Best of Open SourceApril 2026

  1. 1
    Video
    Avatar of codeheadCodeHead·3w

    OpenClaw Can Do WHAT NOW

    OpenClaw, a self-hosted open-source AI assistant that reached 350K GitHub stars in under 3 months, has spawned several community forks: ZeroClaw (built in Rust, 3.4MB, boots in 10ms), NanoClaw (under 4,000 lines, minimal dependencies, security-focused), and Maltis (enterprise-grade with audit trails). OpenClaw also introduced a 'dreaming' feature that consolidates memory in three phases mimicking human sleep — light sleep scans chats, REM identifies patterns, and deep sleep permanently stores only high-scoring memories recalled across multiple contexts. A community plugin extends this further by generating surreal narratives about your day.

  2. 2
    Article
    Avatar of allthingsopenAll Things Open·4w

    How Linux Mint gave five “obsolete” library PCs a second life

    Five Dell OptiPlex 9030 All-in-One PCs from 2015, deemed obsolete because they don't meet Windows 11 requirements, were given a second life by installing Linux Mint Cinnamon 22.3. The machines, featuring i5 CPUs, 8 GB RAM, 23-inch displays, and built-in wireless, now run smoothly with full access to modern browsers, web conferencing tools, and hundreds of open source applications. One unit has already been donated to a local historical society for research and remote learning. The project illustrates how open source software can extend hardware lifespan, reduce e-waste, and provide communities with capable, secure computing at no cost.

  3. 3
    Video
    Avatar of codingwithlewisCoding with Lewis·5w

    GitHub has a malware problem

    GitHub's trending page is being exploited by attackers who create repositories with legitimate-sounding names and purchase fake stars to lure developers into downloading malware. Researchers built Star Scout, which scanned six years of GitHub metadata and identified over 6 million suspicious fake stars by detecting ghost accounts and coordinated starring clusters. One group called Banana Squad published nearly 70 repos mimicking real Python security tools, hiding malicious code by padding it with hundreds of blank spaces to push it off-screen. A separate campaign compromised a single GitHub Action and put over 23,000 repositories at risk. The open source ecosystem's trust model is being systematically exploited at scale.

  4. 4
    Article
    Avatar of collectionsCollections·2w

    Warp terminal goes open-source under AGPL, with OpenAI as founding sponsor

    Warp, the Rust-based AI terminal, has open-sourced its client code under a split license: MIT for UI framework crates and AGPL v3 for everything else. OpenAI is the founding sponsor, and agentic workflows run through Warp's proprietary cloud platform Oz. Key limitations include AI features still depending on Warp's backend, with bring-your-own-key model freedom locked behind paid plans. The community has already forked the project as OpenWarp to enable unrestricted OpenAI-compatible endpoints. CEO Zach Lloyd frames this as a competitive business move rather than a philosophical shift, aiming to attract developers who avoid proprietary tools while the developer tooling space consolidates rapidly following Roo Code's sunset and Cursor's acquisition.

  5. 5
    Article
    Avatar of dev_worldDev World·4w

    OpenVid: The Open-Source Studio to Create Cinematic Demos in Your Browser

    OpenVid is a browser-based, open-source video editor designed for developers and makers who need to create professional product demos quickly. It requires no installation and has no complex timeline, running entirely in the browser for fast, cinematic results. The project is available on GitHub and can be tried at openvid.dev.

  6. 6
    Article
    Avatar of astral-shAstral·5w

    Open source security at Astral

    Astral shares the security practices they use to protect their open source tools (Ruff, uv, ty) from supply chain attacks. Key areas covered include: hardening GitHub Actions CI/CD by banning dangerous triggers like pull_request_target, pinning all actions to commit SHAs, limiting permissions, and isolating secrets in deployment environments. For releases, they use Trusted Publishing to eliminate long-lived credentials, Sigstore-based attestations, immutable releases, and two-person approval gates. They also use GitHub Apps to safely handle tasks that GitHub Actions can't do securely, maintain dependency hygiene with Dependabot/Renovate plus cooldowns, and contribute financially and technically to upstream projects. The post includes shareable GitHub rulesets and practical recommendations for other maintainers.

  7. 7
    Article
    Avatar of hnHacker News·3w

    GitHub - calcom/cal.diy: Scheduling infrastructure for absolutely everyone.

    Cal.diy is a fully MIT-licensed, community-maintained fork of Cal.com with all enterprise and commercial code removed. It provides open-source scheduling infrastructure for self-hosters who want complete control without license keys or proprietary features. Built on Next.js, tRPC, React, Tailwind CSS, and Prisma with PostgreSQL, it supports Docker-based deployment, manual setup, and one-click deploys to Railway, Vercel, Render, and Northflank. The README covers full setup instructions including environment configuration, database migrations, E2E testing with Playwright, and integration guides for Google Calendar, Microsoft 365, Zoom, HubSpot, and more.

  8. 8
    Video
    Avatar of t3dotggTheo - t3․gg·2w

    GitHub has a fake star problem…

    A deep dive into the fake GitHub star economy, covering a peer-reviewed CMU/NC State/Socket study that identified ~6 million suspected fake stars across 18,600 repos. The investigation reveals a mature shadow market where stars sell for 3 cents to 90 cents each, with ROI of up to 117,000x when used to manufacture VC funding traction. Key findings include detection heuristics like fork-to-star and watcher-to-star ratios, analysis of specific AI and blockchain repos showing manipulation signals, how VC firms like Redpoint explicitly use star counts as sourcing benchmarks, and GitHub's reactive-only enforcement leaving the fake account infrastructure largely intact. The piece also covers legal exposure under FTC rules and SEC wire fraud precedents, and recommends alternative metrics like contributor activity and package downloads.

  9. 9
    Article
    Avatar of phpdevPHP Dev·4w

    DebugPHP is live. Free, open-source, real-time PHP debugging in the browser.

    DebugPHP is a free, MIT-licensed, open-source PHP debugging tool that lets developers send any variable or data to a live browser dashboard using a single `Debug::send()` call. It requires no configuration, no desktop app, and no page reloads. Features include real-time log entries with filtering, table rendering, a built-in timer, live toolbar metrics, automatic environment detection, and click-to-open IDE integration (VS Code, Cursor, PhpStorm, Sublime). It has zero runtime dependencies beyond ext-curl, is fully self-hostable, and collects no telemetry.

  10. 10
    Video
    Avatar of fireshipFireship·5w

    Google just casually disrupted the open-source AI narrative…

    Google released Gemma 4 under the Apache 2.0 license, making it truly free and open source — a rarity among major tech companies. What makes it stand out is its small size: the largest variant runs on a consumer RTX 4090 with a 20 GB download, while edge variants run on phones or Raspberry Pi, yet it benchmarks comparably to much larger models requiring data center hardware. The efficiency comes from two techniques: per-layer embeddings, which give each transformer layer its own token representation so information is introduced only when needed, and TurboQuant, a new quantization approach that converts weights to polar coordinates and uses the Johnson-Lindenstrauss transform to compress high-dimensional data to single sign bits while preserving distances. The result is a small, capable, locally-runnable model suitable for fine-tuning with tools like Unsloth.

  11. 11
    Article
    Avatar of wincmdWindows Command Line·2w

    PowerToys 0.99 is here: new monitor controls, easier window management, and Dock upgrades

    PowerToys 0.99 ships two new preview utilities: Power Display for controlling monitor settings (brightness, contrast, color profiles) directly from the system tray, and Grab And Move for dragging/resizing windows via Alt+Click anywhere on the window. Command Palette and the Dock receive major improvements including a Compact Dock mode, persistent calculator history, better pinning controls, crash fixes, and Windows Terminal profile pinning. Keyboard Manager gains editable recorded keys and a new Disabled action. ZoomIt adds scrolling screenshots and text extraction. Image Resizer migrates from WPF to WinUI 3, and Advanced Paste fixes modifier-key injection issues with Electron/Chromium apps.

  12. 12
    Article
    Avatar of phProduct Hunt·3w

    The #1 open-source CRM

    Twenty 2.0 is an open-source CRM platform launching as a developer-extensible alternative to Salesforce and HubSpot. The major addition is a new SDK (npm i twenty-sdk) that lets developers define data models, custom objects, workflows, layouts, and widgets in code within their own repos. It ships with built-in AI chat, custom agents, serverless functions, full layout and navigation customization, and remains self-hostable. The goal is to give teams a CRM they fully own and can build on top of, without vendor lock-in.

  13. 13
    Article
    Avatar of dailyopensourcetoolsDaily Open Source Tools·2w

    openvid: The Open-Source Studio to Create mockups and demos in Your Browser

    OpenVid is a browser-based, open-source video editor designed for developers and makers who need to create product demos and mockups quickly. It requires no installation and offers a simplified interface focused on producing cinematic-quality results without a complex timeline editor.

  14. 14
    Article
    Avatar of dhhDavid Heinemeier Hansson·4w

    The malleable computer

    AI is finally delivering on open source's original promise: letting anyone modify the software they run. Even non-programmers can now fork and customize local open-source apps with AI assistance. The author argues this is most powerful on Linux, where the entire OS — window managers, menu bars, notifications — is open to modification, unlike Windows or macOS. As AI models improve, the idea of a fixed, unchangeable computer may soon feel outdated.

  15. 15
    Article
    Avatar of lobstersLobsters·4w

    Programming used to be free

    A personal reflection on how free and open-source software democratized programming, enabling people with limited resources to enter the field. The author draws a parallel to the pre-FOSS era of expensive proprietary software and warns that LLM-centric development workflows risk recreating that same plutocracy — where meaningful participation requires expensive hardware or paid subscriptions, locking out hobbyists, developers in underdeveloped countries, and those without institutional backing.

  16. 16
    Article
    Avatar of socketdevSocket·5w

    Node.js Drops Bug Bounty Rewards After Funding Dries Up

    Node.js has paused its bug bounty program after the Internet Bug Bounty (IBB) initiative, which funded it since 2016, was discontinued. The IBB, backed by companies like Microsoft and Facebook, stopped accepting new submissions on March 27 due to funding issues and a surge in AI-assisted vulnerability research that overwhelmed remediation capacity. Security reporting through HackerOne continues, but researchers will no longer receive financial rewards. The move mirrors cURL's recent decision to drop its bounty program after being flooded with low-quality AI-generated reports. The shift raises broader concerns about how critical open source infrastructure funds security work, as Node.js now relies on voluntary, goodwill-driven disclosure at a time when supply chain attacks and automated vulnerability discovery are increasing.

  17. 17
    Article
    Avatar of itsfossIt's Foss·5w

    Even in 2026, Linux Is Still Adding Support for Sega Dreamcast’s GD-ROM from the '90s

    The Linux kernel is adding a patch to fix support for the GD-ROM driver used by Sega's Dreamcast console from 1999. This reflects Linux's long-standing tradition of supporting legacy and niche hardware driven by open source community enthusiasm. The post highlights how FOSS philosophy enables developers to maintain support for obscure hardware with minimal user demand, and touches on Linux's broader retro gaming ecosystem including RetroArch and RetroPie.

  18. 18
    Article
    Avatar of ubqa4zl8noglmlpvdnr79Prince Kumar·6w

    Claude code become open source?

    Claude Code's internal source was accidentally leaked via a source map file, exposing ~500K lines of TypeScript. Following DMCA takedowns of mirrors, the community responded by creating Claw Code — a clean-room reimplementation of Claude Code's architecture written in Python and Rust. The project recreates the agent tools, query engine, and orchestration without copying proprietary code, making it a legitimate open-source alternative. It quickly became one of the fastest-growing repos on GitHub.

  19. 19
    Article
    Avatar of bartwullemsThe Art of Simplicity·6w

    Awesome GitHub Copilot just got awesommer (if that’s a word)

    The Awesome GitHub Copilot repository, a community hub for custom instructions, prompts, agents, and chat modes, now has a dedicated website and Learning Hub. The site at awesome-copilot.github.com offers full-text search across 175+ agents, 208+ skills, 176+ instructions, and more, with category filters, modal previews, and one-click installs into VS Code. The Learning Hub explains core concepts like agents, skills, hooks, and plugins. The plugin system lets users bundle related agents and skills into installable packages, and Awesome GitHub Copilot is now a default plugin marketplace for GitHub Copilot CLI and VS Code.

  20. 20
    Video
    Avatar of linuxcastThe Linux Cast·4w

    Is Linux Only for Developers?

    Linux is not just for developers — it's a viable platform for musicians, photo editors, video editors, and office workers. While Linux uses different applications than Windows or macOS (e.g., LibreOffice instead of Microsoft Word, GIMP/Krita instead of Photoshop, Kdenlive/DaVinci Resolve instead of Premiere), these alternatives allow non-developers to get real work done. The command line is also not a barrier, as most tasks can be accomplished through graphical interfaces.

  21. 21
    Article
    Avatar of rustfoundationRust Foundation·4w

    RustConf 2026: Speakers Announced, Registration Open

    RustConf 2026 registration is now open, with the conference scheduled for September 8-11 in Montreal (plus an online option). The program features an expanded schedule with a new track, Community Lightning Talks, and Project Updates sessions. Highlighted keynotes include Jon Seager covering Rust adoption in Ubuntu (including Rust-based rewrites of coreutils and sudo), and a closing fireside chat between Rust Foundation CEO Rebecca Rumbul and Python Software Foundation ED Deb Nicholson on open source governance, security, and cross-ecosystem interoperability.

  22. 22
    Article
    Avatar of lobstersLobsters·2w

    Github banned me for no understandable reason

    A developer shares their experience of being unexpectedly banned from GitHub with no explanation, no email notification, and a frustrating support process that required having an active account to appeal. The ban erased all their contributions, comments, and pull requests, and blocked access to features like code search, GitHub Sponsors, CI artifacts, and HACS for Home Assistant. The author speculates the ban may have been triggered by adblocker filter lists, an ad-blocking tool for a VR game, or a joke repo using Unicode text-reversal characters. They urge developers to migrate away from GitHub given the risk of sudden account erasure. The account was reinstated roughly three hours after the post was published, seemingly prompted by the public attention.

  23. 23
    Video
    Avatar of t3dotggTheo - t3․gg·4w

    I think every company should open source their code.

    A strong argument for why companies should open source their software, framed around the emerging 'building block economy.' The core thesis is that AI agents prefer open, modular, well-documented components over closed commercial software, and that the future of competitive advantage lies in letting customers fork and customize your product rather than building every feature yourself. Uses T3 Code's 1,500 forks and Mitchell Hashimoto's Ghosty/libghosty growth data as evidence. Also introduces the concept of a 'patch.md' file — a plain-English description of user customizations that enables AI-assisted merge conflict resolution when upstream updates break forks — as a path toward self-forking, self-healing software.

  24. 24
    Article
    Avatar of selfhstselfh.st·2w

    Self-Host Weekly (24 April 2026)

    A weekly self-hosting newsletter covering notable events from the week of April 24, 2026. Highlights include Microsoft's controversial GitHub CLI telemetry opt-in, a Bitwarden CLI supply chain compromise, a DDoS attack on Mastodon's flagship server, and the ongoing dispute between Nextcloud, LibreOffice, Collabora, and Euro-Office. Also featured is Anchor, a new offline-first self-hosted note-taking app deployable via Docker, plus a curated list of self-hosting videos and a quick CLI tip for the mkdir -p flag.

  25. 25
    Article
    Avatar of selfhstselfh.st·5w

    Self-Host Weekly (27 March 2026)

    A weekly self-hosting newsletter covering GitHub Copilot's new AI training opt-out setting, OpenAI shutting down Sora and pivoting to coding tools, LibreOffice's response to donation banner complaints, a critical Dockhand security release, Booklore's discontinuation and emerging forks (Grimmory, BookLite), Plex mobile metadata editing, a Zoom privacy scandal, and a spotlight on Kaneo, a self-hosted project management tool. Also includes curated videos on WireGuard, Proxmox vs XCP-ng, and homebrew routers following the FCC ban on Chinese-made consumer routers.

See all Open Source archives