Activity
Mon
Wed
Fri
Sun
Mar
Apr
May
Jun
Jul
Aug
Sep
Oct
Nov
Dec
Jan
Feb
What is this?
Less
More
Memberships
Builder’s Console Log 🛠️
2k members • Free
ChatGPT Users
12.7k members • Free
36 contributions to Builder’s Console Log 🛠️
1 like • 4d
@Corbin Brown Be very careful using this: OpenClaw carries significant security risks due to its broad system access (files, credentials, browser history) and local execution model, making it vulnerable to prompt injections, where malicious web content tricks it into leaking data or running unauthorized actions. Recent issues include CVE-2026-25253 (patched in v2026.1.29), enabling one-click remote code execution via WebSocket hijacking from malicious links, even on loopback-only setups. Misconfigurations have exposed databases, API keys, and chats publicly, with malicious skills and fake downloads spreading malware. Experts recommend isolating it in VMs, monitoring closely, and using latest versions, but risks remain non-zero for advanced users. This is really the same as Clawdbot or MoltBot or a bunch of these AI Agents that leave your computer open. @Corbin Brown I'm figuring you know how to secure your machine but other may not. Be very careful with these and it is best that if you are going to run it do so in a VM, so you can just destroy the machine if needed.
8d •
Finding something to code...
Most of the time when I see a need to do something like making an app, I find the need for something I am doing. Tonight I was getting ready to update some of my Home Assistant configurations when I started thinking why don't I have AI doing this? I looked and found a repository which was rather basic but it had the start of what I wanted. I then cloned the repository and opened it in AntiGravity and had Claude 4.5 start planning things I could do to it. Below is the pdf's of what I will be doing starting in the morning.
0 likes • 6d
Well, I have it working very well. It has .git to save the entire configuration in Home Assistant so if a mistake is made you can go backwards. It will help with devices and do automations for you when you put them in as plain English. There will be more coming as I do more on the RoadMap.
0 likes • 6d
Here is the look at a full conversation from the app.
16d •
OpenCode/AntiGravity...
Is anyone else using both OpenCode and AntiGravity together? I have setup skills in AntiGravity and am now using AntiGravity to send tasks to OpenCode and find I am getting better code and it is much faster as I can send multiple tasks to OpenCode at the same time. AI Said it all: Yes, AntiGravity and OpenCode can be integrated so AntiGravity's agents handle high-level planning and orchestration while delegating specific coding tasks to OpenCode agents for execution. Integration Overview AntiGravity excels at agent orchestration and multi-step planning, while OpenCode provides precise code editing, repo control, and model flexibility. Users install OpenCode as an extension in AntiGravity (via the Extensions panel), enabling commands like Cmd/Ctrl + Esc to launch sessions where AntiGravity prompts trigger OpenCode runs. Setup Steps - Install AntiGravity IDE and OpenCode globally or as an extension. - In AntiGravity, search "Open Code" in Extensions and install it. - Use shortcuts (Cmd/Ctrl + Esc for new session) or terminal commands like opencode run [task] to invoke OpenCode agents from AntiGravity. - Optionally, add the opencode-antigravity-auth plugin for shared authentication and rate limits. Workflow Example AntiGravity's agent (e.g., powered by Claude Opus) creates an implementation plan and task list, then delegates via prompts like "@attach plan" or "use OpenCode to improve CSS," where OpenCode executes edits autonomously. This builds full apps (e.g., CRM dashboards) in minutes, with AntiGravity as "conductor" and OpenCode as "lead engineer." This setup is free, bypasses rate limits via local OpenCode runs, and supports multiple parallel OpenCode agents
0 likes • 15d
This is what the several OpenCode agents did for me fairly quickly: I have completed the implementation of the API Key Encryption plan. Summary of Changes: 1. Infrastructure: * Generated a 32-byte base64 encryption key. * Updated bcardai/backend/.env (local) and .env.example with API_KEY_ENCRYPTION_KEY. 2. Crypto Utility: * Implemented bcardai/backend/src/utils/apiKeyCrypto.ts using AES-256-GCM. * Encryption produces a versioned format: enc:v1:<iv>:<tag>:<ciphertext>. * Decryption is backward-compatible, returning legacy plaintext keys as-is. * Added unit tests in src/utils/__tests__/apiKeyCrypto.test.ts (All passing). 3. Service Layer: * Created bcardai/backend/src/services/apiKeyService.ts to centralize DB interactions. * Handles transparent encryption on write and decryption on read for all user API keys. 4. API Routes: * Updated GET /api/users/api-keys and PUT /api/users/api-keys to use the new service. * Log Sanitization: Implemented masking for sensitive keys in request logs to prevent plaintext leakage. 5. Consumers (AI & Scraping Services): * Updated constructors for OpenAIService, OpenRouterService, GoogleAIService, ImageGenerationService, GoogleImageGenerationService, and ScrapingService to automatically decrypt keys/tokens upon initialization. 6. Workers: * Refactored ContentWorker and EbookWorker to use ApiKeyService.getUserApiKeys(userId), replacing direct and insecure field access. Verification: * Unit Tests: Crypto utility round-trip and legacy compatibility verified. * Type Checking: npm run typecheck passed successfully across the backend. * Security: Masking confirmed in API logs; keys are now stored as enc:v1:... in the database. The system is now securely encrypting user-provided API keys at rest while maintaining seamless compatibility with existing data.
1 like • 13d
@Tom Abendroth Yes, OpenCode works in everything!! It allows many AI providers (over 30), so all you have to do is type /connect then pick the provider you want and enter their api then type /model and pick the model you want.
Jan 10 •
Firebase...
I got an email today that told me my Firebase in one of my apps would be cancelled if I did not update my rules to it. I had no idea what to do so I entered the text of the email into Antigravity and the AI took care of it. It is so nice not having to worry about things!
Dec '25 •
Failed to call the Gemini API: user has exceeded quota
I vibe coded for 14 hours straight yesterday before hitting the quota limit. It's pretty incredible how much free quota Google gave me as a new user. I got all the way to almost the very end of How To Build Your First App with AI - Lesson 2. So I hauled out my credit card and upgraded my subscription from "Free" to "Tier 1". Imagine my delight when I found Google added a $300 usage credit to my account and did not actually withdraw any funds from the credit card I provided. One thing I did learn is that my $40 a month Gemini 3 subscription does not apply here. Google AI Studio is part of the Google Cloud infrastructure which is billed separately based on usage. I'll monitor the consumption of my $300 credit and report back here...
1 like • Dec '25
@Brad Codd I have had $0.01 charged to me since I started using AntiGravity, Firebase, and several other Google API's (YouTube, and Search), and that was last summer when I still used Vertex. I am on Google AI Pro but haven't really been limited by it at all. I did at first but since they have upped the limits I have not had any problems. In AntiGravity I mainly use Claude Opus 4.5 and Google 3.0 Pro Thinking. There is no extra charge for those on AntiGravity and I find since AG is VSCode I can do everything I want with it and it's MUCH better than AIStudio which charges you.
1 like • Dec '25
@Brad Codd It depends on what I'm doing and if I am really working on a project sometimes I do 8-10 hours a day. One thing I have is I still smoke and do not smoke in my home so I go out on my patio many times a day, usually while the AI is doing something. I'm old and retired so I have plenty of time.😄
1-10 of 36