Lab Updated 4 days ago
Claude Code vs Codex: Only 1 of 17 Tries Fixed an Unseen Vulnerability
SecurityAIDevelopment
We planted brand-new vulnerabilities that the models had never seen, cut off internet access so they could not look up the answer, and asked Claude Code and Codex to fix them. Across 17 runs, only one actually closed the real hole. Knowing the file was not enough, and a green test suite did not mean the bug was gone.
2026.06.1912 views
Lab
What's New in Python 3.15: Lazy Imports, UTF-8, and What Breaks
Development
Python 3.15 lands October 2026. I installed the beta and benchmarked the headline changes: lazy imports (a ~4x startup win), UTF-8 by default, the new sampling profiler, and the old APIs that stop working when you upgrade.
2026.06.1718 views
Lab
npm v12: Dependency Install Scripts No Longer Run Automatically
DevelopmentSecurity
With npm v12 (July 2026), npm install stops auto-running dependency install scripts. We reproduce a postinstall running on its own, explain what changes, the benefits you never noticed, and how to prepare today.
2026.06.118 views
Lab Updated 3 days ago
CISA KEV Dashboard in Japanese — Browse the Actively Exploited Catalog
InfrastructureSecurity
Browse CISA's Known Exploited Vulnerabilities catalog (1,603 entries) in a Japanese-localized dashboard: full-text search, vendor filtering, Japan-market vendor filter, and ransomware-related extraction. Free, browser-only, no signup. Each CVE deep-links to NVD and our incident articles.
2026.05.2710 views
Lab
OSS Supply Chain Scanner — paste package.json, requirements.txt, pyproject.toml
DevelopmentSecurity
Paste a package.json, requirements.txt, or pyproject.toml and instantly check your dependencies against OSV.dev's vulnerability database. Free, browser-only, no signup. Supports npm, pip, Poetry, uv, and Rye. Built as a hub for our axios, LiteLLM, Trivy, and GlassWorm supply chain coverage.
2026.05.279 views
Lab
UUIDv4 vs v7 vs bigint: The Right Answer for Each Use Case (2026 DB Design)
Development
Is UUIDv7 really a drop-in upgrade from v4? We benchmarked insert performance on PostgreSQL 18 with Python 3.14 and mapped out the best ID strategy by project scale and table purpose.
2026.04.1387 views
Lab
AI Multi-Agent Development: What I Learned Running a 32-Person Team Solo
AIDevelopment
A solo developer built a 32-agent AI team combining 39 characters and 21 roles for autonomous parallel development. Lessons on waterfall + V-model, polling-based state control, and facilitation design — translating real-world org management into code.
2026.04.0417 views
Lab Updated 5 days ago
DeerFlow 2.0 Review: ByteDance's Open-Source Agent vs Claude Code
Hands-on review of ByteDance's DeerFlow 2.0, a GitHub 30k+ star AI agent framework. Setup, real-world testing, and comparison with Claude Code CLI.
2026.03.29152 views
