HackerTrans
TopNewTrendsCommentsPastAskShowJobs

peaktwilight

no profile record

Submissions

[untitled]

1 points·by peaktwilight·เดือนที่แล้ว·0 comments

[untitled]

1 points·by peaktwilight·2 เดือนที่ผ่านมา·0 comments

[untitled]

1 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

[untitled]

1 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

[untitled]

1 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

[untitled]

1 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

[untitled]

1 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

The AI coding agent is a new kind of contributor, and Git isn't made for it

agent-undo.com
3 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

A security scanner as fast as a linter – written in Rust

github.com
53 points·by peaktwilight·3 เดือนที่ผ่านมา·20 comments

Foxguard – a security scanner as fast as a linter

github.com
1 points·by peaktwilight·3 เดือนที่ผ่านมา·2 comments

Opus 4.6 vs. GPT 5.4 – an opinionated take for my diary

doruk.ch
2 points·by peaktwilight·3 เดือนที่ผ่านมา·0 comments

comments

peaktwilight
·3 เดือนที่ผ่านมา·discuss
update: filed #9 to build a labeled corpus and publish per-rule numbers.
peaktwilight
·3 เดือนที่ผ่านมา·discuss
true, right now it's AST pattern matching with `pattern-inside`/`pattern-not-inside` for syntactic scoping. I changed the description. Intraprocedural dataflow is the next step (tracking in #10) and while trying to keep it close linter latency.
peaktwilight
·3 เดือนที่ผ่านมา·discuss
update: `NoPickle`/`NoYamlLoad` string-match the callee text, so `import pickle as p; p.loads(...)` and `from pickle import loads as d` slip past. Filed as #7 with a fix plan (intraprocedural alias table). Thanks!
peaktwilight
·3 เดือนที่ผ่านมา·discuss
thx for the tip, I'll measure and see if LoC time is stable accross different codebases. Mind if I cite it in the readme (anonymized)?
peaktwilight
·3 เดือนที่ผ่านมา·discuss
didn't measure that yet, but definitely thinking of adding it into scope soon
peaktwilight
·3 เดือนที่ผ่านมา·discuss
cool, will check it out thanks!
peaktwilight
·3 เดือนที่ผ่านมา·discuss
Appreciate it! cloudformation isn't in scope today but the perf approach (tree-sitter + parallel file walk + rule pre-filtering) transfers, so happy to check it out.
peaktwilight
·3 เดือนที่ผ่านมา·discuss
quick correction: built-in rules are compiled in, but foxguard also loads Semgrep-compatible YAML rules at runtime via --rules <path> (or .foxguard.yml). You can add or modify rules without touching the binary. The rust-coded rules are just the default pack for zero-config speed :D
peaktwilight
·3 เดือนที่ผ่านมา·discuss
I work as a cyber defense engineer in the SOC of one of the largest companies in my country. We've tried many SOAR platforms over the years and we've never figured out a good solution to simplify the lives of our less technical analysts while allowing our technical staff to quickly and easily iterate our platbooksa and tweak processes, sometimes using coding ai tools.

The problem is usually that they each have their own custom abstraction layer when defining actions / playbooks. Some are low-code (like swimline) so you gotta mess around with some UI bs when configuring a new use-case, and it doesn't even have proper Git versioning, while some have yaml for everything < this sounds cool until you actually have like 1000 playbooks that are a pain to deal with and not as good as full on code. Also those who support "custom-code" via python are usually sandboxing runners to an extent that most of the customization is barely possible...

I'm not even going to get into the costs that most platforms require when adding all these features, but in any case I've been building the perfect tool for myself, and I know a bunch of colleagues around here dreaming of a solution like this as well.. It's fully open-source, please contribute and try it out if it is also useful to you!

Appreciate yall, as much as I hate marketing, without some sort of feedback from more users, it would be difficult to iterate and know where to improve!

Thanks for reading this far :D have a nice day
peaktwilight
·3 เดือนที่ผ่านมา·discuss
Hey HN, I built foxguard because most security scanners use bloated python to use locally. Semgrep takes 10-30s on a medium repo. foxguard finishes in under a second on the same codebase (61x faster on the express codebase for example).

It's a Rust binary using tree-sitter for AST parsing and rayon for parallelism. 100+ built-in rules across JS/TS, Python, Go, Ruby, Java, PHP, Rust, C#, Swift. No JVM, no Python runtime, no network calls.

The idea: if your security scanner is fast enough to run on every save (not just in CI), people might actually use it.

> npx foxguard . to try it

Happy to answer questions about the tree-sitter approach, rule implementation, or the Semgrep compatibility layer.