DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
We built ATTP -- HTTP for AI agents. Here's why.
razashariff profile

We built ATTP -- HTTP for AI agents. Here's why.

#security #ai #webdev #opensource
Comments
2 min read
Axios was compromised for 3 hours - how to find it in your running Kubernetes clusters
toofasttoocurious profile

Axios was compromised for 3 hours - how to find it in your running Kubernetes clusters

#security #kubernetes #npm #supplychain
Comments
5 min read
We Scanned the Top 50 ClawHub Skills — Here's What We Found
rotiferdev profile

We Scanned the Top 50 ClawHub Skills — Here's What We Found

#security #ai #data #clawhub
1
Comments
3 min read
Claude Code Leak: Lessons in npm Security, TypeScript Analysis, and AI Tool Architecture
orthogonalinfo profile
Max

Claude Code Leak: Lessons in npm Security, TypeScript Analysis, and AI Tool Architecture

#security #npm #typescript #ai
1
Comments
9 min read
The Claude Code Leak Proved What We've Been Building For
json_shotwell profile

The Claude Code Leak Proved What We've Been Building For

#ai #python #security #opensource
Comments
3 min read
How to Secure GitHub Actions: OIDC Authentication, Least Privilege, and Supply Chain Attack Prevention
orthogonalinfo profile
Max

How to Secure GitHub Actions: OIDC Authentication, Least Privilege, and Supply Chain Attack Prevention

#security #devops #github #cicd
1
Comments
18 min read
IAM Access Analyzer nuked our prod hotfix because I fundamentally misunderstood how Zelkova evaluates wildcards
abestdev profile

IAM Access Analyzer nuked our prod hotfix because I fundamentally misunderstood how Zelkova evaluates wildcards

#aws #security #devops #terraform
Comments
2 min read
what if MCP servers had a Lighthouse-style security score?
yedanyagamiaicmd profile

what if MCP servers had a Lighthouse-style security score?

#mcp #security #ai #opensource
1
Comments
2 min read
SecureWipe: ANSSI and NIST-compliant secure disk erasure, because rm -rf isn't enough
grujowmi profile

SecureWipe: ANSSI and NIST-compliant secure disk erasure, because rm -rf isn't enough

#news #security #python #opensource
Comments
3 min read
CVE-2025-53521: F5 BIG-IP APM RCE — CISA Deadline Is March 30
orthogonalinfo profile
Max

CVE-2025-53521: F5 BIG-IP APM RCE — CISA Deadline Is March 30

#security #devops #cybersecurity #networking
Comments
9 min read
Your AI agent can read every credential on your machine
ashwinaravind profile

Your AI agent can read every credential on your machine

#security #ai #openclaw
1
Comments
3 min read
What Is 2FA with an Authenticator App, and Why Your JWT Login Flow Needs to Change
driannaird profile

What Is 2FA with an Authenticator App, and Why Your JWT Login Flow Needs to Change

#security #algorithms #2fa #architecture
12
Comments
4 min read
The LiteLLM Supply Chain Attack Changed How We Think About AI Cost Monitoring
peterkacerik profile

The LiteLLM Supply Chain Attack Changed How We Think About AI Cost Monitoring

#ai #security #llm #python
Comments
2 min read
GitHub Access Persists After AI Coding Tool Subscription Cancellation: How to Revoke Access
maxgeris profile

GitHub Access Persists After AI Coding Tool Subscription Cancellation: How to Revoke Access

#security #github #oauth #ai
Comments
9 min read
Why Privacy Matters in Developer Tools
ritavidhata profile

Why Privacy Matters in Developer Tools

#security #javascript #webdev #privacy
Comments
4 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.