The latest articles on DEV Community by Omobolaji Adeyan (@doidun2). https://dev.to/doidun2 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3976519%2F273a2c45-4b87-406f-a703-ae44fbdb05c5.jpg https://dev.to/doidun2 en Omobolaji Adeyan Tue, 09 Jun 2026 19:28:21 +0000 https://dev.to/doidun2/phishguard-ai-291k https://dev.to/doidun2/phishguard-ai-291k <p>I have added explainable SPF, DKIM, and DMARC signals to PhishGuard AI, my open-source Python phishing-detection project.</p> <p>The implementation parses a trusted receiver's <code>Authentication-Results</code>header and treats authentication failures as supporting evidence rather thanproof of phishing.</p> <p>Measured regression examples:</p> <ul> <li>A legitimate forwarded message with SPF failure remained <code>SAFE</code>, moving from <code>0.3149</code> to <code>0.3595</code>.</li> <li>A synthetic credential lure with SPF, DKIM, and DMARC failures moved from <code>0.6525 SUSPICIOUS</code> to <code>0.8220 PHISHING</code>.</li> </ul> <p>Pass results do not reduce the risk score because authenticated infrastructure can still send malicious messages. Missing, malformed, and unsupported values remain <code>unknown</code>.</p> <p>The change includes case-insensitive parsing, forwarding false-positive coverage, CLI support, documentation, packaging verification, repository policy checks, CodeQL, and tests across Python 3.10 through 3.13.</p> <p>Pull request and engineering evidence:<br> <a href="https://github.com/omobolajiadeyan/phishguard-ai/pull/21" rel="noopener noreferrer">https://github.com/omobolajiadeyan/phishguard-ai/pull/21</a></p> <p>The project now also has a one-minute safe demo and a guide for first-time contributors:</p> <p><a href="https://github.com/omobolajiadeyan/phishguard-ai" rel="noopener noreferrer">https://github.com/omobolajiadeyan/phishguard-ai</a></p> <p>I welcome technically grounded feedback, testing, documentation improvements, and focused open-source contributions.</p> <h1> Cybersecurity #Python #EmailSecurity #OpenSource #DevSecOps </h1> <h2> Suggested Featured Link </h2> <p>Title: Explainable SPF, DKIM and DMARC Signals in PhishGuard AI</p> <p>URL: <a href="https://github.com/omobolajiadeyan/phishguard-ai/pull/21" rel="noopener noreferrer">https://github.com/omobolajiadeyan/phishguard-ai/pull/21</a></p> <p>Description: Conservative email-authentication scoring with false-positive regressions, documented trust boundaries, cross-version tests, CodeQL, and reproducible before-and-after results.</p> ai python security showdev