惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Schneier on Security
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
T
Threat Research - Cisco Blogs
C
Cyber Attacks, Cyber Crime and Cyber Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
A
Arctic Wolf
Security Latest
Security Latest
Simon Willison's Weblog
Simon Willison's Weblog
I
Intezer
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
T
Troy Hunt's Blog
Latest news
Latest news
Help Net Security
Help Net Security
S
Security Affairs
Webroot Blog
Webroot Blog
The Hacker News
The Hacker News
AI
AI
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
T
Tor Project blog
Forbes - Security
Forbes - Security
Google DeepMind News
Google DeepMind News
AWS News Blog
AWS News Blog
Attack and Defense Labs
Attack and Defense Labs
P
Proofpoint News Feed
www.infosecurity-magazine.com
www.infosecurity-magazine.com
H
Help Net Security
L
Lohrmann on Cybersecurity
S
SegmentFault 最新的问题
Google Online Security Blog
Google Online Security Blog
MongoDB | Blog
MongoDB | Blog
Cyberwarzone
Cyberwarzone
The Last Watchdog
The Last Watchdog
S
Securelist
N
News and Events Feed by Topic
S
Secure Thoughts
F
Fortinet All Blogs
博客园_首页
C
Cybersecurity and Infrastructure Security Agency CISA
量子位
M
MIT News - Artificial intelligence
F
Full Disclosure
T
The Blog of Author Tim Ferriss
T
Tailwind CSS Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Microsoft Security Blog
Microsoft Security Blog
I
InfoQ
P
Privacy International News Feed
L
LangChain Blog
Know Your Adversary
Know Your Adversary
C
CERT Recently Published Vulnerability Notes

Hacker News - Newest: "AI"

AI can't read an investor deck AI as an attorney? Student uses ChatGPT, Gemini to sue UW over alleged racial discrimination Hacking MCP Servers in AI Systems – The Rug Pull: Tool Changes After Approval GitHub - MeepCastana/KubeezCut: Free Web based video editor GitHub - GenAI-Gurus/awesome-eu-ai-act: Curated tools, official sources, OSS, templates, and guides for EU AI Act compliance. Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Coming soon: 10 Things That Matter in AI Right Now DARPA built an AI to fact-check enemy weapons claims What explains heterogeneity in AI adoption? When AI Meets Muscle: Context-Aware Electrical Stimulation Promises a New Way to Guide Human Movements - Department of Computer Science AI Changed How We Build. It Did Not Change What Matters. Linux rules on using AI-generated code - Copilot is OK, but humans must take 'full responsibility for the… Meta spins up AI version of Mark Zuckerberg to engage with employees Code Mode: Let Your AI Write Programs, Not Just Call Tools | TanStack Blog GitHub - Delavalom/graft: Go framework for building AI agents. Type-safe tools, multi-provider (OpenAI, Anthropic, Gemini, Bedrock), zero vendor SDKs. India's TCS tops estimates, says new AI models did not dent services demand Gen Z's fading AI hype Strong feeling: we are in a folded AI reality GitHub - machinarii/total-recall-catalog: A reference catalog of latest knowledge retrieval, memory & RAG systems GitHub - mensfeld/code-on-incus: Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.. Quantization, LoRA, and the 8% Problem: Benchmarking Local LLMs for Production AI Iran war: We spoke to the man making Lego-style AI videos that experts say are powerful propaganda Powell, Bessent discussed Anthropic's Mythos AI cyber threat with major U.S. banks GitHub - immartian/bellamem: Persistent belief-graph memory for AI agents. Retrieves decisive context by importance — not recency, not RAG, not /compact. recursive-mode: The Repo-Native Operating System for AI Engineering After the attack on Sam Altman's home, will AI CEO's go on the offensive? The biggest advance in AI since the LLM Opus 4.6 vs GPT 5.4 One Prompt Unity World Generation Test “AI polls” are fake polls Client Challenge Can AI be a 'child of God'? Inside Anthropic's meeting with Christian leaders How to Switch AI Chatbots and Why You Might Want To GitHub - MattMessinger1/agentic_refund_guardrail: Safe refund policy layer for AI agents — Python + TypeScript. Same behavior, shared tests. Adam/papers/emergent_values_whitepaper.md at master · strangeadvancedmarketing/Adam Ask HN: How do you stop playing 20 questions with your AI coding tools How far can automation and AI support psychotherapy? - @theU GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits A Mac Studio for Local AI — 6 Months Later A History of the Early Years of AI at the University of Edinburgh Why AI Coding Tools Still Feel Stuck on Localhost MSN AI Datacenters Are Becoming Strategic Targets twitter.com Penn Researchers Use AI to Surface Unreported GLP-1 Side Effects in Reddit Posts Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 AI models are terrible at betting on soccer—especially xAI Grok GitHub - xialeistudio/echoic GitHub - HimashaHerath/github-dev-wrapped: AI-powered weekly GitHub activity reports deployed to GitHub Pages GitHub - alejandrobalderas/claude-code-from-source: Architecture, patterns & internals of Anthropic's AI coding agent — reverse-engineered from source maps AI and Tech brief: Ireland ascendant GitHub - Titovilal/context0: Context0 - Never Surrender Training for a Marathon with an AI Coach: What Worked and What Didn't Cyber Pulse: Agentic Intel - Apps on Google Play I Built an AI PR Reviewer That Catches Bugs by Not Looking for Bugs Gen Z workers are so fearful AI will take their job they’re intentionally sabotaging their company’s AI rollout | Fortune How AI Is Reimagining the Game of Golf–For Both Players and Courses GitHub - nattergabriel/reseed: A CLI tool for managing and distributing agent skills across projects Is SVG the final frontier? My AI workflow evolved from prompts to a near-autonomous workflow MLSharp Help - 3DGS Viewer & Generator I put my cognitive field based AI's runtime on GitHub Is Numble the first AI-proof game? A3: Kubernetes for autonomous AI agent fleets | Emergent Principles Deepali Vyas ("The Elite Recruiter") GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Unionized ProPublica staff are on strike over AI, layoffs, and wages Unleashing the Advantage of Quantum AI We're heading for an AI-fueled 'dementia crisis,' brain scientist warns The AI-Assisted Breach of Mexico's Government Infrastructure [pdf] GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. MSN GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs AI Code is Hollowing Out Open Source, and Maintainers are Looking the Other Way What leaked "SteamGPT" files could mean for the PC gaming platform's use of AI AI is the boss at this retail store. What could go wrong? GitHub - Wuzu11517/agentic-proxy: Local proxy meant to help reduce With Drones, Geophysics and ArtificiaI Intelligence, Researchers Prepare to Do Battle Against Land Mines A Single Operator, Two AI Platforms, Nine Government Agencies: The Full Technical Report 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - inevolin/resume-cli: Hit Claude usage limits? Resume any AI coding session elsewhere. Switch tools at zero friction. GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript This Startup Wants You to Pay Up to Talk With AI Versions of Human Experts Intel Arc Pro B70 Brings 32GB VRAM to Local AI for $949 WordPress 7.0: The Good, the AI, and the Still Missing AI on the couch: Anthropic gives Claude 20 hours of psychiatry IatroBench: Pre-Registered Evidence of Iatrogenic Harm from AI Safety Measures AI Agents Know About Supabase. They Don't Always Use It Right. The history and future of AI at Google, with Sundar Pichai Inside an AI‑enabled device code phishing campaign How Meta Used AI to Map Tribal Knowledge in Large-Scale Data Pipelines AI for Systems: Using LLMs to Optimize Database Query Execution Forecasting the Economic Effects of AI Introducing Tinker: Play with AI, bring your ideas to life AI sheds light on an ancient gaming mystery People really hate AI but not as much as Iran—or Democrats | Fortune What is an AI Product Engineer? Phoebe Gates wants her $185 million AI startup to succeed with 'no ties to my privilege or my last name': 'I have a chip on my shoulder' | Fortune
GitHub - Ntooxx/Sentinel
Ntox · 2026-06-18 · via Hacker News - Newest: "AI"

Sentinel

For developers who want AI to understand their codebase — without uploading to the cloud

Scan → Understand → Act

CI Python Zero Deps Benchmark

25,000 files scanned in 55 seconds. Zero dependencies. 197 tests.

Quick Start · Install · Commands · Dashboard · Architecture


🧭 What is Sentinel?

You use AI coding agents (Claude Code, Cline, Codex, Continue, Roo). They need to understand your codebase — but dumping raw files wastes tokens and misses context.

Sentinel solves this. It's a local, zero-dependency scanner that turns any repo into structured, token-efficient intelligence:

Point → Scan → AI-ready context pack (~2,500 tokens)

It maps architecture, scores maintainability, surfaces risk hotspots, identifies entry points, and generates ready-to-use prompts for your AI agent — all in seconds, entirely offline. No uploads. No API keys. No dependencies beyond Python stdlib.

flowchart LR
    A["📂 Any Repo"] -->|scan| S["🛡️ Sentinel"]
    S --> B["💊 Health Score"]
    S --> C["🔥 Hotspots & Risks"]
    S --> D["🎯 Entry Points"]
    S --> E["🤖 Agent Prompt"]
    S --> F["📦 Context Pack"]
    S --> G["💡 Next Actions"]
    B & C & D & E & F & G --> H["🧠 AI Coding Agent"]
Loading

⚡ 30-Second Demo

# Install
pip install -e .

# Scan any project — fast
python sentinel.py scan . --fast
╔══════════════════════════════════════════════════════════════╗
║  🛡️  SENTINEL  —  Repo Intelligence                         ║
╠══════════════════════════════════════════════════════════════╣
║                                                              ║
║  Project    kubernetes                                       ║
║  Type       container orchestration platform                 ║
║  Health     ████████████████░░░░  74%                        ║
║  Files      25,432                                           ║
║  Lines      6,007,991                                       ║
║  Time       55s                                              ║
║                                                              ║
║  ⚠️  Top risk: 3 oversize files exceeding 5K lines          ║
║  💡  Next action: Split kubelet.go into focused modules     ║
║                                                              ║
║  197 tests · 0 failures · no external dependencies          ║
╚══════════════════════════════════════════════════════════════╝

📊 Scan Performance

Sentinel Performance Dashboard

Target Files Lines Time Health
Python library 234 42K 0.16s 🟢 86%
FastAPI web framework ~1K ~200K 4.56s 🟡 74%
Kubernetes (k8s.io/kubernetes) 25,432 6,007,991 55s 🟡 74%
Ladybird browser engine ~40K ~1.4M ~40s

💡 No cloud. No external services. Pure Python. Every scan runs entirely on your machine.


🧬 What Sentinel Produces

🔍 Project Identity

Name, type, archetype, purpose, language, frameworks, workflow — resolved through a 5-tier ranked fallback system that never returns garbage.

💊 Health Score

Maintainability, runtime complexity, test signal, security — with a detailed breakdown so you know exactly where the pain is.

🎯 Entry Points

Primary runtime, API surfaces, examples, build tools, generators — with intelligent scoring (Go binaries get +80 bonus).

🔥 Hotspots

Runtime, build, test runner, documentation, vendor — ranked by risk so you attack the worst problems first.

🚨 Review Signals

Oversized files, TODO density, documentation drift, test gaps — every signal is actionable.

💡 Next Actions

Suggestions ranked by impact, effort, and confidence — not just "you should fix this" but where to start.

🤖 Agent Prompt

Ready-to-use prompt for Cline, Claude Code, Codex, Roo, Continue — copy, paste, ship.

📦 Context Pack

Compact, token-efficient project brief — ~2,500 tokens that replace hours of file reading.

🏗️ Architecture Summary

Components, dependencies, archetype, patterns — the big picture at a glance.

⚠️ Risk Scores

Per-file scoring with deduplicated factors and test coverage — no noise, no duplicates.


✅ Test Suite

197 tests 0 failures 9.3s runtime

Suite Tests Scope
test_archetype_regressions 11 Archetype detection, entry point filtering, vendor classification
test_auditor 18 Checkpoints, file classification, maintainability, test signals
test_classification_regressions 36 File roles, risk surfaces, generated code, i18n, monorepo detection
test_ladybird_regressions 37 Risk surface classification, hotspot filtering, focus files
test_regression_fixtures 28 Full pipeline, identity resolution, purpose inference, HTML cleaning
test_report_quality 40 Project name extraction, entry points, health scoring, LLVM/rust detection
test_sentinel + misc 27 CLI commands, HTML report, dashboard, cache, MCP, knowledge base
python -m unittest discover -s tests -v
# 197 tests · 0 failures · 9.3 seconds

🌟 Feature Highlights

🏷️ Project Name Resolution

Sentinel resolves project names through a 5-tier ranked fallback — no more "Sponsors" as a project name when scanning FastAPI:

┌─ Tier 1: Known repo names (22 entries)
│   FastAPI · Kubernetes · TensorFlow · Flask · Django · React
│   PyTorch · NumPy · Pandas · Vite · Express · Tailwind CSS · …
│
├─ Tier 2: Package manifests
│   Cargo.toml · pyproject.toml · package.json · setup.py · go.mod · CMakeLists.txt
│
├─ Tier 3: Manifest descriptions
│   Extracted from the same manifests
│
├─ Tier 4: README body
│   First real paragraph after headings
│
└─ Tier 5: README heading
    Validated against blocked section keywords (Installation, Usage, Sponsors, …)

🧠 Purpose Inference

A 6-step fallback chain that never returns a placeholder — no more ---- as project purpose:

Step Source What It Does
1 Manifest description Stripped of HTML/badges
2 README body First real paragraph, skip badges/tables/HTML
3 README summary Already-cleaned summary field
4 README doc_title subtitle Extracts subtitle after colon or em-dash
5 Component-based generation Built from non-test/doc component roles
6 Final fallback "Purpose could not be confidently inferred from README."

🎯 Example: "Kubernetes: Production-Grade Container Orchestration""Production-Grade Container Orchestration"

🎯 Entry Point Detection

Go binaries are detected even when not named main.go:

cmd/kube-apiserver/apiserver.go    →  runtime entry point  (+80 score)
cmd/kubelet/kubelet.go             →  runtime entry point  (+80 score)
cmd/cloud-controller-manager/main.go → runtime entry point

Major Go binaries get a +80 score bonus: kube-apiserver, kubelet, kube-controller-manager, kube-scheduler, kubectl, kube-proxy, kubeadm.

🧹 Identity Text Safety

Sentinel filters out the noise from all identity fields (project name, type, purpose, summary):

  • ❌ HTML tags · Markdown links · Badges · Images
  • ❌ Sponsor keywords · Section headings · Table artifacts
  • ❌ Decorative separators (----, ====, etc.)

📄 HTML Report

The generated HTML report is a single self-contained page — no external assets, no build step:

Element Description
🟢 SVG health ring Donut chart color-coded by score (green/gold/red)
📊 Stats bar Files, lines, issues, signals, TODOs at a glance
🏷️ Project identity + risk Definition lists in two-column card layout
🔥 Top risk insight Accent-bordered card with the single most important finding
💡 Next actions Grid of suggestion cards with impact/effort/confidence badges
🎯 Hotspots + entry points Grouped file pills by category
📋 Components table Path, role, file count, line count
⚠️ File risks By surface with level, score, and factors
🚨 Review signals Severity, message, file
🤖 Agent prompt Terminal-styled $-prefixed block on dark background
📱 Responsive Degrades gracefully from desktop to 500px viewport

🖥️ Dashboard GUI

Dark-theme browser command centre at http://127.0.0.1:8765:

Features: Stats row · Project identity + risk cards · Shared inputs (query, repo URL, budget, goal, flags) · Toggle pills (fast scan, dry-run, apply, verify, adapters) · Tool cards (Understand, Ask, Reports, Quality, Memory, Maintenance, Analyze URL) · Output terminal · Suggestions + prompt · Focus/hotspots/frameworks · File risks + review signals tables · Health timeline · Auto-refresh (3s)


🏛️ Architecture

Sentinel Architecture


🚀 Commands

Command What It Does
scan Analyse project structure, risks, hotspots
brief One-line summary with the top suggestion
overview Full project description with components, hotspots, workflow
context Token-efficient project brief for AI agents
prompt Focused next-step prompt with goal selection
retrieve Find files, symbols, and snippets matching a query
ask Answer a natural-language question about the project
analyze-url Clone a git URL and generate a complete report bundle
graph Extract AST symbols, import graph, call graph
verify Preview or run focused tests for changed files
dashboard Launch the live browser GUI
report Save a Markdown or HTML report
pr Summarise changes, risks, and suggested tests
release-check Open-source readiness checklist
coverage Identify weakly tested areas from coverage.xml
timeline Show scan history, task memory, and token savings
memory Record or list task memory
savings Show estimated token savings
autofix Plan or apply small safe fixes
doctor Validate configuration and paths
mcp Run as a stdio MCP server
mcp-health Validate MCP tool availability
kilo-setup Configure Kilo with Sentinel-first rules
kilo-bridge Set up the no-MCP file bridge
kilo-refresh Refresh Kilo context files before a task
watch Continuously scan at an interval

🏁 Quick Start

Sentinel Product Flow

Install

One-liner (any platform):

pip install git+https://github.com/Ntooxx/Sentinel.git

From source (for development):

git clone https://github.com/Ntooxx/Sentinel.git
cd Sentinel
pip install -e .

Windows users: double-click install.ps1 or run:

powershell -ExecutionPolicy Bypass -File install.ps1

After install, the project-sentinel command is available globally.

Scan

# Scan the current directory
project-sentinel scan . --fast

# Launch the live dashboard
project-sentinel dashboard . --fast

Generate Reports

# Beautiful HTML report
project-sentinel report . --format html

# Markdown report
project-sentinel report . --format markdown

AI Agent Workflow

# Generate an agent-ready prompt
project-sentinel prompt . --goal next --budget small --fast

# Ask a question about your codebase
project-sentinel ask . --question "where is authentication handled?" --fast

# Analyse any GitHub repo
project-sentinel analyze-url https://github.com/user/repo --fast

🤖 Token-Saving Workflow

Maximize your AI agent's effectiveness while minimizing token spend:

# Step 1: Get the big picture
project-sentinel overview . --fast --quiet

# Step 2: Get a compact context pack (~2,500 tokens)
project-sentinel context . --budget small --fast --quiet

# Step 3: Get a focused next-step prompt
project-sentinel prompt . --goal next --budget small --fast --quiet

What the agent receives:

Output Tokens Value
Project overview ~1,500 Full project understanding
Compact context pack ~2,500 Replace hours of file reading
Focused next-step prompt ~800 Actionable direction
High-value focus files ~500 Narrowed verification path
Total ~5,300 Complete project intelligence

🔬 Development

# Run the full test suite
python -m unittest discover -s tests -v

# 197 tests · 0 failures · 9.3 seconds
┌─────────────────────────────────────────────────────────┐
│  Test Results                                           │
│                                                         │
│  ████████████████████████████████████████████████  100%  │
│                                                         │
│  197 passed  ·  0 failed  ·  9.3s                      │
│  No flaky tests  ·  No external dependencies           │
└─────────────────────────────────────────────────────────┘

📈 Reproducible Benchmark

Run Sentinel against all bundled fixture repos to verify performance claims on your own machine:

project-sentinel benchmark . --fast

Example output from a real run:

SENTINEL BENCHMARK
Benchmarked 7 fixture(s)
  cpp_repo              files=    2  lines=     6  time=  0.007s  health=85%
  docs_heavy            files=    2  lines=     6  time=  0.006s  health=85%
  generated_heavy       files=    2  lines=     8  time=  0.008s  health=85%
  go_service            files=    2  lines=     6  time=  0.007s  health=85%
  node_app              files=    2  lines=    19  time=  0.006s  health=85%
  python_app            files=    3  lines=    14  time=  0.007s  health=95%
  rust_cli              files=    2  lines=     8  time=  0.007s  health=85%

Benchmarks run entirely offline with zero external dependencies.


📁 Examples

See the examples/ directory for ready-to-run scripts:

# Scan the Sentinel repo itself
project-sentinel scan . --fast

# Generate an HTML report
project-sentinel report . --format html

# Launch the dashboard
project-sentinel dashboard . --fast

# Run a benchmark on all fixture repos
project-sentinel benchmark . --fast

25,000 files · 6 million lines · One command · Under a minute · No cloud

⬆ Back to Top