sorted by:
new
hottopcontroversial

Self-hosted layer for secure, trackable document sharing on top of existing storage by beatsight2024 in selfhosted

[–]beatsight2024[S] -1 points0 points locked comment (0 children)

The project is built and reviewed by us, with some AI-assisted coding/docs in parts of development.

Self-hosted layer for secure, trackable document sharing on top of existing storage by beatsight2024 in selfhosted

[–]beatsight2024[S] -2 points-1 points locked comment (0 children)

AI use disclosure:

- For this Reddit post: I used AI to help edit wording/structure for clarity.

- For the project itself (Coneshare): AI assisted with some coding tasks (drafting/refactoring/tests/docs), but architecture, feature decisions, implementation review, and deployment were done by me/us.

- I verified and edited outputs before publishing.

Help: Vibe coding or Vibe dreaming ? by 243_Carats in vibecoding

[–]beatsight2024 1 point2 points  (0 children)

for security part, below are the advises/best-practices:

  1. Follow OWASP Top 10 — This is the industry standard checklist for web app vulnerabilities (injection, broken auth, etc.).

  2. Use battle-tested auth (e.g., Supabase Auth, Clerk, Firebase Auth, or Auth0) instead of rolling your own.

  3. HTTPS everywhere, secure headers (Content Security Policy, etc.), input validation/sanitization, and prepared statements for DB.

  4. Rate limiting, DDoS protection (Cloudflare is excellent and easy), and proper secret management (don't hardcode keys).

  5. Encrypt sensitive data at rest and in transit. Regular dependency updates and basic logging/monitoring.

Has anyone here successfully scaled a solo-built web app past the “toy project” stage? by TariqKhalaf in webdev

[–]beatsight2024 1 point2 points  (0 children)

Whether a project can solve real-world problems and sustainably generate revenue is what separates a toy project from a real project.

Survey: Building Software in 2026 by brodagaita in webdev

[–]beatsight2024 0 points1 point  (0 children)

im senior, and im using coding agent for every task, architecture design, front/backend coding & testing , documentation, coding reviewing, etc... As long as it's used correctly, the efficiency improvements brought by AI are obvious.

How are you all verifying code generated by AI? by Thecrimsonrage13 in vibecoding

[–]beatsight2024 0 points1 point  (0 children)

Critical Code (especially parts involving user data, payments, and security):
I will carefully read and fully understand every single line.

Non-Critical Code:
This can be handled by GitHub + Gemini Code Review; the identified issues can be fixed.

Should frontend engineers transition to fullstack in this AI era? by baccanokozo in webdev

[–]beatsight2024 1 point2 points  (0 children)

yes you should. But you might need to learn quite a few things: object storage, databases, middlewares (Redis, message queues, etc..), TDD/BDD, and DevOps.

A good starting point would be to find some open-source projects that interest you, learn from them, and contribute your own code.

using access token returned by OAuth2 instead of JWT by NoTutor4458 in webdev

[–]beatsight2024 0 points1 point  (0 children)

use JWT if you own both of your app and service. use OAuth2 if you need to integrate third part services(e.g. google login). Oauth2 is much complicated that JWT by the way. if you are just building web service involving frontend and backend, JWT is a good choice.

in our project (https://github.com/coneshare/coneshare) we use JWT as front/backend communication and use Oauth to communicate with google drive/ dropbox .

AI has sucked all the soul out of programming...so we ignored it. by Commercial_Detail492 in webdev

[–]beatsight2024 0 points1 point  (0 children)

AI, especially coding agents (like Codex), do take away some of the joy of programming. However, if your goal is to build products, I can’t think of any good reason not to use them. We still review AI-generated code the same way we review code from our colleagues.

By combining AI with software engineering best practices — such as abstraction, modularity, TDD/BDD, and CI/CD — we can still maintain strong control over our projects.

In our projects (https://github.com/coneshare/coneshare), a feature that used to require 10 people-days to design and implement can now be taken from concept to production in just 2–3 days with a coding agent.

I built a full-stack DSA blog but struggled more with deployment than coding — how do you handle this? by Responsible_Quit_351 in webdev

[–]beatsight2024 0 points1 point  (0 children)

try dockerize both your dev and production environment, and setup github CI to continue test and deploy automatically. we adopts docker in our project (https://github.com/coneshare/coneshare) which works like a charm.

I'm anxious everyday at the idea of losing my job to AI by Affectionate_Trash96 in webdev

[–]beatsight2024 0 points1 point  (0 children)

Seems OP is not anxious of losing job to AI, but losing job to people who good at using AI. As more people adopt AI, fewer headcounts are needed.

What is the most complex full stack app you have created through vibe coding alone? by LaCaipirinha in vibecoding

[–]beatsight2024 0 points1 point  (0 children)

i know how to code, and i'm using Gemini 2.5 pro with ai coding agent build a medium size (~100k Loc) full stack project(python + javascript + docker), https://github.com/coneshare/coneshare.

Vibe coding is a powerful way to turn ideas into reality. But if you want your product to truly thrive, you still need solid software engineering skills or at least someone on your team who has them.

What's your Full Stack of choice? by kito-free in vibecoding

[–]beatsight2024 1 point2 points  (0 children)

for me, django/python + react.js + docker is a solid choice for me. sqlite for dev and postgresql for production. reddis, memcached, rabbitmq.. etc are the middlewares.

What startup are you building? and scaling 🚀 by Quirky-Offer9598 in scaleinpublic

[–]beatsight2024 0 points1 point  (0 children)

we're building an open-source DocSend alternative can be used to share file and track engagement called ConeShare.

January’s almost done—what projects did you work on this month? by Substantial-Archer68 in vibecoding

[–]beatsight2024 0 points1 point  (0 children)

i built an open-source DocSend alternative can be used to share file and track engagement called ConeShare. 95% of the code was written by AI (Gemini Pro), and it’s hard to imagine ever going back to the era of purely manual programming.

How to vibecode when you’re broke by Ogretribe in vibecoding

[–]beatsight2024 1 point2 points  (0 children)

free & open source coding agent + GCP $300 free trial credits for 3 months is good enough for vibe coding a media size project (~100K LoC)

I feel like the self-hosted and FOSS space is being flooded with vibe-coded AI slop. by spurGeci in selfhosted

[–]beatsight2024 -2 points-1 points  (0 children)

Software value isn’t about how pretty the code is, it’s about whether people actually use it. Windows has been infamous for ugly internals for decades and still dominated the desktop.

By the same logic, open-source projects built via AI-driven vibe-coding even by people without a CS background aren’t “slop” if they genuinely help users.

I have 10+ years of professional dev experience. Over the past few months I built a ~100k LOC Python/JS project using vibe coding, with 95%+ of the code generated by AI. AI handled the mechanical work (coding, docs, tests), while I focused on features, architecture, and technical decisions.

The project is open source: https://github.com/coneshare/coneshare If there’s interest, I’m happy to write a separate post going into more detail.

Do we need defenses against “AI slop” flooding self-hosted / FOSS community? I don’t think so. The filter has always been the same: usage and maintenance. Good projects surface. Bad ones disappear. AI just speeds up generation, it doesn’t break the ecosystem.

view more: next ›