DEV Community

Josh Waldrep profile picture

Josh Waldrep

Plumber by trade, open-source security by night. Building tools to keep AI agents honest. Creator of Pipelock.

Location USA Joined Joined on  Personal website https://pipelab.org github website twitter website

Pin Pinned

What is an agent firewall?
luckypipewrench profile

What is an agent firewall?

#security #ai #devops #opensource
1
Comments
6 min read
What CSA, SANS, and OWASP Just Told Every CISO About Runtime Agent Security
luckypipewrench profile

What CSA, SANS, and OWASP Just Told Every CISO About Runtime Agent Security

#security #ai #opensource #owasp
2
Comments
4 min read

Want to connect with Josh Waldrep?

Create an account to connect with Josh Waldrep. You can also sign in below to proceed if you already have an account.

Create Account
Already have an account? Sign in
Why Domain Allowlists Aren't Enough for AI Agent Security
luckypipewrench profile

Why Domain Allowlists Aren't Enough for AI Agent Security

#security #ai #devops #opensource
2
Comments
11 min read
The State of MCP Security 2026: Incidents, Attack Patterns, and Defense Coverage
luckypipewrench profile

The State of MCP Security 2026: Incidents, Attack Patterns, and Defense Coverage

#security #ai #mcp #opensource
3
Comments
15 min read
Why AI Guardrails Aren't Enough for Agent Security
luckypipewrench profile

Why AI Guardrails Aren't Enough for Agent Security

#security #ai #guardrails #opensource
2
Comments
8 min read
The AI Agent Security Acquisition Wave: What It Means for Buyers
luckypipewrench profile

The AI Agent Security Acquisition Wave: What It Means for Buyers

#security #ai #startup #opensource
2
Comments
8 min read
MCP Scanner Comparison: Cisco vs Snyk vs Pipelock
luckypipewrench profile

MCP Scanner Comparison: Cisco vs Snyk vs Pipelock

#security #ai #mcp #opensource
3
Comments
7 min read
Best AI Agent Security Tools 2026: 15 Options Compared
luckypipewrench profile

Best AI Agent Security Tools 2026: 15 Options Compared

#security #ai #opensource #devops
2
Comments
12 min read
Claude Mythos Can Find Zero-Days. What Happens When Your Coding Agent Can Too?
luckypipewrench profile

Claude Mythos Can Find Zero-Days. What Happens When Your Coding Agent Can Too?

#security #ai #opensource #devops
3
Comments
4 min read
I published my benchmark scores. Your turn.
luckypipewrench profile

I published my benchmark scores. Your turn.

#security #ai #opensource #benchmark
1
Comments
4 min read
LinkedIn Scanned 6,222 Browser Extensions. Your AI Agent's Browser Is Next.
luckypipewrench profile

LinkedIn Scanned 6,222 Browser Extensions. Your AI Agent's Browser Is Next.

#security #ai #browsers #opensource
3
Comments
5 min read
What Happens When Your AI Agent Makes an HTTP Request
luckypipewrench profile

What Happens When Your AI Agent Makes an HTTP Request

#security #ai #mcp #opensource
3
Comments
5 min read
One request looks clean. Five requests leak your AWS key.
luckypipewrench profile

One request looks clean. Five requests leak your AWS key.

#security #ai #opensource #devops
Comments
5 min read
We built a test corpus for AI agent egress security tools
luckypipewrench profile

We built a test corpus for AI agent egress security tools

#security #ai #opensource #mcp
1
Comments 1
3 min read
Guardrails deleted, now what?
luckypipewrench profile

Guardrails deleted, now what?

#security #ai #opensource #go
Comments
4 min read
Your MCP server's tool descriptions are an attack surface
luckypipewrench profile

Your MCP server's tool descriptions are an attack surface

#security #ai #mcp #opensource
11
Comments 25
6 min read
"CVE-2026-25253: WebSocket hijacking turns your AI agent into an attack tool"
luckypipewrench profile

"CVE-2026-25253: WebSocket hijacking turns your AI agent into an attack tool"

#security #ai #websocket #mcp
Comments
5 min read
Your AI agent leaks API keys through DNS queries
luckypipewrench profile

Your AI agent leaks API keys through DNS queries

#security #ai #webdev #devops
Comments
4 min read
Every protocol your agent speaks, scanned
luckypipewrench profile

Every protocol your agent speaks, scanned

#security #ai #mcp #websocket
Comments
4 min read
6 months until the EU AI Act hits. Here's what runtime security means.
luckypipewrench profile

6 months until the EU AI Act hits. Here's what runtime security means.

#security #ai #devops #opensource
Comments
7 min read
The first AI agent espionage campaign, and what defenses actually matter
luckypipewrench profile

The first AI agent espionage campaign, and what defenses actually matter

#devo #ai #opensource #security
1
Comments
6 min read
The v0.2 roadmap for Pipelock. GitHub Actions integration, MCP input scanning, smart DLP, and the path to Pipelock Pro.
luckypipewrench profile

The v0.2 roadmap for Pipelock. GitHub Actions integration, MCP input scanning, smart DLP, and the path to Pipelock Pro.

#devops #ai #opensource #security
Comments
3 min read
Securing Claude Code with Pipelock
luckypipewrench profile

Securing Claude Code with Pipelock

#devops #security #ai #opensource
5
Comments
4 min read
283 ClawHub Skills Are Leaking Your Secrets. VirusTotal Can't Fix This.
luckypipewrench profile

283 ClawHub Skills Are Leaking Your Secrets. VirusTotal Can't Fix This.

#ai #security #devops #opensource
Comments
4 min read
Lateral movement in multi-agent LLM systems
luckypipewrench profile

Lateral movement in multi-agent LLM systems

#devops #ai #security #opensource
1
Comments
5 min read
loading...