Most of what the author discovered is real and technically correct, but it is also undocumented, unsupported, and risky to rely on.

GitHub has changed node ID internals before, quietly. If they add a field to the MessagePack array, switch encodings, encrypt payloads, introduce UUID-backed IDs..

every system relying on this will break instantly.

I fired up a 5$ Hetzner server, and then scanned 10k+ wordpress plugins for security issues, errors, warnings etc using .. it took around 5 days to complete..

and this is the result:

https://www.pluginscore.com/

Under the hood, it uses the official Plugin Check (via wp plugin check) and PHP_CodeSniffer with the WordPress standards, plus some extra checks for plugin repo requirements and performance. So its basically the plugin check but with a web interface. There are some false positives in the scan results but it gives an overall picture about a plugin.

I'm working on Chatolia, an AI chatbot builder.

The goal is to let anyone create task‑specific agents, train with their own data and an embed it into any site.

Training is simple: paste text, upload files (PDF, DOCX, Markdown, CSV), or paste URLs and it will crawl/index them into a per‑agent knowledge base.

https://www.chatolia.com/

I'd love to know what you think.

Inspired by iLovePDF, I am currently working on https://ilovellm.com

It is a small playground for text, vision, and audio models that use Transformers.js, WebGPU, and MediaPipe.

There's no server, no tracking, and no data leaving your device, everything runs locally. The models download once, cache for offline use.