Hello!

Anthropic is shaking things up by planting @Claude right into your Slack channels, turning collaboration into a seamless AI-powered experience. But hold onto your hats: a public Sentry key can now hijack Claude Code, Cursor, and Codex, raising serious security eyebrows.

Meanwhile, Nx is tackling the roadblocks facing AI coding agents with their latest release, Polygraph, aiming to smooth out the bumps and speed up development.

At Pagepro, we're all about making your Next.js & Sanity migrations as frictionless as possible (because who needs more headaches?).

Grab your coffee, settle in, and enjoy Frictionless.

System prompts belong to content, not code. Moving prompts into a content management system like Sanity allows marketing and legal to shape AI interactions directly, optimizing for customer engagement. This shift means non-developers can tweak AI behavior to better align with brand messaging, without touching a line of code.

Vercel just upped the ante for server-client communication. WebSocket support is now in public beta, letting you integrate real-time features like AI streaming and chat directly in your Vercel Functions. No extra setup is needed—Node.js libraries handle it all.

Two standout takeaways: first, you only pay for your Function's CPU time spent processing messages. Idle time? Free. Second, the simplicity is a game-changer. Use existing Node.js libraries or higher-level ones like Socket.IO without extra hassle.

Why care? If you're building collaborative apps, this is a game-changing update you shouldn't ignore. Ready to dive in? Read the full article.

In a tech-driven world, skills are your company's lifeblood. This article dives into how Sanity.io helped craft a skills platform that democratizes knowledge within an organization. No more gatekeeping by engineers; anyone can contribute.

Two big takeaways: 1. Decentralized Ownership: Empowering employees at all levels to document expertise creates a dynamic, up-to-date knowledge base. 2. Technical Flexibility: Using Sanity means seamless integration with existing tools, allowing for easier updates and maintenance.

Think your team can benefit from more shared expertise? Find out how they did it.

Deploying Node.js servers just got simpler with Vercel's zero-configuration setup. By detecting a server.ts file at the root or src/server.ts, Vercel automates deployment, supporting frameworks like Express, Koa, and NestJS. It's a game-changer for speeding up development cycles.

Vercel backs its backends with Fluid compute and Active CPU pricing, ensuring performance aligns with cost efficiency. A vital takeaway here: streamline your server handling and focus on coding. Zero config means more time for the things that matter. Curious about implementation details? Check it out.

AI isn't just about smart prompts anymore. Enter loop engineering, where the real action is in developing autonomous systems. These systems decide tasks, execute them, verify outcomes, and get better over time. Sounds straightforward, right? Not quite. The trickiest parts are setting reliable stop conditions and designing tools that agents actually want to use.

Only 20% of AI projects succeed without robust verification. Knocking out context rot and refining independent checks are non-negotiables for a future-ready system. Autonomy isn't just a feature; it's a new frontier.

Curious how to keep your AI fresh and effective?

Anthropic's new Claude Tag embeds an AI agent within your Slack channels—permanently. Forget pinging an assistant for one-off tasks. Claude now gathers knowledge autonomously, understands your team's workflow, and acts without prompting.

Here's where it gets interesting. Claude Tag isn't just passive. It draws insights from across channels, providing a unified view of your organization's data. Imagine reducing bottlenecks with an AI that doesn't need babysitting, knows your team's lingo, and picks up on unresolved issues automatically.

The real kicker? Claude acts as a team member. Any task started by one person can be completed by another. This shared dynamic transforms AI from a tool into a true coworker.

Need an AI that works like a team member, not just a tool? Give Claude a spin.

A simple Sentry key can turn your AI coding agent into a hacker's playground. Tenet Security's Threat Labs uncovered a method they call 'agentjacking' that exploits AI's inability to differentiate between trustworthy data and malicious instructions. The attack mimics a routine error fix request, misguiding the AI to execute harmful code, bypassing traditional security without the need for malware or stolen credentials.

The stark reality here: Public Data Source Names (DSNs) combined with AI's blind trust form a critical security gap. Any exposed DSN offers a backdoor for attackers, exploiting AI's natural operation to wreak havoc.

Are your AI systems guarding data or handing it over on a platter?

AI coding agents hit a roadblock when juggling multiple repositories. Nx’s new tool, Polygraph, seeks to change the game by creating a 'synthetic monorepo' that lets agents operate across different codebases seamlessly. Unlike a traditional monorepo, it doesn't physically combine code but uses a dependency graph to keep everything connected.

Polygraph could transform how AI agents function. By providing a shared memory, it enhances an agent's autonomy, allowing continuous work without needing constant human intervention. Expect a potential speedup from managing coordination overhead.

Considering how your organization handles code? Polygraph might just cut through the chaos.

Think your firewall's safe? Guess again. A sprawling breach of Fortinet firewalls handed Russian-speaking attackers almost unlimited access to major players like Oracle and Chevron. Researchers found nearly 74,000 devices compromised across 194 countries. That's no small glitch — it's a digital landslide.

Half of all Internet-facing Fortinet firewalls were affected.

This isn't just another cybersecurity scare; it's a wake-up call for tighter controls and routine checks. Is your network next on the target list? Secure your gates before you find out.

Do you have any comments about this newsletter issue or questions you want to ask? Drop me a message or book a meeting.