HackerTrans
TopNewTrendsCommentsPastAskShowJobs

pomarie

no profile record

Submissions

We fixed a critical auth bypass in Cloudflare's AI-generated Next.js

cubic.dev
6 points·by pomarie·4 mesi fa·0 comments

Show HN: cubic 2.0 – improving our AI code reviewer (3x more accurate,2x faster)

cubic.dev
4 points·by pomarie·6 mesi fa·3 comments

Anduril's autonomous weapons stumble in tests and combat

techcrunch.com
3 points·by pomarie·8 mesi fa·0 comments

OpenAI prepares GPT-5.1-Codex-MAX for large-scale projects

testingcatalog.com
4 points·by pomarie·8 mesi fa·0 comments

[untitled]

1 points·by pomarie·8 mesi fa·0 comments

Musk, Bezos and Pichai Want AI Data Centers in Space

wsj.com
3 points·by pomarie·8 mesi fa·0 comments

America Is All-In on Deep Learning; China Emphasises Robotics and Hardware

hyperdimensional.co
4 points·by pomarie·8 mesi fa·2 comments

Experts question Anthropic's claims of cyberattacks using its tools

arstechnica.com
3 points·by pomarie·8 mesi fa·1 comments

Why AI code fails differently: What I learned talking to 200 engineering teams

8 points·by pomarie·8 mesi fa·5 comments

[untitled]

1 points·by pomarie·8 mesi fa·0 comments

[untitled]

1 points·by pomarie·8 mesi fa·0 comments

[untitled]

1 points·by pomarie·8 mesi fa·0 comments

The real problem with AI coding

cubic.dev
4 points·by pomarie·8 mesi fa·2 comments

comments

pomarie
·5 mesi fa·discuss
Super cool!
pomarie
·6 mesi fa·discuss
Founder of cubic here, thanks for the shoutout!
pomarie
·6 mesi fa·discuss
Thanks Denis!
pomarie
·8 mesi fa·discuss
Good q! So it depends.

Some teams are using Claude or similar models in GitHub Actions, which automatically review PRs. The rules are basically natural language encoded in a YAML file that's committed in the codebase. Pretty lightweight to get started.

Other teams upgrade to dedicated tools like cubic. We have a feature where you can encode your rules either in our UI, or we're releasing a feature where you can write them directly in your codebase. We'll check them on every PR and leave comments when something violates a constraint.

The in-codebase approach is nice because the rules live next to the code they're protecting, so they evolve naturally as your system changes.
pomarie
·8 mesi fa·discuss
We're building something at cubic that helps with this. You write your constraints in plain English, and AI enforces them semantically on every PR.

If you're curious, you can check it out here: https://cubic.dev

Happy to answer any questions about what we've seen working (or not working) across different teams.
pomarie
·8 mesi fa·discuss
One thing that actually works is getting AI to review the basic stuff first so you can focus on architecture and design decisions. The irony of using AI to review AI-generated code isn't lost on me, but it does help.

That said, even with automated review, a 9000 line PR is still a hard reject. The real issue is that the submitter probably doesn't understand the code either. Ask them to walk you through it or break it down into smaller pieces. If they can't, that tells you everything.

The asymmetry is brutal though. Takes an hour to generate 9000 lines, takes days to review it properly. We need better tooling to handle this imbalance.

(Biased take: I'm building cubic.dev to help with this exact problem. Teams like n8n and Resend use it to catch issues automatically so reviewers can focus on what matters. But the human review is still essential.)
pomarie
·8 mesi fa·discuss
That's a really fair point. Architecture-first is definitely the ideal, and teams that can invest that time upfront tend to avoid a lot of downstream pain.