Show HN: Mephisto – A RAM-only, ad-free disposable email PWA built with React https://ift.tt/9xPcqsf

Show HN: Mephisto – A RAM-only, ad-free disposable email PWA built with React Hi HN, I built Mephisto because I was frustrated with the current state of disposable email services—most are riddled with intrusive ads, trackers, and captchas. I wanted a tool that felt like a proper developer utility rather than a spam farm. The stack is React, Vite, and Tailwind. Key architectural decisions: 1. Volatile Memory: The backend writes nothing to disk. Once a session terminates, the data is irretrievable. 2. Client-Side Entropy: The password generator runs locally in the browser; keys are never sent to the server. 3. PWA: It's installable and designed for low latency using WebSockets for incoming mail (no polling). 4. Mobile Handoff: You can transfer an active session to mobile via an encrypted QR code. It is completely free and open for public use. I'd love to hear your feedback on the implementation and UI. https://mephistomail.site December 17, 2025 at 06:54AM

Show HN: I built middleware to connect legacy SOAP APIs to AI agents in 2 weeks https://ift.tt/zGoby1c

Show HN: I built middleware to connect legacy SOAP APIs to AI agents in 2 weeks After 6 months integrating AI voice agents with old systems, I got tired of fighting SOAP from 2003. Built Hopeless to turn 6-month integrations into 2 weeks. ~70% token reduction. Works with any legacy system. https://ift.tt/JnjhCpM December 17, 2025 at 05:39AM

Show HN: brig – a devcontainer CLI in Go https://ift.tt/TK6RVpt

Show HN: brig – a devcontainer CLI in Go Hi, HN. Elevator pitch: brig is a CLI for spinning up containers based on the devcontainers spec that validates configuration against said spec and aims to be an almost drop-in replacement for the official CLI tool. The validation bit is really important to me personally; I want to keep on using the same devcontainer.json files my team is using, and I want any enhancements I can make to them still be usable in their VSCode environments. --- I really like the idea behind devcontainers[1], and have pushed for my team to adopt them on pretty much all of our codebases. I also really like how they're nominally not married to VSCode (they're just containers with a few convenience features). For years I just relied on a simple shell script[2] to spin up a container based on the Containerfile/Dockerfile of the project. It wasn't until recently that I began diving into the spec; when I did, I found pretty nifty features (e.g., lifecycle scripts) that would be kinda nice to have without having to add kludges to my little start-dev-container.sh script. As an aside, it's been years since I've written anything more than shell and Python scripts (and even longer since I contributed anything to FLOSS). Since Go is pretty widely used in the tools I use (OpenTofu, Podman, Docker), I figured that's not a bad excuse to learn Go. I put my interest in devcontainers and learning Go together, and here's the result. While I wrote this for my own needs, I hope someone else would find utility in it. [1]: https://containers.dev [2]: https://ift.tt/319bAMI... https://ift.tt/xILwk0m December 17, 2025 at 03:17AM

Show HN: Obsidenc – a Rust-based paranoid-grade encryption utility https://ift.tt/MHKXNa0

Show HN: Obsidenc – a Rust-based paranoid-grade encryption utility obsidenc uses XChaCha20-Poly1305 with per-chunk authentication tags, so tampering is detected immediately. The Argon2id key derivation adapts to available memory (512 MiB to 2 GiB), adjusting iterations to maintain security on constrained systems per RFC 9106. Sensitive data is locked in RAM (mlock/VirtualLock) to prevent swap exposure, and the zeroize crate clears secrets when done. Decryption verifies authentication before exposing plaintext and streams data to minimize memory exposure. The parser strictly validates container format, uses constant-time comparisons, and rejects malformed inputs. Zip-bomb protection caps file counts at one million and path lengths at 4KB. Decryption uses staging directories with atomic rename on success, preventing partial extractions. Automatic cleanup runs on failure. You can combine a password with an optional keyfile (up to 4 MiB). On Unix, the tool checks that keyfiles aren't world-readable. Keys are derived via HKDF with distinct domain strings, preventing reuse between encryption and nonce generation. The design prioritizes security: no compression to avoid side-channels, symlink rejection, permission sanitization on extract, and a 20-character minimum password. https://ift.tt/3E5tnU9 December 17, 2025 at 12:46AM

Show HN: Footywhoops – MIDI Sequencer Software https://ift.tt/whkCJQY

Show HN: Footywhoops – MIDI Sequencer Software https://ift.tt/tqrMfve December 16, 2025 at 05:16AM

Show HN: TextGO – A text selection popup tool (alternative to PopClip/SnipDo) https://ift.tt/oZKxzsY

Show HN: TextGO – A text selection popup tool (alternative to PopClip/SnipDo) I built an open-source text processing tool as an alternative to PopClip and SnipDo. It's cross-platform (macOS/Windows), extensible, and doesn't require a subscription. What it does: TextGO automatically recognizes text types and executes custom actions. You can trigger it via global hotkeys, mouse double-click, or text selection. It supports both instant execution and interactive toolbar modes. Key features: - Built-in text type recognition (URLs, emails, IPs, timestamps, programming/natural languages, etc.) - Multiple trigger methods with independent rule configurations - Extensible via regex, scripts, or local AI integration - Customizable toolbar icons Feedback and contributions welcome! https://ift.tt/uNX4M2C December 16, 2025 at 02:08AM

Show HN: InterviewKitHQ – AI-generated interview playbooks for HR teams https://ift.tt/oE9q4Ry

Show HN: InterviewKitHQ – AI-generated interview playbooks for HR teams I built InterviewKitHQ to help HR teams create quality interview materials quickly. Creating good interview guides takes time for HR and hiring managers. Enterprise tools are expensive ($75+/user/mo) and complex. Free AI tools give you generic, sometimes problematic questions. *What I built:* A system that: 1. Researches job families across 8 dimensions (responsibilities, skills, compensation, career paths, etc.) 2. Generates complete interview kits with questions, rubrics, and red/green flags 3. Runs compliance checks (no discriminatory content) 4. Exports as editable Word documents *Tech stack:* - Backend: Python/FastAPI, SQLite (PostgreSQL in prod) - Frontend: React + TypeScript + Tailwind - AI: Perplexity for research, GPT-4o for generation/compliance *Business model:* - Free tier: 3 kits (stock library or custom from job description) - Paid: $99-299/mo for more kits and features https://ift.tt/7dDVg41 December 16, 2025 at 12:44AM