Show HN: Track and bill users' AI token usage through an API https://ift.tt/7cd182s

Show HN: Track and bill users' AI token usage through an API Nowadays, everyone's building an AI app, but they're not pricing their apps fairly. Each user should be billed separately based on their GPT token usage, and many developers aren't tracking tokens. Instead, they just give a fixed price for their users, which isn't equitable. This is what I built Tiktokenizer to solve, it allows you to use OpenAI's GPT models and track each user's token usage through a single REST API. You could then use this API to get every user's token usage and bill them accordingly. https://ift.tt/coqRkOe May 12, 2023 at 01:05AM

Show HN: Browsing in Public https://ift.tt/09TXbrz

Show HN: Browsing in Public https://inpubliq.com May 12, 2023 at 12:55AM

Show HN: Browse, upvote and comment on HN from command line https://ift.tt/KroIPwb

Show HN: Browse, upvote and comment on HN from command line Hi HN! I've built hnterminal, a pip package that lets you browse, upvote, and comment on Hacker News from your terminal. To get started: $ pip install hnterminal $ hnterminal hnterminal is an interactive REPL environment with commands like "get_front_page", "get_tree", "upvote", "reply_to", etc, each of which supports rich arguments and comes with full help documentation. Checkout the readme. https://ift.tt/cht7pMV May 11, 2023 at 09:57PM

Show HN: Oneleet – Penetration Testing for SOC 2 and beyond https://ift.tt/4C8GpYJ

Show HN: Oneleet – Penetration Testing for SOC 2 and beyond Hello HN, Over the past months at Oneleet (YC S22), our team has been building https://app.oneleet.com , a compliance-focused pentesting-as-a-service platform. It allows companies to easily schedule and manage penetration tests, designed for both compliance and security enhancement. We collaborate exclusively with top-tier vetted penetration testers based in NATO countries, ensuring superior quality results. Competitors like Cobalt work with just about anyone, of which they put multiple on a single engagement to ‘average out’ the quality. Despite their efforts, it is still hit-and-miss. By being very selective about who we work with (many Cobalt pentesters don’t make the cut), we are very consistent in the level of insight and quality we provide. Our team puts a lot of work into making sure that pentest results can be leveraged beyond security improvements. We are fully aware that with the current SOC 2 craze[1] most companies are just looking to tick their compliance and control boxes[2][3], but that doesn’t mean you can’t have both that box ticked and fundamentally improve your app’s security. Which is why we make sure our pentests serve both purposes: Present technical detail at a deep level but also provide documentation that is meant to be a sales and trust-building tool. Some of the things I used to hate when I worked as a pentester myself was seeing how common it had become for pentesters to just take Nessus findings, slap a pentest report title page on it and then proudly proclaim how they found these critical ‘SSL’ and ‘HTTP Header’ findings. Not to mention how much trouble it can get you in with your auditor when they see all those criticals they don’t understand the nature of. When those auditors then require you to fix all those criticals, you quickly find yourself going down a rabbit hole of unnecessary engineering effort. Great pentesters, on the other hand, use those exact same tools but know what to do with the information that they generate. Take a tool like Burp Suite, which is known among pentesters as the go-to tool for manual web app pentesting. Despite it primarily being used for manual testing, it also has ‘auto scanning’ functionality built in that is mostly useless without a human guiding the tool. More than once I heard both pentesters and clients state: “We already do Burp Suite scanning, so we have that covered.” Don’t get me wrong.. there are plenty of tools that provide a lot of insight without needing human guidance. Running Nuclei[4] frequently on your web-facing hosts is a great way to spot low-hanging fruit-type vulnerabilities, but it will require you to at least have some basic understanding of what the reported findings entail, and whether the associated severities are accurate or not (CVSS scores can be very random, so using them as a yardstick can be a terrible idea). This is why we’re strict about not allowing testers to inflate the severity of findings, or to revert to reporting boilerplate findings that many automated tools spit out by default. If you’re interested in having a pentest performed, you can get started by going to https://app.oneleet.com . After registration, you will be guided through an onboarding flow after which you can schedule a call with the founding team and a pentester. We’d love to get your feedback and answer any questions you might have! References: [1] https://ift.tt/mDS4k7q ] [2] https://ift.tt/Xo8Ad4S [3] https://ift.tt/0beMknC [4] https://ift.tt/h7b13sy https://ift.tt/3Lgfsj1 May 11, 2023 at 11:37PM

Show HN: AutoGPT for Ethereum https://ift.tt/gSIDBxq

Show HN: AutoGPT for Ethereum I built this on a weekend, I would love to get some feedback on the app. https://www.etherpal.xyz/ May 11, 2023 at 02:55PM

Show HN: Interactive story map built using Google 3D Tiles and deck.gl https://ift.tt/cZsOxXn

Show HN: Interactive story map built using Google 3D Tiles and deck.gl https://ift.tt/h8iCTKN May 11, 2023 at 12:22PM

Show HN: BundleStore – increase revenue by offering your product in a bundle https://ift.tt/L3lmHrX

Show HN: BundleStore – increase revenue by offering your product in a bundle On BundleStore, users buy more to save more. By offering your product in a bundle, you can make your product instantly more attractive! Visit the website and tell me what your product is, and I'll do the rest. https://ift.tt/W4PMRFn May 11, 2023 at 02:28PM