DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
I got tired of running Docker manually. So I built a sandbox for AI-generated code.

I got tired of running Docker manually. So I built a sandbox for AI-generated code.

Comments
3 min read
Running untrusted, AI-generated code: why we built CreateOS Sandbox on Firecracker

Running untrusted, AI-generated code: why we built CreateOS Sandbox on Firecracker

7
Comments 3
4 min read
WalletConnect in Claude Desktop: Mobile Approval for AI Agent Transactions

WalletConnect in Claude Desktop: Mobile Approval for AI Agent Transactions

Comments
6 min read
React in Production — Ship It, Monitor It, Sleep at Night

React in Production — Ship It, Monitor It, Sleep at Night

4
Comments 1
9 min read
V.E.L.O.C.I.T.Y.-OS: Kimi K2.7 and the 'Safe-Room Security' Illusion (Part 1)

Self-healing OS running in CPU L3 cache

V.E.L.O.C.I.T.Y.-OS: Kimi K2.7 and the 'Safe-Room Security' Illusion (Part 1)

15
Comments 6
4 min read
Docker Security Dispatch — Issue 4: Miasma, Phantom Gyp, and AI Routing 🪱️

Docker Security Dispatch — Issue 4: Miasma, Phantom Gyp, and AI Routing 🪱️

12
Comments 3
4 min read
Como o kernel impede que processos executem instruções arbitrárias de CPU?

Como o kernel impede que processos executem instruções arbitrárias de CPU?

2
Comments
7 min read
How 23,000 Repos Got Their Secrets Stolen Through Their Own CI/CD Pipeline

How 23,000 Repos Got Their Secrets Stolen Through Their Own CI/CD Pipeline

2
Comments 1
15 min read
I built a red-team scanner for MCP servers. Then I pointed it at the real ones.

I built a red-team scanner for MCP servers. Then I pointed it at the real ones.

1
Comments 1
4 min read
Next.js 16 Server Actions Security: The Auth Check Most Developers Miss

Actions as public API endpoints

Next.js 16 Server Actions Security: The Auth Check Most Developers Miss

26
Comments 19
8 min read
Finding Exposed Services (and Fixing Them) with ScanSearch and Python

Finding Exposed Services (and Fixing Them) with ScanSearch and Python

Comments
5 min read
Beyond the Password: Modern Authentication Explained

Beyond the Password: Modern Authentication Explained

1
Comments
12 min read
An AI agent deleted my work without asking

An AI agent deleted my work without asking

Comments 1
2 min read
AI vendor selection is not software procurement

AI vendor selection is not software procurement

Comments 1
13 min read
MLSecOps Pipeline Security: Implementing Runtime Model Integrity Monitoring for Production AI Systems

MLSecOps Pipeline Security: Implementing Runtime Model Integrity Monitoring for Production AI Systems

Comments 1
5 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.