Click any tag below to further narrow down your results
Links
This article explains the design and functionality of the new Sanitizer API being integrated into browsers for HTML sanitization. It highlights how the API aims to prevent XSS vulnerabilities by eliminating the need for ambiguous parsing and ensuring context sensitivity during input processing.
This GitHub repository offers a comprehensive checklist for securing your digital life. It includes a website for easy navigation, a raw data file for modifications, and an API for accessing checklist data. Users can clone the repo, run it locally, or deploy it on various platforms.
OpenAI released GPT-5.1, enhancing speed and efficiency for coding and agentic tasks. The model adapts its reasoning based on task complexity and introduces new tools like `apply_patch` for code editing and a shell tool for command execution. Developers can leverage extended prompt caching and a "no reasoning" mode for faster responses.
Polyvia offers a visual knowledge index that connects facts from various documents, enabling visual search and reasoning. It transforms visuals like charts and tables into structured data, making it easier for teams and developers to query and access information across thousands of documents. The service is currently in private beta, with plans for broader access.
SonicWall reported a breach where attackers stole firewall configuration files from its cloud backup service, attributed to an unnamed nation-state actor. While the company claims there was no impact on its products or customer data, it remains unclear how the attackers exploited an API to conduct the breach.
This article explains how to create and manage reusable skills in OpenAI's API. Skills are packaged bundles of files that enable repeatable workflows in hosted or local environments. It covers when to use skills, how to structure them, and the API calls necessary for uploading and utilizing them.
Microsoft and Google are tightening access to their search APIs, limiting results and integrating with their AI ecosystems. This shift opens the door for new players like Perplexity and Parallel, who focus on AI-centric search solutions. As traditional players retreat, the market for innovative search APIs is heating up.
SquareX's research reveals a concealed MCP API in the Comet browser that allows extensions to execute commands and access user devices without permission. This breach of security principles raises concerns about potential exploitation and the lack of transparency surrounding embedded extensions.
This article explains how AssemblyAI offers a comprehensive API for building voice AI applications. It includes features like speech-to-text, speaker identification, and PII redaction, all designed to streamline development and improve accuracy. The platform supports multiple languages and is aimed at enterprises looking for efficient solutions.
Gemini 3 is Google's latest AI model series focused on advanced reasoning and multimodal tasks. It includes different versions like Pro, Flash, and Pro Image, each tailored for specific needs. The article covers key features, API usage, pricing, and new parameters for controlling model behavior.
This article explains the Codex agent loop, which is the mechanism that allows the Codex CLI to interact with users and perform software tasks. It details how user input is processed, how queries are sent to the model, and how responses are generated, including tool calls for executing commands.
The article argues against the effectiveness of semantic versioning (SemVer) in software development. It highlights how the system often misrepresents the impact of changes on consumers and points out common misunderstandings about versioning practices. The author suggests that SemVer is more of a trend than a reliable method for managing software versions.
This article critiques the use of structured outputs in large language models (LLMs), arguing that they often compromise response quality. The author provides examples, showing that structured outputs can lead to incorrect data extraction and limit reasoning capabilities compared to freeform text responses.
Xano offers a fast way to create production-ready backends, including APIs and databases, without extensive coding. It features visual editing, AI-assisted logic, and strong security measures, making it suitable for developers who need to scale applications efficiently.
The article outlines various design issues in LLVM, including insufficient code review capacity, frequent API changes, and challenges with build times and testing. It emphasizes the need for better testing practices and more stable APIs to enhance user experience and contributor engagement.
Xano provides a streamlined solution for creating APIs, databases, and server-side logic without extensive coding. It allows users to visually design workflows and integrate AI capabilities, all while ensuring robust security and compliance. Ideal for developers needing quick deployment and scalability.
This article covers several recent updates to OpenAI's Codex and Responses API. Key highlights include the introduction of skills for Codex, new multi-provider support, and enhancements like Gmail and Google Calendar integration. The updates aim to improve usability and efficiency for developers.
DigitalOcean now allows Professional Plan users to create and manage up to 10 container registries under a single team. This update improves organization for different environments and enhances compliance with data residency requirements. Users can manage these registries through a new API and command-line tool.
AgentMail is an API designed for AI agents to manage their own email inboxes, allowing for two-way communication similar to human interactions. It provides features like instant inbox creation and enterprise-grade reliability, catering to various use cases from automation to customer service.
Google announced updates to the Gemini API's Structured Outputs, adding support for JSON Schema and improving property ordering. This will help developers ensure consistent data extraction and facilitate agent communication in AI applications.
C1 by Thesys is an API that transforms large language model outputs into live, interactive user interfaces. It allows developers to create adaptive UIs in real time without hardcoding each response. The system supports multiple LLMs and integrates easily with existing design frameworks.
This article compares OpenCode and Claude Code, focusing on their flexibility and performance. Claude Code offers a polished experience tightly integrated with Anthropic's ecosystem, while OpenCode provides more freedom to use various models but may come with some bugs. The evaluation includes a series of coding tasks to highlight each tool's strengths and weaknesses.
Firecrawl Agent enables users to execute multiple data extraction queries at once. It can gather specific information from various sources for tasks like lead generation or market analysis. The tool offers easy integration and dynamic pricing based on query complexity.
The article discusses the launch of GLM-4.6V and GLM-4.5V, two advanced vision-language models. GLM-4.6V features a 128K context and supports multimodal inputs, while GLM-4.5V excels in visual reasoning across various benchmarks. Both models offer distinct capabilities for image and video analysis.
Google has released updates for the Gemini API, enhancing its Gemini 3 model. Key features include new parameters for controlling reasoning depth, image processing, and thought signatures to maintain context in conversations. These updates aim to improve developers' control and efficiency when building applications.
Google has released the Gemini Deep Research agent, which allows developers to integrate advanced research capabilities into their applications. This agent is designed for complex information tasks, improving web search and generating detailed reports while minimizing errors. A new benchmark, DeepSearchQA, has also been introduced to enhance the evaluation of research agents.
This article outlines the Stripe AI Toolkit, which provides SDKs for integrating Stripe's APIs with various agent frameworks like OpenAI's and LangChain. It includes setup instructions for Python and Node.js, emphasizing the use of Restricted API Keys for security. Examples demonstrate how to create and use Stripe agents in applications.
This article details how to build a Docker-based machine learning inference service that includes automated security scanning, testing, and deployment. It walks through the architecture, CI/CD pipeline, and real-world usage of a Flask API serving a Hugging Face model locally.
MiniMax-M2.5 is a large language model that enhances productivity in digital work environments, focusing on tasks like coding and office applications. It boasts improved efficiency and performance metrics compared to its predecessor, M2.1. The article also details various API relay service providers with discounts for users.
This article outlines recent updates to the Responses API, including new features for integrating with Gmail, Google Calendar, and Dropbox. It introduces a Prompt object for better prompt management and discusses the addition of webhooks for improved notification handling during long tasks.
This article discusses the growing complexity of graphics APIs and the issues caused by outdated designs. It argues for a streamlined approach that better matches modern GPU capabilities, particularly in relation to the overwhelming size of pipeline state object caches. The author critiques the historical evolution of these APIs and suggests that it's time to rethink their structure.
oRPC combines RPC and OpenAPI to create APIs that are type-safe from client to server. It supports contract-first development and integrates with various frameworks and tools for enhanced observability and usability. The documentation provides clear examples for setting up servers, clients, and generating OpenAPI specifications.
Reddit is suing four companies for scraping its data without permission, aiming to protect its content and revenue. The lawsuit seeks to establish legal precedent for data usage and ensure that companies pay for access via its API. With rising AI demand for its data, Reddit aims to close loopholes in its protections.
Solana has improved its historical data retrieval process by developing a faster and more efficient archival storage system. The new API method, getTransactionsForAddress, significantly reduces the number of RPC calls needed and enhances query flexibility. This overhaul aims to streamline access to transaction data for developers and users alike.
Google has launched the Alpha version of the ML Kit GenAI Prompt API, enabling developers to create customized generative AI features in Android apps. This API allows for on-device processing of natural language and multimodal requests, enhancing user privacy and offline functionality. Key use cases include image classification, document scanning, and content analysis.
This article explains how to create and manage reusable skills in OpenAI's API. Skills are bundles of files that allow for repeatable workflows, code execution, and asset management, making them useful for structured tasks. The guide details when to use skills, how to package them, and the process for uploading and invoking them via the API.
This article outlines the opportunities for developers to create applications using Ring's video APIs. It highlights various use cases, such as safety monitoring and business analytics, and encourages developers to join the Ring Developer Program for early access to tools and resources.
Pulumi Cloud REST API has adopted OpenAPI 3.0, providing a machine-readable specification for the API. This allows for better tooling, client generation, and documentation, ensuring that the API is consistently represented and easier to use. You can access the OpenAPI spec directly via a GET request.
The article discusses the limitations of similarity scoring in matching API requests and suggests focusing on constraints instead. It highlights the importance of defining clear guardrails to avoid incorrect matches, particularly in testing environments. The approach aims to enhance precision in selecting the right mock data for API testing.
Microsoft introduces the Delayed Message Timing API to help web developers diagnose performance issues in complex web applications. This API tracks delays in message processing across different contexts, providing insights into factors like task congestion and serialization overhead.
Anthropic has released Opus 4.5, improving conversation continuity in its Claude models by summarizing earlier dialogue instead of abruptly ending chats. The new model also achieves an 80.9% accuracy score, surpassing OpenAI's GPT-5.1 in coding tasks, though it still trails in visual reasoning.
Kubernetes v1.35 introduces an opt-in feature for CSI drivers to receive service account tokens through a dedicated secrets field instead of the volume context. This change aims to improve security by preventing accidental logging of sensitive tokens and standardizing how they are handled. Drivers can opt-in at their own pace, ensuring backward compatibility.
The article discusses the recent removal of deprecated APIs in urllib3 v2.6.0 and highlights how DeprecationWarnings failed to effectively communicate these changes to users and libraries. Despite warnings being in place for over three years, feedback indicated that the removals caught many off guard, leading to a rushed reintroduction of the APIs.
M2M tokens are officially out of beta and ready for production use, providing secure authentication for backend services. Users can track token activity through the Clerk Dashboard and expect a usage-based pricing model once billing starts. Future updates will include JWT support for faster local verification.
The article details a developer's experience with GitHub's API when trying to link PR comments to their database. It explains the differences between GitHub's node IDs and database IDs, revealing how to extract database IDs from node IDs using bitmasking and MessagePack decoding. The author also discusses the complexities of GitHub's dual ID formats and their implications.
Seth Larson discusses how developers often ignore deprecation warnings, leading to issues when deprecated methods are removed. He proposes a method where deprecated functions gradually return incorrect results to encourage timely maintenance and highlight reliance on outdated code.
The article analyzes the value of Claude's subscription plans compared to its API, revealing that the 20× plan is less advantageous than it seems. It highlights the 5× plan as offering significant value, especially when considering the cost savings from free cache reads. Detailed calculations demonstrate the real-world benefits of these plans.
This article discusses the latest API benchmark findings for 2025, highlighting significant changes and their implications for developers and businesses. It also features resources for migrating to You.com and comparisons with competitors like Microsoft Copilot.
Tailsnitch audits Tailscale networks for misconfigurations and security issues. It checks for over 50 potential problems, including access control flaws and best practice violations, and provides options to fix issues directly through the Tailscale API. Users can customize reports and ignore known risks.
This article explains how to start a free trial with Elastic Path, offering access to a suite of commerce applications. It outlines key features like catalog management, subscriptions, and integrations. Users can create an account to explore these services.
This article details the Claude Agent SDK, which allows developers to interact programmatically with Claude Code. It covers features like natural language processing, session management, and tool integration, along with the command-line interface and message protocol.
IBM is warning customers about a critical vulnerability in its API Connect platform that could let remote attackers bypass authentication and gain unauthorized access to applications. The flaw affects specific versions of the software and requires immediate patching or disabling self-service sign-up to mitigate risks.
Logo.dev offers a simple API for accessing millions of company logos, making it easy for developers to integrate logos into their applications. Users praise its intuitive design, fast loading times, and helpful features like dark mode and various image options. The service is seen as a strong alternative to the now-defunct Clearbit logo API.
The FindAll API by Parallel allows users to create custom datasets from web data using natural language queries. It efficiently identifies and enriches entities like companies and locations, providing structured data with citations. The API offers a high recall rate, outperforming competitors in accuracy.
The article discusses innovative strategies for integrating command-line interfaces (CLIs) with large language models (LLMs) to streamline API interactions. It highlights the advantages of using tools like Restish for OpenAPI specs and oauth2c for OAuth 2.0 authentication, while also detailing a method for extracting data from Google Groups without an official API.
This article outlines key considerations for creating a multi-tenant platform, emphasizing user ownership and data isolation. It covers domain management, routing, and API design, highlighting the importance of clear architecture and robust user interfaces.
any-llm v1.0 offers a single interface for accessing various large language models like OpenAI and Claude, streamlining integration for developers. It features improved stability, standardized outputs, and auto-detection of model providers, making it easier to switch between cloud and local models without needing to rewrite code.
This article outlines how Swagger facilitates API design, testing, and documentation with a focus on AI readiness. It highlights features that enhance collaboration among teams, enforce standards, and streamline workflows for both human and machine consumption. The platform also offers tools for contract testing and exploratory testing to ensure high-quality APIs.
This article provides an overview of MiniMax's text generation models, highlighting their capabilities and use cases. It details the performance and context window of each model, along with their applications in programming and office productivity. The M2.5 model, in particular, showcases advanced features for efficient coding and task execution.
Kubernetes v1.35 introduces workload aware scheduling, enhancing how multiple Pods are scheduled together. It features a new Workload API for defining scheduling requirements and supports gang scheduling to optimize resource use for large workloads. The update also includes opportunistic batching to speed up scheduling for identical Pods.
Amazon S3 now allows users to change the server-side encryption type of existing objects without moving data. You can use the UpdateObjectEncryption API to switch between encryption methods, such as from SSE-S3 to SSE-KMS, and apply these changes at scale with S3 Batch Operations. This is particularly useful for meeting compliance and security standards.
Voxtral has released two new speech-to-text models, Voxtral Mini Transcribe V2 for batch processing and Voxtral Realtime for live applications. Both models support 13 languages, offer high accuracy, and are designed for efficiency in various use cases like meeting transcription and voice applications.
OpenTinker is a framework for agentic reinforcement learning, offering a range of training scenarios and environments. It features both data-dependent and data-free paradigms, with single-turn and multi-turn interaction modes for various use cases. The setup involves cloning the repository, installing dependencies, and configuring an authentication system for API access.
This article discusses how to create effective API contracts to help modernize legacy systems. It outlines the importance of clear contracts in facilitating communication between old and new software components. The author shares practical insights for technology teams navigating this process.
This article outlines recent improvements in Azure Repos, including changes to TFVC check-in policies, enhanced pull request comment navigation, and better email notifications. It also previews upcoming features aimed at streamlining pull requests and improving API performance.
The article discusses a major security incident where 30,000 public Postman workspaces exposed sensitive information like API keys and tokens. It highlights the risks faced by various industries, real-world consequences of these leaks, and the factors leading to such vulnerabilities.
This article outlines the steps to sign up for a composable content platform. It highlights the platform's flexibility with various tech stacks and offers full API access for content management and delivery. Users can sign up using their email or preferred authentication methods.
A security engineer found over 17,000 exposed secrets in public GitLab repositories after scanning 5.6 million projects. The researcher used TruffleHog to identify sensitive data like API keys and tokens, discovering a higher secret density than previous scans on Bitbucket. Many organizations responded by revoking their compromised secrets.
This article explains how GPT processes web search results, emphasizing that it doesn't view full web pages like humans do. Instead, it receives structured snippets and can expand these snippets using specific commands, but remains limited by strict retrieval and output constraints.
This article presents DARWIS TAXII, a server for the Trusted Automated eXchange of Indicator Information, built in Rust. It supports both TAXII 1.x and 2.x protocols, includes a REST API, and offers features like JWT authentication and async processing. Users can manage configurations and data through YAML files and a command-line interface.
The URL Pattern API enables developers to create matchers for URLs using a specific syntax. It supports features like wildcards, named groups, and regex for flexible URL matching. This API is useful for validating and extracting components from URLs in web applications.
Dash 3.3.0 introduces key updates like Plotly Cloud integration, customizable developer tools, and HTTP API endpoints for callbacks. It also includes health check endpoints for production monitoring and improved performance with client-side property updates. The update marks a shift towards more flexible and maintainable Dash applications.
This article provides guidance on optimizing the Codex model for coding tasks using the API. It covers recommended practices for prompting, tool usage, and code implementation to enhance performance and ensure efficient task completion.
OpenAI announced several updates, including Open Responses, an open-source spec for building multi-provider LLM interfaces. The introduction of GPT-5.2-Codex enhances complex coding tasks, while new skills and connectors improve usability and integration with other platforms.
This article outlines resources for developers using DocuSign's APIs, including integration options for eSignature, workflows, and user management. It also highlights sample apps and video tutorials to help developers implement best practices.
This article discusses key points from a recent OpenAI Town Hall featuring Sam Altman. Notably, it highlights a suggestion about allowing users to share inference costs from their ChatGPT accounts with other apps, which could enhance security and ease of use for indie developers.
This article presents API-Bench v2, a benchmark assessing how well various language models (LLMs) can create working API integrations. It highlights key failures of LLMs, including issues with outdated documentation, niche systems, and authentication handling. The findings emphasize that specialized tools outperform general LLMs in integration reliability.
The author shares insights from creating a unified coding agent harness, pi-ai, after years of frustration with existing tools. He emphasizes the importance of context management and offers technical details on API integration and model interoperability. The article also discusses challenges faced with self-hosting and API peculiarities.
Crossplane has graduated from the Cloud Native Computing Foundation, signifying its maturity and readiness for production use. With over 3,000 contributors, it enables teams to manage cloud infrastructure through declarative APIs, bridging human and AI operations. The latest version, Crossplane v2.0, enhances its architecture and supports AI-driven operations.
LLM Gateway offers a single API to access over 180 language models from various providers, eliminating the need to manage multiple API keys. Users can easily switch providers and monitor costs in real-time, while maintaining compatibility with existing OpenAI SDK code.
This article details SerpApi's pricing plans and the various APIs available for accessing search engine data. It outlines search limits, throughput rates, legal protections, and refund policies, making it clear how the service functions and what users can expect.
This article discusses a proposed protocol for API metering that ensures user privacy while allowing for efficient and secure transactions. It introduces Rate-Limit Nullifiers (RLN) to enable anonymous API usage, where users can make multiple requests after a single deposit without linking their identity to their queries. The protocol aims to protect both users and providers against spam and abuse.
The Grok Imagine API offers advanced tools for creating and editing videos from images or text prompts. Its features include high-quality video generation, efficient scene manipulation, and support for various formats, making it suitable for creators and professionals alike.
Anthropic has blocked opencode access from its Claude Code API, prompting frustration among users. This move raises concerns about the company's reliability and suggests they may restrict access for non-compliant users. The author warns that this could push users toward alternative model providers.
This article outlines updates and new features for Claude Opus 4.5. Key improvements include an effort parameter for balancing output quality and cost, new API tools for enhanced functionality, and the introduction of Skills for integrating specialized knowledge into agents.
This article explains how the CSS Custom Highlight API improves syntax highlighting by avoiding DOM manipulation. It highlights the performance benefits and cleaner code structure compared to traditional methods that rely on multiple span elements. The implementation details and browser support are also discussed.
This article walks you through creating an MCP server using Semaphore's API. It covers setting up the project, coding the server, and integrating it with tools like OpenAI's Codex for conversational CI/CD interactions.
OpenAI has released an improved version of ChatGPT Images, featuring better instruction adherence and faster generation speeds. The model allows for precise edits while maintaining essential details, making it easier to create and transform images.
Mistral has released Vibe 2.0, enhancing its terminal-native coding agent with new features like custom subagents, multi-choice clarifications, and slash-command skills. The update aims to streamline coding workflows and is available on Le Chat Pro and Team plans, with Devstral 2 now requiring paid API access.
This article explains how to use VibeFigma to automatically transform Figma designs into React components with Tailwind CSS. It details command-line instructions for setting up the tool, generating components, and managing Figma access tokens. The integration allows for customization and optimization of the generated code.
This article discusses how Metronome enhances customer billing experiences by integrating real-time cost visibility, self-service options, and proactive notifications into the product. It highlights three key features: a cost preview API, an embeddable billing console, and customer lifecycle notifications. These tools aim to reduce surprises and increase transparency in billing processes.
The Grok Voice Agent API has launched, allowing developers to create voice agents that support multiple languages and real-time data searches. Built on the same technology used in Tesla vehicles, it offers high speed and intelligence, with a flat pricing structure of $0.05 per minute.
Tinker is now available to everyone without a waitlist, featuring the new Kimi K2 reasoning model, an OpenAI API-compatible inference interface, and vision input support with two new models. Users can fine-tune models for various applications, including image classification, using limited labeled data.
The article explains how benchmarking different language models (LLMs) can significantly reduce costs for businesses using API services. By testing specific prompts against various models, users can find cheaper options with comparable performance, potentially saving thousands of dollars.
The article outlines reasons why a Twitter thread might be unavailable, such as exceeding API limits, deletion by the author or Twitter, or account suspensions. It also suggests archiving threads to PDF and offers a premium membership for this service.
Vercel now allows users to access Claude Code through its AI Gateway using an Anthropic-compatible API. This setup centralizes usage, tracks spending, and provides failover options between different models. Users need to set specific environment variables to configure the integration.
This article introduces the vt-py library, which allows users to interact with the VirusTotal API v3. It lets you scan files and URLs, retrieve information, and manage various VirusTotal features like LiveHunt and Retrohunt. The documentation and example scripts provide guidance on using the library effectively.
The FBI has shared 630 million passwords with Troy Hunt to help organizations block potential account takeovers. This data, some of which is newly identified, adds to the existing database and enhances security measures against cybercrime. Hunt emphasizes the importance of using this information to protect accounts effectively.
This article explains the architecture and functionality of the Codex App Server, which powers various Codex applications. It details the agent loop, conversation primitives, and how developers can integrate Codex into their products effectively.
This article discusses the evolution of web payments from human-centric models to machine-driven transactions, highlighting the introduction of x402, a protocol that enables direct payments in API calls. With AI agents increasingly using APIs for data access, traditional advertising models are becoming obsolete, prompting a shift towards a system where data quality and API access are monetized through micropayments.