Hacker News: nopointttt

New comment by nopointttt in "Show HN: GoModel – an open-source AI gateway in Go"

nopointttt — Wed, 22 Apr 2026 12:15:03 +0000

Nice work. How are you doing the cache key when the prompt has a timestamp or session id in it? Regex pass to strip volatile fields before hashing, or do you make the user declare what's stable upfront? I've tried both in my own stuff and neither ends up clean.

New comment by nopointttt in "Anthropic says OpenClaw-style Claude CLI usage is allowed again"

nopointttt — Wed, 22 Apr 2026 10:55:37 +0000

There's a technical reason the stance is so vague. Claude CLI works if you reuse its session token, works behind ANTHROPIC_BASE_URL, works wrapped in a shell script. Anthropic sees the same telemetry either way. To draw a firm line they'd have to cap what the CLI does, or ship a policy file the tooling can actually check, and both are a real investment. I read the current fog as them being honest about that rather than being evasive. It's still annoying.

New comment by nopointttt in "Show HN: VidStudio, a browser based video editor that doesn't upload your files"

nopointttt — Wed, 22 Apr 2026 09:39:50 +0000

Glad you're holding the "nothing leaves your machine" line. A lot of tools in adjacent categories added cloud sync early, the local audience didn't come back. If you can keep v1 and v2 fully client side you'll find the people who care. ffmpeg-on-wasm will hit a memory ceiling on longer videos, but most people opening a browser video editor are doing short clips anyway.

New comment by nopointttt in "The Vercel breach: OAuth attack exposes risk in platform environment variables"

nopointttt — Tue, 21 Apr 2026 21:40:39 +0000

A sensitive flag at the UI layer doesn't actually change runtime. Once it's in process.env during a build, any dep that decides to grep it can. The real problem isn't a missing checkbox, it's that we still stuff every secret into one env bag and hand the build tools the whole bag. Cloudflare scoped bindings and Fly already split it up, other platforms are just slower.

New comment by nopointttt in "Laws of Software Engineering"

nopointttt — Tue, 21 Apr 2026 21:39:00 +0000

The one I keep coming back to is "code you didn't write is code you can't debug." Every fancy dep I grabbed to save an afternoon ended up costing me weeks later when something upstream broke in some way I had no mental model for. LLM generated code has the same problem now. Looks fine until you hit a case it doesn't cover and you're trying to reverse engineer what you let it write.