Show HN: An n8n alternative where coding agents build the workflows, not humans https://ift.tt/85HSs1r

Show HN: An n8n alternative where coding agents build the workflows, not humans n8n is built for humans dragging nodes on a canvas. That breaks down at B2B scale (embedding in a product, multi-tenant scalability, etc). n8n does have an MCP server so agents can create workflows too, but it outputs raw JSON. That's fine for n8n's engine, but painful for a coding agent (or a human reviewing its output) to read, write, diff, or debug. I'm building an alternative where workflows are authored by a coding agent in [a more dev-legible format] instead of JSON blobs, and execute it at scale. https://velane.sh/ June 21, 2026 at 12:14AM

Show HN: We post-trained a model that pen tests instead of refusing https://ift.tt/DdoPN93

Show HN: We post-trained a model that pen tests instead of refusing Anthropic and OpenAI's publicly available models are explicitly guard-railed so that they refuse offensive tasks. And their cyber-focussed models are gated for enterprises. This leaves SMEs and mid market open to major vulnerabilities. AI can be used as both an adversarial and defensive tool in the world of cyber. A worst case outcome is if only the adversaries have access. Meanwhile, most existing AI cyber tools are just wrappers. The problem is that they still have all the guardrails on from the foundation model where they will inherit its refusals. For this project we've post-trained a specific model on a decade of capture-the-flag contests. This won't be made available to anyone and everyone, but we do believe that responsible SMEs and midmarket companies also need access to these tools in order to identify key vulnerabilities in their systems; not just enterprises. We have developed two modes that run over a CLI: • Security scan: a read-only audit of your local codebase for vulnerabilities. It only reports what it can tie to a specific file and line, so you're not wading through vibes-based findings. • Pen test: an active adversarial mode that will try to break a live system in a sandboxed environment. It proves each vulnerability by running the exploit and showing the request it sent and the response your code gave back, not a confidence score. Currently gated. To show what the scan does, we pointed it at Bank of Anthos and it found an integer overflow in the transfer path: amount is an int, and amount + fee can overflow negative, so the balance check passes and you move funds you don't have. Plus the usual auth and secrets issues. (Bank of Anthos is Google's open-source bank. It's a known app and some of it is intentionally weak, which is the point: you can clone it and re-run the scan yourself instead of trusting a screenshot) How the harness works: Along with the model we built the harness to support this. The harness runs on a multi-agent swarm: an orchestrator splits the job across subagents running in parallel, each owning a slice, then synthesising one report. The CLI is a local binary (brew/curl). It reads your code locally, then sends context to our inference API over TLS tcpdump it and you'll see exactly what leaves and where. Install is free; and you can run a scan for free up to 2m tokens, then need to pay for tokens beyond this. For full disclosure this is a product part of Cosine (YC W23) Up for debate: tool safety, e.g. domain verification is one method that proves control but not necessarily permission. How would you gate a pen-test tool given that? https://ift.tt/mvShsPp June 20, 2026 at 07:19PM

Show HN: PostgreSQL MCP Server with 135 tools for various purpose https://ift.tt/3IGQXeL

Show HN: PostgreSQL MCP Server with 135 tools for various purpose https://ift.tt/udE1Y36 June 20, 2026 at 12:42AM

Show HN: Continuous Nvidia CUDA PC Sampling Profiler https://ift.tt/LtcQ4a2

Show HN: Continuous Nvidia CUDA PC Sampling Profiler Blog post about how we extended our open source profiler to include support for continuous production PC sampling. https://ift.tt/DmHS6nC June 15, 2026 at 09:19PM

Show HN: I built a bookmarks manager with a social cut https://ift.tt/SdZWJkz

Show HN: I built a bookmarks manager with a social cut Hi, I am Paolo from Italy. I have spent the last few months designing, developing and testing (my actual job is in the QA domain) a bookmarks manager platform with some help from Claude Code. The idea is to allow users to network with people with similar interests, sharing bookmarks and interesting links, libraries. The tool is free and you can try it out just entering with the guest user (no need to login or register). The guest user is created with demo bookmarks and libraries so you can look at the features. Please if you have some feedback or find this project of any interest, let me know! Ciao :) https://ift.tt/HABWivS June 20, 2026 at 01:07AM

Show HN: NanoEuler – GPT-2 scale model in pure C/CUDA from scratch https://ift.tt/2Y9NCDa

Show HN: NanoEuler – GPT-2 scale model in pure C/CUDA from scratch https://ift.tt/eJ7Q2oc June 19, 2026 at 11:48PM

SHOW HN: I built a "living proof-of-work" profile for builders https://ift.tt/tGA5ZIf

SHOW HN: I built a "living proof-of-work" profile for builders https://kritive.com June 19, 2026 at 01:50AM