.tsLearn more about configuring projects with in the .vercel.jsondocumentationRead more
3日前

Sprites on the Web
Josh Comeau's blog
In game development, it’s common to use spritesheets for animation, but this technique isn’t as widely used on the web. Which is a shame, because we can do some pretty cool stuff with sprites! In this post, we’ll share the niche CSS function you can use to leverage this technique, and explore some of the potential use cases.
3日前

A Designer’s Guide To Eco-Friendly Interfaces
Articles on Smashing Magazine — For Web Designers And Developers
Every high-resolution hero image, autoplay video, and complex JavaScript animation carries a cost. Sustainable UX challenges the era of “unlimited pixels” and reframes performance as responsibility. In 2026, truly sophisticated design is defined not by how much it adds, but by how thoughtfully it reduces its footprint.
3日前
Red/green TDD Simon Willison's Weblog
<p><em><a href="https://simonwillison.net/guides/agentic-engineering-patterns/">Agentic Engineering Patterns</a> &gt;</em></p> <p>"<strong>Use red/green TDD</strong>" is a pleasingly succinct way to get better results out of a coding agent.</p><p>TDD stands for Test Driven Development. It's a programming style where you ensure every piece of code you write is accompanied by automated tests that demonstrate the code works.<...
3日前

Cloudflare One is the first SASE offering modern post-quantum encryption across the full platform
The Cloudflare Blog
We’ve upgraded Cloudflare One to support post-quantum encryption by implementing the latest IETF drafts for hybrid ML-KEM into our Cloudflare IPsec product. This extends post-quantum encryption across all major Cloudflare One on-ramps and off-ramps.
3日前

Claude Code デスクトップで Worktree を作成するとき .worktreeinclude で .gitignore で除外されているファイルを含める
104
azukiazusa のテックブログ2
Git Worktree を作成するとき、.gitignore に指定している .env ファイルなどがコピーされないという問題があります。この問題を解決するために Claude Code のデスクトップバージョンでは .worktreeinclude で .gitignore で除外されているファイルを含めることができます。
3日前

1Password becomes the first global partner to transact through Express Private Offers in AWS Marketplace
Blog on 1Password Blog
1Password has achieved a significant milestone in our collaboration with Amazon Web Services (AWS): We are officially the first partner globally to successfully transact through express private offers on AWS Marketplace, a new AI-driven capability that automates personalized pricing, allowing teams to bypass manual negotiations and receive a tailored quote in minutes.Coming on the heels of 1Password being named the “2025 AWS Canada Rising Star Technology Partner of the Year,” this global-first i
4日前

ESLint v10.0.2 released
1
ESLint Blog
HighlightsThis release updates the ajv dependency to v6.14.0 which includes the fix for a recently published security issue.Bug Fixes2b72361 fix: update ajv to 6.14.0 to address security vulnerabilities (#20537) (루밀LuMir)Documentation13eeedb docs: link rule type explanation to CLI option --fix-type (#20548) (Mike McCready)98cbf6b docs: update migration guide per Program range change (#20534) (Huáng Jùnliàng)61a2405 docs: add missing semicolon in vars-on-top rule example (#20533) (Abilash)Chores9
4日前

Ruby on Whales: Dockerizing Ruby and Rails development
20
Evil Martians
An exhaustive and documented Docker configuration for developing Ruby and Rails applications
4日前

9 Advanced PostgreSQL Features I Wish I Knew Sooner
Marmelab Blog
GENERATED columns, EXCLUDE constraints, DISTINCT ON, Foreign Data Wrappers... PostgreSQL has powerful features you might not know about. Here are my favorites.
4日前

Creating Query Abstractions
2
TkDodo's blog
Building reusable abstractions on top of libraries that rely on type inference can be deceptively difficult, which is why we need better ways to build those abstractions ...
4日前

How to add Sign in with Vercel to your app using WorkOS
WorkOS Blog
Add a 'Continue with Vercel' button to your Next.js app in minutes using WorkOS AuthKit.
4日前

The Claude C Compiler: What It Reveals About the Future of Software Simon Willison's Weblog
<p><strong><a href="https://www.modular.com/blog/the-claude-c-compiler-what-it-reveals-about-the-future-of-software">The Claude C Compiler: What It Reveals About the Future of Software</a></strong></p>On February 5th Anthropic's Nicholas Carlini wrote about a project to use <a href="https://www.anthropic.com/engineering/building-c-compiler">parallel Claudes to build a C compiler</a> on top of the brand new Opus 4.6</p><p>Chris Lattner ...
4日前

London Stock Exchange: Raspberry Pi Holdings plc Simon Willison's Weblog
<p><strong><a href="https://www.londonstockexchange.com/stock/RPI/raspberry-pi-holdings-plc/company-page">London Stock Exchange: Raspberry Pi Holdings plc</a></strong></p>Striking graph illustrating stock in the UK Raspberry Pi holding company spiking on Tuesday:</p><p><img alt="Stock price line chart for RASPBERRY PI showing a 3-month daily view from 24 Nov to 16 Feb. The price trends downward from around 325 to a low near 260, then sharply sp...
4日前

How I think about Codex Simon Willison's Weblog
<p><strong><a href="https://www.linkedin.com/pulse/how-i-think-codex-gabriel-chua-ukhic">How I think about Codex</a></strong></p>Gabriel Chua (Developer Experience Engineer for APAC at OpenAI) provides his take on the confusing terminology behind the term "Codex", which can refer to a bunch of of different things within the OpenAI ecosystem:</p><blockquote><p>In plain terms, Codex is OpenAI’s software engineering agent, available through mul...
4日前
2/22 (日)

design-loop: Claude Codeを使ったブラウザベースのビジュアル編集ツール
Web Scratch
Claude Codeを使ったブラウザベースのビジュアル編集ツールとして、design-loopを作りました。GitHub: https://github.com/azu/design-loop左パネルに開発中のサイトのプレビュー、右パネルにClaude Codeのターミナルが表示されます。プレビュー上の要素をクリックすると、その要素のコンポーネント情報やスタイルがClaude Codeに渡されます。インストールcurl -fsSL https://raw.githubusercontent.com/azu/design-loop/main/install.sh | sh使い方ソースコードがあるディレクトリで、開発サーバーがすでに起動している場合は、--urlでURLを指定するだけで起動できます。design-loop --url http://localhost:3000--commandオプションを使うと、開発サーバーの起動もdesign-loopに任せられます。開発サーバーが起動してからプロキシが自動的に接続します。design-loop --url http://localho
5日前
2/21 (土)

Vite でお手製 Hot Module Replacement
Object.create(null)
先日の新春 LT 大会で, PixiJS と Vite を使って VJ するという話をしました. こういうやつです 実装や資料は以下のリポジトリにまとまっています. が操作説明などは一切用意していないのでご了承ください (大体キーボード操作で, keydown イベントのハンドラを見るとなんらかわかると思います). 以下は発表中で触れた Hot Module Replacement の実装についての, もう少し詳しい解説です. Hot Reload と Hot Module Replacement ご存知の通り Vite には元々 Hot Reload (あるいは Live Reload) の…
5日前

デスクトップ Claude Code の Preview 機能で UI を直接確認する
azukiazusa のテックブログ2
Claude Code のデスクトップアプリに新しい Preview 機能がリリースされました。これを使用すると、コードから起動したアプリケーションの UI を直接確認しながら、同時にログやコードも確認して問題を解決できます。この記事では Preview 機能の使い方を紹介します。
5日前

Quoting Thibault Sottiaux Simon Willison's Weblog
<blockquote cite="https://twitter.com/thsottiaux/status/2024947946849186064"><p>We’ve made GPT-5.3-Codex-Spark about 30% faster. It is now serving at over 1200 tokens per second.</p></blockquote><p class="cite">&mdash; <a href="https://twitter.com/thsottiaux/status/2024947946849186064">Thibault Sottiaux</a>, OpenAI</p> <p>Tags: <a href="https://simonwillison.net/tags/openai">openai</a>, <a href="https://simonwillison.net/t...
5日前

Andrej Karpathy talks about "Claws" Simon Willison's Weblog
<p><strong><a href="https://twitter.com/karpathy/status/2024987174077432126">Andrej Karpathy talks about &quot;Claws&quot;</a></strong></p>Andrej Karpathy tweeted a mini-essay about buying a Mac Mini ("The apple store person told me they are selling like hotcakes and everyone is confused") to tinker with Claws:</p><blockquote><p>I'm definitely a bit sus'd to run OpenClaw specifically [...] But I do love the concept and I think that j...
6日前

Cloudflare outage on February 20, 2026
The Cloudflare Blog
Cloudflare suffered a service outage on February 20, 2026. A subset of customers who use Cloudflare’s Bring Your Own IP (BYOIP) service saw their routes to the Internet withdrawn via Border Gateway Protocol (BGP).
6日前

Track Zelda release anniversaries in your calendar Evan Hahn (dot com)
The original Legend of Zelda came out 40 years ago today. With other birthdays on the horizon, like Twilight Princess’s 20th in November, I wanted a calendar that showed the anniversary of every Zelda game. So I made one.Subscribe to this URL in your calendar app:https://evanhahn.com/tape/zelda_anniversaries.icsOnce you do, you’ll get calendar events on the anniversary of each game’s release. For example, you’ll be able to see that the Oracle games turn 25 in less than a week…I feel old.If you w
6日前

Adding TILs, releases, museums, tools and research to my blog Simon Willison's Weblog
<p>I've been wanting to add indications of my various other online activities to my blog for a while now. I just turned on a new feature I'm calling "beats" (after story beats, naming this was hard!) which adds five new types of content to my site, all corresponding to activity elsewhere.</p><p>Here's what beats look like:</p><p><img src="https://static.simonwillison.net/static/2026/three-beats.jpg" alt="Screenshot of a fragment of a page showing three entries f...
6日前

Taalas serves Llama 3.1 8B at 17,000 tokens/second Simon Willison's Weblog
<p><strong><a href="https://taalas.com/the-path-to-ubiquitous-ai/">Taalas serves Llama 3.1 8B at 17,000 tokens/second</a></strong></p>This new Canadian hardware startup just announced their first product - a custom hardware implementation of the Llama 3.1 8B model (from <a href="https://simonwillison.net/2024/Jul/23/introducing-llama-31/">July 2024</a>) that can run at a staggering 17,000 tokens/second.</p><p>I was going to include a v...
6日前

ggml.ai joins Hugging Face to ensure the long-term progress of Local AI Simon Willison's Weblog
<p><strong><a href="https://github.com/ggml-org/llama.cpp/discussions/19759">ggml.ai joins Hugging Face to ensure the long-term progress of Local AI</a></strong></p>I don't normally cover acquisition news like this, but I have some thoughts.</p><p>It's hard to overstate the impact Georgi Gerganov has had on the local model space. Back in March 2023 his release of <a href="https://github.com/ggml-org/llama.cpp">llama.cpp</a> made it pos...
6日前

SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains
Socket
An emerging npm supply chain attack that infects repos, steals CI secrets, and targets developer AI toolchains for further compromise.
6日前

Death to Scroll Fade!
Frontend Masters Boost RSS Feed
David Bushell is very sick of the “scroll fade” effect. It’s the effect where, as you scroll down a page, elements slide into place. Often, all the elements. I agree it’s overplayed since it’s usually movement for the sake of it, not adding anything to the experience. It’s true that movement catches our eye, but […]
6日前

Potentially Coming to a Browser :near() You
CSS-Tricks
Danny has several ideas for how we could use :near(), a proposed pseudo-class that detects when the pointer is near an element. Potentially Coming to a Browser :near() You originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
6日前
2/20 (金)

Code Mode: give agents an entire API in 1,000 tokens
The Cloudflare Blog
The Cloudflare API has over 2,500 endpoints. Exposing each one as an MCP tool would consume over 2 million tokens. With Code Mode, we collapsed all of it into two tools and roughly 1,000 tokens of context.
6日前

In-Person vs Remote Engineering Teams
Playful Programming's Atom Feed
An exploration of the pros and cons of in-person and remote engineering teams, drawing from personal experience.
6日前

Skills Night: 69,000+ ways agents are getting smarter
Vercel News
The room was full of people who had already used skills.Tuesday night we hosted Skills Night in San Francisco, an event for developers building on and around , the open skills ecosystem we've been growing since the idea started as a single weekend of writing. What began as Shu Ding sitting down to document everything he knows about React has grown into over 69,000 skills, 2 million skill CLI installs, and a community moving incredibly fast.skills.shHere is what we learned.The origin story is wor
6日前

The Index: Issue #166
Piccalilli - Everything
The left doesn't hate technology, we hate being exploitedAs a hard leftist and gadget lover, the idea that my political ideology is synonymous with hating technology is confusing. Every leftist I know has a hard-on for high speed rail or mRNA vaccines. But the “left is missing out” blog positions generative AI as the only technology that matters.Gita doesn't miss, as per!Current — a new RSS readerA novel approach to RSS that's a little calmer. We can see this being useful for people who find the
6日前

Can AI Detect Flaky Tests or Predict Build Failures in CI/CD?
Semaphore
If you’ve worked with CI pipelines for any length of time, you’ve likely encountered this pattern: A test fails in CI.You rerun the pipeline.It passes. Nothing changed in the code. At that point, you’re left wondering whether the failure was real or just noise. Over time, this erodes trust in the test suite. Developers begin […]The post Can AI Detect Flaky Tests or Predict Build Failures in CI/CD? appeared first on Semaphore.
6日前

Quoting Thariq Shihipar Simon Willison's Weblog
<blockquote cite="https://twitter.com/trq212/status/2024574133011673516"><p>Long running agentic products like Claude Code are made feasible by prompt caching which allows us to reuse computation from previous roundtrips and significantly decrease latency and cost. [...]</p><p>At Claude Code, we build our entire harness around prompt caching. A high prompt cache hit rate decreases costs and helps us create more generous rate limits for our subscription plans, so we run a...
6日前

Roll out 1Password with confidence: Start learning on 1Password Academy
Blog on 1Password Blog
Rolling out new security tools across your business is rarely a “flip the switch and walk away” moment.First, there’s the setup work: policies, permissions, onboarding flows, recovery, and making sure the right people have the right access for the right reasons. Then there’s the human work of helping everyone use and benefit from the new tool day to day.That’s why we’ve launched 1Password Academy: A free, structured learning platform designed to help admins and team members build real confidence
7日前

ESLint v9.39.3 released
ESLint Blog
HighlightsThis version restores TypeScript 4.0 compatibility in types.Bug Fixes791bf8d fix: restore TypeScript 4.0 compatibility in types (#20504) (sethamus)Chores8594a43 chore: upgrade @eslint/[email protected] (#20529) (Milos Djermanovic)9ceef92 chore: package.json update for @eslint/js release (Jenkins)af498c6 chore: ignore /docs/v9.x in link checker (#20453) (Milos Djermanovic)
7日前

ESLint v10.0.1 released
ESLint Blog
HighlightsThis release updates the minimatch dependency to v10.2.1 which includes the fix for a recently published security issue.Bug Fixesc87d5bd fix: update eslint (#20531) (renovate[bot])d841001 fix: update minimatch to 10.2.1 to address security vulnerabilities (#20519) (루밀LuMir)04c2147 fix: update error message for unused suppressions (#20496) (fnx)38b089c fix: update dependency @eslint/config-array to ^0.23.1 (#20484) (renovate[bot])Documentation5b3dbce docs: add AI acknowledgement section
7日前

Digital skimmer hits global supermarket chain
Sansec - experts in eCommerce security
The affected company, with about €100 billion in annual revenue and over 10,000 stores across 25 countries, runs some of its ecommerce operations on the PrestaShop platform. As of publication, the ...
7日前

Building authentication in Python web applications: The complete guide for 2026
WorkOS Blog
Master secure authentication patterns across Django, FastAPI, and Flask, with production-ready examples for 2026.
7日前

Recovering lost code Simon Willison's Weblog
<p>Reached the stage of parallel agent psychosis where I've lost a whole feature - I know I had it yesterday, but I can't seem to find the branch or worktree or cloud instance or checkout with it in.</p><p>... found it! Turns out I'd been hacking on a random prototype in <code>/tmp</code> and then my computer crashed and rebooted and I lost the code... but it's all still there in <code>~/.claude/projects/</code> session logs and Claude Code can extract ...
7日前

Socket Joins the OpenJS Foundation
Socket
Socket is proud to join the OpenJS Foundation as a Silver Member, deepening our commitment to the long-term health and security of the JavaScript ecosystem.
7日前

Throttle individual network requests
developer.chrome.com: Blog
Use the Request conditions tab to block specific URLs or apply custom network throttling profiles to individual resources.
7日前

Gemini 3.1 Pro Simon Willison's Weblog
<p><strong><a href="https://blog.google/innovation-and-ai/models-and-research/gemini-models/gemini-3-1-pro/">Gemini 3.1 Pro</a></strong></p>The first in the Gemini 3.1 series, priced the same as Gemini 3 Pro ($2/million input, $12/million output under 200,000 tokens, $4/$18 for 200,000 to 1,000,000). That's less than half the price of Claude Opus 4.6 with very similar benchmark scores to that model.</p><p>They boast about its improved SVG animatio...
7日前

How AI is reshaping developer choice (and Octoverse data proves it)
The GitHub Blog
AI is rewiring developer preferences through convenience loops. Octoverse 2025 reveals how AI compatibility is becoming the new standard for technology choice.The post How AI is reshaping developer choice (and Octoverse data proves it) appeared first on The GitHub Blog.
7日前

AI Hates Ambiguity: A Guide to Probability
Frontend Masters Boost RSS Feed
The more effort you put in to what you put in, the higher quality you're going to get out.
7日前
2/19 (木)

The Prototype Trap: Shipping AI-written Code Before It’s Ready
CKEditor Ecosystem Blog
Fast AI prototypes are slipping into production. Learn why vibe coding creates risk—and how leaders can stop the prototype trap.
7日前

Product News: Extending CI/CD and What’s Next for Semaphore
Semaphore
Over the past few weeks, we’ve been refining our roadmap for 2026 and focusing on where Semaphore can deliver the most value. Our direction is clear: extend CI/CD beyond execution — and help developers ship software faster. Here’s what’s coming next. Watch the quick overview by Marko Gracesa, our Head of Product: Agentic Semaphore: The […]The post Product News: Extending CI/CD and What’s Next for Semaphore appeared first on Semaphore.
7日前

Encrypted Client Hello Comes to NGINX
NGINX Community Blog
Encrypted Client Hello (ECH) support in NGINX open source was contributed by Stephen Farrell, Computer Science Research Fellow, Trinity College Dublin (GitHub PR #840). This work was funded by the Open Technology Fund as part of the DEfO (Developing ECH for OpenSSL) project, which develops privacy-enhancing ECH implementations for OpenSSL and various web servers to […]
7日前









