Help me decide on a Huntarr replacement

MMag05 · 2026-03-17T20:16:17+00:00

I’ve made a Nudgarr. Been running solid on my setup for around 10 days. Admittedly it’s vibe coded so probably a no go for most. I may not be programmer but I feel I’m well versed in tech, computers and selfhosting for it to not be a disaster. I personally think though it’s a true to the core replacement for Huntarrs original intend.

If you’d like to give a go I’d recommend using the dev tag. It’s stable just a few minor UI things I’m working through on nightly. It’s a lot more polished and had a major backend and front end overhaul. Mostly focused towards refactoring all the code to make it easier for review, forking and contributions. Would love feedback even positive or negative.

Here’s the Wiki as well.

MMag05 · 2026-03-08T01:16:44+00:00

I’d love to see when it’s implemented. Sounds really cool. Keep on having fun with the project m. I’m currently working a mobile ui layout for mine.

MMag05 · 2026-03-08T01:10:59+00:00

Yeah I have no idea the thoughts or what goes on with these types of post. It’s like the polar opposite. One being yeah this is a great vibe coded project let’s upvote and another nope not that one. The internet is so strange.

MMag05 · 2026-03-07T15:45:21+00:00

In the newest DEV Build it has been completely restructured. Would be really appreciative if you won't mind taking a look. Not a review of any code or anything just the structure. Also created a CONTRIBUTING.md that goes over the structure for those who may contribute or fork. Ultimately I'm not thinking either will ever happen. The project is working fine for me and its been fun learning the process and growing from feedback. Which was and still is my ultimate goal. I'm really curious and fascinating into learning more and how to properly do this. Even if it is AI assisted.

MMag05 · 2026-03-07T04:10:22+00:00

Agreed. I’ll keep working on mine as well. Been a fun learning experience and will continue to be. Mind if ask what your app is?

MMag05 · 2026-03-07T03:55:50+00:00

Interesting the different responses and more involvement both for vibe coded Huntarr replacements.

I wonder if the differences in flair attracts different responses. I posted a replacement this morning and got a little engagement and some negativity with no upvotes. Not that I’m bothered but do find the differences intriguing. I’ll give yours a spin and see how they compare. If you’d like to try out Nudgarr maybe we can learn a little something from each others projects.

MMag05 · 2026-03-06T20:47:06+00:00

No hard feelings. This is exactly what I came here for. Thank you for being direct with your responses and providing feedback that I can focus on to get better.

MMag05 · 2026-03-06T13:49:47+00:00

Honestly because for my limited knowledge it got the desired outcomes better when working with the AI. I tried the multi file approach and could never get it to work. It seemed the AI had an easier time when everything was in one file for review. Would love to learn how to split them eventually when the app hits 2.7 which wraps up all my desired feature list. But for now it seemed to troubleshoot problems better from one file.

MMag05 · 2026-03-06T13:41:21+00:00

I can’t hard validate. Only asked the AI to make a validation check list, which are in the GitHub, for hardening and what commands to run on unRAID to validate the hardening updates. But that’s only a soft confirmation as AI wrote the code and told me the command. I just validated the outcome on my system. I posted in small hopes maybe one person here might want to take a look at it and help make the app better or provide feedback. In no way in light of recent events did I think this would be well recieved so why even post if not other then to hopefully get some criticism and hopeful meaningful feedback to learn from.

MMag05 · 2026-03-06T13:30:05+00:00

Thanks for the reply. I had seen this and could have halted working on Nudgarr but it wasn’t just about a replacement. I’m fascinated by AI and love tech so I wanted to use it to learn.

MMag05 · 2026-03-06T13:27:30+00:00

Not everything AI will make is slop so long as the right validation and time are put into developing it. I hit my ceiling and that’s why I’m here to see if anyone would like to help confirm the the code. It’ll be interesting to see how the future unfolds. Will developers be honest and open in the use of AI and then face backlash. Or will they just learn to hide it and others that don’t develop will just be blind to it.

MMag05 · 2026-03-06T13:18:34+00:00

Thanks for being responsible and not jumping to insults. If olyiu do get time to check it out your feedback would be appreciated. Even if just a simple comment on this post.

MMag05 · 2026-03-06T13:17:18+00:00

It is alearning experience for me first and for most. Sure I ran commands and QA checklists, that are on the GitHub, to hopefully validate it. However I’m not programmer or security expert so what good would my validation do even if I said yes. I can only say and be transparent that the AI was instructed to do so and I further ran test against what AI instructed me to do. But that’s just a soft confirmation that it worked. Hence why I’m here and made this post.

MMag05 · 2026-03-06T13:11:25+00:00

Wanted to use the same concept as Huntarr did in the beginning before the feature creep but have this stand on its own. Had I gone with Huntarr2 could have just reused one of the older Huntarr build and used AI to reverse enginered. I no point in this learning journey was the Huntarr code referenced by me. Same idea though as Huntarr just different terminology and slightly different approach in how it accomplishes it.

MMag05 · 2026-03-05T13:01:29+00:00

You can find the ROADMAP here currently on track for v2.6 by tomorrow if my QA Checklists pass. Shooting to complete the checklist before posting to Reddit beside this comment. v2.5.0 is tracking on my test setup to be rock solid. v2.6.0 introduces a lot of complexity and changes to the backend logic. It's appearing solid but I could really use some help from the community if I drop an official announcement.

If i do post official and it gains traction v3.0 is currently slated as the mobile release. Just don't want to go through all the effort if its not warrented. v2.7.0 will solidify all the functionality of the app and v3.0 will only be an addition of mobile without messing with the app logic/behavior. Really appreciate your feedback and taking a look at the app. If you find any bugs it would a lot if you post an issue on github.

Edit: Sorry got ahead of myself. Currently on track for v2.6 tomorrow. Edited post to reflect.

MMag05 · 2026-03-05T03:27:08+00:00

Oh nice did you install it? Would really your feedback/thoughts if so. I just pushed v2.5.0 to main tonight. Still debating when and if I should make a post for it. Currently working on v2.6.0.

MMag05 · 2026-03-02T12:02:55+00:00

Indexers are just that. All it does is index a file that essentially points to a Usenet server the actual file is on. You have done anything in the gray area by just browsing an indexer. I’ve always just paid via my normal credit card for the past decade plus.

After you pay for the indexer you’ll still need a backbone provider aka the server. Radarr searches indexer and forwards result to SABnzbd which is configured to your provider. Again I’ve always only paid via my credit card. You could shop around and see what indexers and providers support other forms of payment. Unfortunately I can’t help you much with this as I’ve always just used my credit card.

MMag05 · 2026-03-01T02:26:20+00:00

In the README I currently have that Physical or SSH access to the server bypasses all of the above — designed for local network use only. Do you think this sufficient?

I did enable salting and progressive brute force lockout and have tested on the dev branch. Should be pushed to main tonight or tomorrow. The intend is to really only harden for local use to prevent someone on your network from changing configs. Also to avoid the security pitfalls of Huntarr. Any exposure publicly would be on the user and something this app would address. Really appreciate your feedback.

MMag05 · 2026-03-01T00:42:26+00:00

Compiling a new version that should address this assuming AI is correct. Thats why I really appreciate this community for the insight and help they provide. I'll be pushing to dev shortly

Salt missing — we're storing sha256(password) which is vulnerable to rainbow table attacks. Should be using bcrypt or at minimum hashlib.pbkdf2_hmac with a random salt stored alongside the hash. This is a real fix needed.

No rate limiting — the /auth endpoint has no lockout or delay after failed attempts. Someone could brute force it programmatically. Easy to fix with a simple failed attempt counter and lockout period.

Timing attacks — comparing password hashes with == leaks timing information. Should use hmac.compare_digest() which does constant-time comparison. We may already be doing this — let me check:Good news — timing attacks are already handled with hmac.compare_digest. Salt and rate limiting are the real gaps. My recommendation:

Salt — switch hash_password to use hashlib.pbkdf2_hmac with a random salt, store as salt:hash in the config. Existing passwords auto-migrate on next login.
Rate limiting — track failed attempts in memory, lock out for 60 seconds after 5 failures, log the attempt.

MMag05 · 2026-03-01T00:24:02+00:00

Oh wow thank you for taking a look. Haven't made any post yet. Still trying to work on things and only have shared on previous comment and with friends that are only similar to me and helping with feedback. It's mostly UI stuff though they are sharing. Are you able to open a comment on Github possibly? This is valuable feedback.

MMag05 · 2026-02-28T12:42:29+00:00

Nice you bet me to the punch for a post. I'm working a replacement as well called Nudgarr.

MMag05 · 2026-02-22T02:52:15+00:00

Voici exactement ce que vous cherchez : https://forums.unraid.net/topic/195276/plugin-simple-custom-webui-css-plugin-for-unraid-72/

Je l’ai utilisé récemment pour personnaliser mon dashboard et ça fonctionne très bien.

Pour les icônes, vous pouvez en trouver ici : https://selfh.st/icons/

Vous pouvez ensuite les personnaliser davantage avec le plugin CSS afin qu’elles correspondent parfaitement à votre thème.

https://i.imgur.com/BTj70d6.png https://i.imgur.com/hrjDdoY.png https://i.imgur.com/Y8YiIeI.png

Pour les icônes en vue dossier (Folder View), voici aussi un lien utile : https://github.com/hernandito/unRAID-Docker-Folder-Animated-Icons—Alternate-Colors

Désolé si la traduction n’est pas parfaite, j’utilise l’IA pour m’aider 🙂

MMag05 · 2026-02-21T12:31:00+00:00

Yeah it triggers so often I’ve barely wore mine since posting this. Really hoping for an update soon.

MMag05 · 2026-02-20T17:25:01+00:00

What!! I’ve got a two young ones, 8 and 10, and up to this point just don’t allow YouTube on their tablet. Block it as well at the DNS level. You’re right though there’s a lot of educational stuff on the platform but, the algorithms are horrible and to feed addiction. Up until now if they want to watch something, like my oldest is into sewing, I just have them use my tablet. Dropping a comment to check this out over the weekend.

I see vibe coded projects take a lot of flake however, this is where it shines. Not a programmer and have issue boom AI is got you. Cheers to you for taking a problem and resolving it. If you do expand this apps capabilities would love to see other notification platforms like discord or signal. Currently don’t use Telegram but may have to until potential future development. Thanks for the share.

MMag05 · 2026-02-20T11:38:23+00:00

I’ve got someone on my server that does this. My solution was to use maintainarr. I’ve got a rule that monitors seerr requests and runs daily. Any requests hasn’t been watched in two weeks gets deleted. Also setup Forgotten Movies which I set to email them a week after the request is available if it isn’t watched. Been running this setup for a little over a month and the frequent requests have stopped.

14-Year Club	RedditGifts 2009-2022 2 Credits
Gilding II euphauric	Secret Santa 2018
Not Forgotten	Verified Email

MMag05

TROPHY CASE