DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
"It's not a bug, it's spec": a zero-click RCE in AI coding agents that three vendors won''t patch

"It's not a bug, it's spec": a zero-click RCE in AI coding agents that three vendors won''t patch

1
Comments
6 min read
How the Model Context Protocol Became a Security Minefield — and What Researchers Are Doing About It

How the Model Context Protocol Became a Security Minefield — and What Researchers Are Doing About It

Comments
5 min read
đźś‚ SOVEREIGN

đźś‚ SOVEREIGN

1
Comments 1
5 min read
BadHost Was Inevitable. The Substrate Made It So.

BadHost Was Inevitable. The Substrate Made It So.

Comments
7 min read
veil-cli: a terminal wallet that makes you understand before you sign

veil-cli: a terminal wallet that makes you understand before you sign

Comments
4 min read
How I Test Every AI Agent for Prompt Injection Before Deployment

How I Test Every AI Agent for Prompt Injection Before Deployment

Comments 2
5 min read
Decrypt ransomware without paying: complete 2026 guide

Decrypt ransomware without paying: complete 2026 guide

Comments
10 min read
"Put a security gateway in front of any MCP server in 5 minutes"

"Put a security gateway in front of any MCP server in 5 minutes"

2
Comments
5 min read
Permission-Aware Retrieval: The Missing Layer in Enterprise RAG Security

Permission-Aware Retrieval: The Missing Layer in Enterprise RAG Security

Comments
6 min read
Why I Built 31+ Free Developer Tools That Never See Your Data

Why I Built 31+ Free Developer Tools That Never See Your Data

Comments
2 min read
My credential rule reported 842 secrets in vercel/ai. The real count was 0.

The failure of positive-only testing

My credential rule reported 842 secrets in vercel/ai. The real count was 0.

8
Comments 3
10 min read
Don't Trust Your SSH Config Until ssh -G Proves It: The Host * Ordering Trap

Don't Trust Your SSH Config Until ssh -G Proves It: The Host * Ordering Trap

Comments
6 min read
Self-Hosted AI Risk Gate in 10 Minutes: Meet ITTE – Your Pre-Deploy Risk Brain with Self-Evolving Memory

Self-Hosted AI Risk Gate in 10 Minutes: Meet ITTE – Your Pre-Deploy Risk Brain with Self-Evolving Memory

Comments
1 min read
Evals Are Alignment Enforcement: Why Your Safety Strategy Needs Runtime Checks

Evals Are Alignment Enforcement: Why Your Safety Strategy Needs Runtime Checks

1
Comments
5 min read
DIY vs Managed CSPM: An Honest Comparison

DIY vs Managed CSPM: An Honest Comparison

Comments
4 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.