DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
From Vulnerable to Distroless: Auditing Docker Images with Trivy in CI
svenkroll profile

From Vulnerable to Distroless: Auditing Docker Images with Trivy in CI

#docker #security #containers #devops
Comments
11 min read
Injection Attacks Are Not Dead: SQL, NoSQL, ORM, and Command Injection — How to Actually Fix Them (2026)
mahdi0shamlou profile

Injection Attacks Are Not Dead: SQL, NoSQL, ORM, and Command Injection — How to Actually Fix Them (2026)

#sql #nosql #security #injection
6
Comments
5 min read
OWASP Top 10 for Developers (2026 Edition) — How to Actually Fix the Most Dangerous Web Vulnerabilities
mahdi0shamlou profile

OWASP Top 10 for Developers (2026 Edition) — How to Actually Fix the Most Dangerous Web Vulnerabilities

#owasp #security #developer #programming
11
Comments 1
6 min read
AWS IAM Roles Explained - A Beginner's Guide (With Real Examples)
parag477 profile

AWS IAM Roles Explained - A Beginner's Guide (With Real Examples)

#aws #beginners #security #tutorial
Comments
11 min read
What Is a Sandbox? How to Safely Run and Analyze Any Unknown .exe
mahdi0shamlou profile

What Is a Sandbox? How to Safely Run and Analyze Any Unknown .exe

#security #programming #sandbox #software
12
Comments 1
5 min read
Auditing Windows security from a Python script, no pip install needed
tiltedlunar123 profile

Auditing Windows security from a Python script, no pip install needed

#python #windows #security #opensource
Comments
3 min read
AWS Frontier Agents: What $50/Hour Pen Testing and $30/Hour SRE Means for Platform Teams
michaeltuszynski profile

AWS Frontier Agents: What $50/Hour Pen Testing and $30/Hour SRE Means for Platform Teams

#aws #aiagents #devops #security
Comments
4 min read
The Axios Breach Started with a Plaintext Token — Here's How I Keep Zero Secrets in My Repos
jasonm4130 profile

The Axios Breach Started with a Plaintext Token — Here's How I Keep Zero Secrets in My Repos

#security #terraform #devops #cicd
Comments
5 min read
FastAPI + MCP: Adding Real OAuth 2.1 Auth to Your Python MCP Server
peytongreen_dev profile

FastAPI + MCP: Adding Real OAuth 2.1 Auth to Your Python MCP Server

#python #fastapi #mcp #security
Comments 1
9 min read
Every agent trust proposal is building the wrong thing
viftode4 profile

Every agent trust proposal is building the wrong thing

#agents #security #ai #web3
Comments
3 min read
The Claude Code Leak Changed the Threat Model. Here's How to Defend Your AI Agents.
tempnoob profile

The Claude Code Leak Changed the Threat Model. Here's How to Defend Your AI Agents.

#ai #security #agents #mcp
Comments
11 min read
Why We Built a Local-First iPhone Authenticator Instead of Another Cloud-Synced 2FA App
locallensproject profile

Why We Built a Local-First iPhone Authenticator Instead of Another Cloud-Synced 2FA App

#opensource #security #ios #privacy
Comments
1 min read
DevSecOps in Practice: Tools That Actually Catch Vulnerabilities - Part 3 - SCA with pip-audit
pkkht profile

DevSecOps in Practice: Tools That Actually Catch Vulnerabilities - Part 3 - SCA with pip-audit

#devops #python #security #tooling
1
Comments 1
3 min read
HTTP/3 Fingerprints: Identifying Clients in the QUIC Era
lexiforest profile

HTTP/3 Fingerprints: Identifying Clients in the QUIC Era

#networking #privacy #security #webdev
1
Comments
3 min read
Cookie based authentication & authorization in ASP.NET Core explained
nagasudhirpulla profile

Cookie based authentication & authorization in ASP.NET Core explained

#csharp #dotnet #security #tutorial
1
Comments 1
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.