DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
How secrets work in multi-service OSC stacks (and one mistake we helped a customer avoid)
birme profile

How secrets work in multi-service OSC stacks (and one mistake we helped a customer avoid)

#opensource #devops #security #cloud
Comments
4 min read
Static Analysis for LLM Prompt Security: A Methodology for Pre-Deploy Vulnerability Detection.
meghal_parikh_b8c5c6e3244 profile

Static Analysis for LLM Prompt Security: A Methodology for Pre-Deploy Vulnerability Detection.

#security #ai #typescript #webdev
Comments
11 min read
Your AI Agent Dockerfile Might Be Leaking Secrets
raju_dandigam profile

Your AI Agent Dockerfile Might Be Leaking Secrets

#docker #security #node #devops
1
Comments
7 min read
Ollama Out-of-Bounds Read, Docker UFW Bypass, & EagleSpy RAT Analysis
soytuber profile
soy

Ollama Out-of-Bounds Read, Docker UFW Bypass, & EagleSpy RAT Analysis

#security #cybersecurity #vulnerability
Comments
4 min read
Deep inside the COM: Reading Windows ROT Without Asking Permission. Detective story
steelfactor profile

Deep inside the COM: Reading Windows ROT Without Asking Permission. Detective story

#windows #c #security #reverseengineering
Comments
4 min read
LangChain ChromaDB Metadata Priority Injection — RAG Poisoning Vulnerability
pav_j_9391d9a9c1bcac profile
PJ

LangChain ChromaDB Metadata Priority Injection — RAG Poisoning Vulnerability

#security #langchain #llm #vulnerability
Comments
1 min read
Pipelock Agent Egress Control: the missing CI primitive for AI agents
luckypipewrench profile

Pipelock Agent Egress Control: the missing CI primitive for AI agents

#security #ai #opensource #mcp
Comments
3 min read
Proposal on Play Store security measures (alternative to Google's mandatory "developer verification")
indigotime profile

Proposal on Play Store security measures (alternative to Google's mandatory "developer verification")

#android #google #keepandroidopen #security
Comments
6 min read
When prompts become shells: the tool registry is the attack surface
mspro3210 profile

When prompts become shells: the tool registry is the attack surface

#security #cve #aiagents #ai
Comments
4 min read
Why I Built an ML-Powered Secrets Detector Instead of Just Using Regex
pgmpofu profile

Why I Built an ML-Powered Secrets Detector Instead of Just Using Regex

#security #machinelearning #appsec #python
Comments
8 min read
I built 14 VS Code extensions to fix the workflows developers quietly suffer through
imatulsrivas profile

I built 14 VS Code extensions to fix the workflows developers quietly suffer through

#vscode #extensions #security #ai
Comments
2 min read
Why Prompt Injection Is an Architectural Problem - Not Just a Security Bug
naresh_007 profile

Why Prompt Injection Is an Architectural Problem - Not Just a Security Bug

#ai #security #llm #architecture
Comments
11 min read
"Secure Financial Workflows: Key Lessons from the Trenches"
edgardtech profile

"Secure Financial Workflows: Key Lessons from the Trenches"

#backend #postgres #python #security
Comments
2 min read
Surviving Byzantine Fire: Empirical Proof of a Deterministic Web3 AI Architecture
lokii_ding profile

Surviving Byzantine Fire: Empirical Proof of a Deterministic Web3 AI Architecture

#ai #webdev #security #blockchain
1
Comments
4 min read
CORS: Why It Exists, How It Works & How to Fix Common Issues
akash_shukla profile

CORS: Why It Exists, How It Works & How to Fix Common Issues

#api #security #tutorial #webdev
Comments
5 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.