DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Unlocking GitHub Actions: Why the 'Workflow' Permission is a Productivity Bottleneck
devactivity profile
Oleg

Unlocking GitHub Actions: Why the 'Workflow' Permission is a Productivity Bottleneck

#githubactions #productivity #security #devops
Comments
4 min read
AWS Frontier Agents: What $50/Hour Pen Testing and $30/Hour SRE Means for Platform Teams
michaeltuszynski profile

AWS Frontier Agents: What $50/Hour Pen Testing and $30/Hour SRE Means for Platform Teams

#aws #aiagents #devops #security
Comments
4 min read
The Axios Breach Started with a Plaintext Token — Here's How I Keep Zero Secrets in My Repos
jasonm4130 profile

The Axios Breach Started with a Plaintext Token — Here's How I Keep Zero Secrets in My Repos

#security #terraform #devops #cicd
Comments
5 min read
FastAPI + MCP: Adding Real OAuth 2.1 Auth to Your Python MCP Server
peytongreen_dev profile

FastAPI + MCP: Adding Real OAuth 2.1 Auth to Your Python MCP Server

#python #fastapi #mcp #security
Comments 1
9 min read
The Claude Code Leak Changed the Threat Model. Here's How to Defend Your AI Agents.
tempnoob profile

The Claude Code Leak Changed the Threat Model. Here's How to Defend Your AI Agents.

#ai #security #agents #mcp
Comments
11 min read
Every agent trust proposal is building the wrong thing
viftode4 profile

Every agent trust proposal is building the wrong thing

#agents #security #ai #web3
Comments
3 min read
Why We Built a Local-First iPhone Authenticator Instead of Another Cloud-Synced 2FA App
locallensproject profile

Why We Built a Local-First iPhone Authenticator Instead of Another Cloud-Synced 2FA App

#opensource #security #ios #privacy
Comments
1 min read
DevSecOps in Practice: Tools That Actually Catch Vulnerabilities - Part 3 - SCA with pip-audit
pkkht profile

DevSecOps in Practice: Tools That Actually Catch Vulnerabilities - Part 3 - SCA with pip-audit

#devops #python #security #tooling
1
Comments 1
3 min read
HTTP/3 Fingerprints: Identifying Clients in the QUIC Era
lexiforest profile

HTTP/3 Fingerprints: Identifying Clients in the QUIC Era

#networking #privacy #security #webdev
1
Comments
3 min read
Azure Kubernetes Security: Checklist and Best Practices
mohamed_amine_hlali profile

Azure Kubernetes Security: Checklist and Best Practices

#azure #kubernetes #security #devops
1
Comments
3 min read
Why agent RBAC is broken in most CLI frameworks (and how to fix it)
authora profile

Why agent RBAC is broken in most CLI frameworks (and how to fix it)

#ai #security #devops #opensource
Comments
4 min read
I Thought JWTs Were Stateless. Turns Out Logout Made Me Build a Stateful Layer Anyway.
ravigupta97 profile

I Thought JWTs Were Stateless. Turns Out Logout Made Me Build a Stateful Layer Anyway.

#python #security #backend #authentication
2
Comments
8 min read
How to Authorize AI Agents Using Token Exchange Open Standards
kimmaida profile

How to Authorize AI Agents Using Token Exchange Open Standards

#agents #ai #api #security
9
Comments 6
9 min read
Lainux -- The Secure OS for AI Builders
razashariff profile

Lainux -- The Secure OS for AI Builders

#ai #security #linux #agents
Comments
2 min read
How I Built a Chrome Extension That Shows Who Is Tracking You Now and Cleans Your Browser in One Click
md_anwarulislamshawn_6 profile

How I Built a Chrome Extension That Shows Who Is Tracking You Now and Cleans Your Browser in One Click

#productivity #browser #extensions #security
Comments 1
1 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.