Fully autonomous AI hacker to find actual exploits in your web apps. Shannon has achieved a 96.15% success rate on the hint-free, source-aware XBOW Benchmark.
First seen: February 08, 2026 | Streak: 1d
Analysis
Shannon is an autonomous, white-box AI penetration testing framework designed to bridge the security gap between periodic manual audits and rapid software delivery. By combining source code analysis with browser automation and CLI-based exploitation, the tool identifies and validates vulnerabilities such as injection, XSS, and authentication bypass in real-time. Technically, it functions by mapping attack vectors directly to the codebase, ensuring that only exploitable vulnerabilities—supported by a reproducible proof-of-concept—are included in final reports.
This tool is primarily targeted at security-conscious development teams and DevOps engineers who need to integrate continuous, automated security validation directly into their CI/CD pipelines. It is trending because it addresses the modern challenge of "shipping at speed," allowing organizations to identify critical risks on every build rather than waiting for infrequent, manual penetration tests. By automating the transition from theoretical risk to validated exploit, Shannon provides developers with actionable, high-fidelity security feedback that reduces noise and accelerates remediation.
2. openai/skills Not new today
Skills Catalog for Codex
First seen: February 04, 2026 | Streak: 5d
Analysis
The `openai/skills` repository serves as a centralized catalog for "Agent Skills," which are standardized sets of instructions, scripts, and resources designed to enhance the capabilities of AI agents within the Codex ecosystem. By packaging specific task-oriented functionalities, these skills allow developers to create repeatable workflows that can be seamlessly integrated across different environments. Technically, the system utilizes a command-line interface, `$skill-installer`, to fetch and implement curated or experimental skills directly from the repository, requiring only a simple restart of Codex to activate the new logic.
This project primarily benefits software engineers and AI developers who seek to streamline complex automation tasks and improve the modularity of their AI-driven applications. It is trending because it addresses the growing demand for an open standard in agentic workflows, enabling teams to share and adopt standardized toolsets for diverse technical requirements. By fostering a collaborative ecosystem where custom functionalities can be easily distributed and reused, this repository significantly lowers the barrier to deploying specialized AI agents in professional development environments.
A security-focused library OS supporting kernel- and user-mode execution
First seen: February 08, 2026 | Streak: 1d
Analysis
Summary not available.
Fully automatic censorship removal for language models
First seen: February 08, 2026 | Streak: 1d
Analysis
Heretic is an automated tool designed to remove "safety alignment" or censorship from transformer-based language models without the need for resource-intensive fine-tuning. It utilizes a sophisticated directional ablation technique—commonly referred to as "abliteration"—which is optimized via the Optuna framework to balance the suppression of model refusals with the preservation of overall intelligence. By co-minimizing KL divergence and refusal rates, the software autonomously identifies optimal parameters to modify model internals, making advanced intervention accessible to users without deep technical expertise.
This project primarily benefits researchers, AI hobbyists, and developers who seek to unlock the full potential of language models by bypassing rigid, often restrictive, built-in guardrails. It is gaining traction because it provides a user-friendly, high-performance alternative to manual, trial-and-error editing methods, consistently yielding models that retain logical integrity while responding to sensitive prompts. Additionally, Heretic offers unique research-oriented features, such as residual geometry visualization and analysis, making it a valuable instrument for those interested in the interpretability and inner workings of LLMs.
5. obra/superpowers Not new today
An agentic skills framework & software development methodology that works.
First seen: February 04, 2026 | Streak: 1d
Analysis
Superpowers is an agentic framework designed to standardize the software development lifecycle by integrating a library of composable, automated "skills" directly into coding agents like Claude Code and Cursor. Instead of jumping straight to code, the system enforces a structured workflow that begins with Socratic brainstorming, proceeds to detailed implementation planning, and culminates in a rigorous subagent-driven development cycle. Technically, it functions as a plugin that triggers mandatory engineering protocols—such as strict test-driven development (TDD), git worktree management, and iterative code reviews—ensuring that agents maintain high-quality standards and consistent progress without requiring manual intervention.
This project is highly beneficial for developers and software teams looking to minimize the "hallucination" and ad-hoc coding patterns often associated with AI-assisted programming. It is trending because it addresses a critical gap in the current AI developer tool ecosystem: the transition from simple code generation to reliable, autonomous project execution that mirrors professional engineering discipline. By embedding best practices like YAGNI and DRY into the agent's core decision-making loop, Superpowers provides a repeatable, scalable methodology for building robust software applications.
A Gemini 2.5 Flash Level MLLM for Vision, Speech, and Full-Duplex Multimodal Live Streaming on Your Phone
First seen: February 08, 2026 | Streak: 1d
Analysis
Summary not available.
7. aquasecurity/trivy Not new today
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
First seen: February 06, 2026 | Streak: 3d
Analysis
Trivy is a comprehensive, open-source security scanner designed to identify vulnerabilities, misconfigurations, and sensitive data across diverse environments, including container images, filesystems, and Kubernetes clusters. By leveraging a variety of scanners, it can generate software bills of materials (SBOMs), detect exposed secrets, and identify infrastructure-as-code (IaC) issues or software license violations. Technically, it functions as a highly versatile CLI tool that supports a wide range of platforms and programming languages, providing actionable security insights through automated scanning processes.
Development teams, DevOps engineers, and security professionals benefit from Trivy’s ability to integrate seamlessly into existing CI/CD pipelines, IDEs, and Kubernetes workflows. The project is trending because it simplifies the complex task of securing modern cloud-native applications, offering a unified solution that replaces multiple fragmented security tools. Its widespread adoption is further driven by its ease of use, extensive ecosystem support, and its status as a robust, community-backed project from Aqua Security.
An open-source, cross-platform terminal for seamless workflows
First seen: February 08, 2026 | Streak: 1d
Analysis
Summary not available.
📱 Display and control your Android device graphically with scrcpy.
First seen: February 08, 2026 | Streak: 1d
Analysis
Summary not available.
A curated list of awesome Claude Skills, resources, and tools for customizing Claude AI workflows
First seen: February 08, 2026 | Streak: 1d
Analysis
Summary not available.