DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Stop Overwriting Data: Audit Trails in Laravel 🛡️

Stop Overwriting Data: Audit Trails in Laravel 🛡️

Comments
2 min read
How Reasoning LLMs Can Be Pushed Into “Overthinking” and Why That Matters for AI Security

How Reasoning LLMs Can Be Pushed Into “Overthinking” and Why That Matters for AI Security

Comments
5 min read
I built a honeypot that wastes hackers' time instead of just logging them

I built a honeypot that wastes hackers' time instead of just logging them

Comments
2 min read
What is CORS and Why Does It Exist?

What is CORS and Why Does It Exist?

1
Comments
3 min read
A Practical Vibe Coding Security Checklist: What Passive Scanners Can and Cannot Prove

A Practical Vibe Coding Security Checklist: What Passive Scanners Can and Cannot Prove

Comments
5 min read
The monitoring agent that cannot be told what to do

The monitoring agent that cannot be told what to do

Comments
5 min read
A Differential Test Harness for Native vs. Generic XDP: Methodology and Baseline

A Differential Test Harness for Native vs. Generic XDP: Methodology and Baseline

Comments
9 min read
Security Monday #3: Two Security Issues Found in ClickMigrate

Security Monday #3: Two Security Issues Found in ClickMigrate

Comments
3 min read
Next.js Server Actions Are Public Endpoints: How I Lock Them Down

Next.js Server Actions Are Public Endpoints: How I Lock Them Down

1
Comments
3 min read
Your JWT expiry check is off by 1000x — the NumericDate gotcha

Your JWT expiry check is off by 1000x — the NumericDate gotcha

1
Comments 1
3 min read
Introduction to media streaming: Part 2

Introduction to media streaming: Part 2

Comments
9 min read
I Built a Free Shadow API Scanner and Found 269 Forgotten Routes in Ghost CMS

I Built a Free Shadow API Scanner and Found 269 Forgotten Routes in Ghost CMS

Comments 1
5 min read
The handshake is the easy part. Agent payments still haven't named the custody split.

The handshake is the easy part. Agent payments still haven't named the custody split.

Comments
2 min read
WooCommerce failed orders — what a spike, a stall and a silence each mean

WooCommerce failed orders — what a spike, a stall and a silence each mean

Comments
7 min read
MCP Observatory: Scan, Test, and Secure MCP Servers Before Agents Depend on Them

MCP Observatory: Scan, Test, and Secure MCP Servers Before Agents Depend on Them

Comments
1 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.