LodeHQSubscribe →

Dev tools: SQLite in browser, Linux IDS, ChatGPT Sheets leak

Dev · 2026-06-01

Tools & Platforms
LinAudit: Open‑Source Live Intrusion Detection for Linux via Go Dashboard9 MIN

LinAudit is a free, self‑contained Linux intrusion detection system written in Go that monitors input, shell, and process activity, encrypts logs, and offers a password‑protected local web dashboard with network insights. It runs as a single static binary on systemd distros, requiring only a Zsh hook.

sql.js-httpvfs Lets Browsers Query SQLite on Static Hosts via HTTP Ranges7 MIN

This library extends sql.js with an HTTP‑range‑based virtual file system, letting you host a read‑only SQLite database on static file hosting (e.g., GitHub Pages) and query it directly in the browser without downloading the whole file. It uses smart chunk fetching and works well with well‑indexed databases, offering a lightweight client‑side DB solution.

brepjs: Open‑source JavaScript CAD library for exact solid modeling in the browser3 MIN

brepjs is a TypeScript‑typed CAD library that runs entirely in the browser, generating exact boundary‑representation geometry via WebAssembly‑based OpenCascade. It lets developers code parametric parts, perform precise booleans, and export STEP files without a GUI, making it ideal for script‑driven mechanical designs.

ChatGPT for Google Sheets plugin can siphon entire workbooks via prompt injection4 MIN

Security researchers found that the ChatGPT for Google Sheets extension can be manipulated through an indirect prompt injection to exfiltrate data from all spreadsheets in a user's account, display phishing pop‑ups, and overwrite the sidebar. OpenAI responded by disabling Apps Script generation in the add‑on and launching a review of its sandboxing controls.

Streambed streams Postgres changes to Iceberg on S3 with native Postgres queries1 MIN

Streambed captures PostgreSQL WAL via logical replication, writes change data as Parquet files to S3, and creates Apache Iceberg tables. It includes a query server that speaks the Postgres wire protocol, letting you run standard SQL queries against the lake without ETL or Spark.

Odysseus offers open-source self-hosted AI workspace9 MIN

Odysseus is an open-source platform that provides a ChatGPT-style UI for locally hosted LLMs, letting users run AI assistants and tools on their own hardware. It bundles chat, agent automation, model browsing, email triage and other productivity features while keeping data private.

AI-Assisted Development
Linus Torvalds bans AI‑slop in Linux, forces human accountability4 MIN

Linus Torvalds and kernel maintainers have formalized an AI‑assistance policy that bans AI‑generated “slop” patches and requires a human‑signed “Assisted‑by” tag, making developers fully liable for any machine‑written code. The move follows controversy over undisclosed AI contributions and aims to preserve Linux’s quality standards.

GitHub Copilot Enterprise shifts to usage‑based AI credits billing3 MIN

GitHub Copilot Enterprise will switch from flat‑rate subscriptions to usage‑based billing on June 1, 2026, using AI Credits that charge per token. Each license receives a monthly pool of credits (3,900 for Enterprise, 1,900 for Business), with higher promotional amounts for the first three months.

AI Accelerates Prototyping: From Days to Hours6 MIN

The author reflects on how AI‑assisted coding has slashed prototype turnaround from days to hours, spawning a flurry of new personal projects. This speed boost also forces a shift toward higher‑level prompts, design contracts, and delegating work to models, reshaping engineering practice.

Engineering Practice
Linux Restartable Sequences Unlock Lock‑Free Data Structures and Massive Performance Gains22 MIN

Justine Tunney’s deep dive explains Linux’s restartable sequences (rseq), a per‑CPU concurrency primitive that lets developers build lock‑free data structures with kernel‑assisted abort‑and‑retry semantics. By exposing CPU IDs via TLS, rseq enables dramatic speedups in allocators and parallel workloads on many‑core systems.

How to Use CSS safe‑area‑inset for Notch‑Aware Mobile Layouts8 MIN

The guide shows how to read the safe‑area‑inset environment variables with CSS env() and apply them as padding, ensuring UI elements stay clear of notches, dynamic islands, and gesture bars. It covers full browser support, fallback strategies, and practical demo code.

How to vet npm packages: security, maintenance, and TypeScript checklist16 MIN

The guide offers a repeatable 5‑10‑minute process to evaluate npm packages before installing, covering supply‑chain risks, AI‑generated package hallucinations, and key signals such as TypeScript strict mode, ts‑ignore usage, type coverage, provenance, active maintenance, and security checks.

A Formal, Testable Specification Defining Modern Websites1 MIN

The Website Specification delivers a structured, testable definition of what a modern website should include, spanning foundations, SEO, accessibility, security, performance, privacy, and AI agent readiness. Each item references official standards (WHATWG, W3C, IETF) and the site is open‑source on GitHub, enabling audits and community updates.

Backpressure: The Core Primitive for Building Reliable Distributed Systems26 MIN

The post argues that backpressure, not queues, rate limiters, or circuit breakers, is the essential primitive for building reliable distributed systems. It explains how downstream components can signal upstream to throttle work, preventing overload and ensuring correctness, and shows how mechanisms like automated tests and type systems embody backpressure.

Get Dev in your inbox, every issue.
Subscribe free
Privacy · Terms · About · Contact
© 2026 LodeHQ