DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
How .pth Files Became a Supply Chain Weapon (and How to Detect Them)
0xallendev profile

How .pth Files Became a Supply Chain Weapon (and How to Detect Them)

#python #security #supplychain #opensource
Comments
1 min read
How I Secured My AI Assistant's Data by Moving It Off the Internet-Facing Machine
merlini profile

How I Secured My AI Assistant's Data by Moving It Off the Internet-Facing Machine

#ai #security #homelab #selfhosted
Comments
4 min read
The LiteLLM Supply Chain Attack: How a Poisoned Security Scanner Stole Credentials From Thousands of AI Environments
johnson998877 profile

The LiteLLM Supply Chain Attack: How a Poisoned Security Scanner Stole Credentials From Thousands of AI Environments

#security #python #ai #opensource
Comments
9 min read
Your Claude Code Agent Is Executing Shell Commands With Zero Validation. Here's Why That's a Problem.
thebrierfox profile

Your Claude Code Agent Is Executing Shell Commands With Zero Validation. Here's Why That's a Problem.

#claudecode #security #devtools #production
Comments
4 min read
Malicious litellm Python Package Versions 1.82.7 and 1.82.8 Removed from PyPI to Prevent Credential Theft
romdevin profile

Malicious litellm Python Package Versions 1.82.7 and 1.82.8 Removed from PyPI to Prevent Credential Theft

#security #malware #pypi #dependencies
Comments
6 min read
Thinking Like an Attacker: The Airbags and Seatbelts of Smart Contract Security
binnadev profile

Thinking Like an Attacker: The Airbags and Seatbelts of Smart Contract Security

#security #smartcontract #blockchain #solidity
7
Comments 2
7 min read
🛡️ حل احترافي لثغرة Prototype Pollution في protobufjs
asrarmared profile

🛡️ حل احترافي لثغرة Prototype Pollution في protobufjs

#cybersecurity #javascript #npm #security
2
Comments 1
3 min read
Your AI Agent Just Paid a Sanctioned Russian Bank. Nobody Stopped It.
razashariff profile

Your AI Agent Just Paid a Sanctioned Russian Bank. Nobody Stopped It.

#security #ai
Comments
3 min read
TIL: Ruby Authenticity Tokens - Reusing the HTML Value
mwhite90 profile

TIL: Ruby Authenticity Tokens - Reusing the HTML Value

#backend #rails #ruby #security
1
Comments
2 min read
Why the $292M KelpDAO Exploit Proves Smart Contract Audits Aren't Enough.
rushanksavant profile

Why the $292M KelpDAO Exploit Proves Smart Contract Audits Aren't Enough.

#web3 #security #blockchain #cybersecurity
2
Comments
1 min read
The Dark Forest Internet
vedangvatsa profile

The Dark Forest Internet

#internet #privacy #security #webdev
Comments
6 min read
🚨 تنبيه أمني عاجل - ثغرة حرجة في tj-actions/changed-files
asrarmared profile

🚨 تنبيه أمني عاجل - ثغرة حرجة في tj-actions/changed-files

#news #cybersecurity #github #security
Comments
3 min read
The ORM Didn't Save You: SQL Injection in a Prisma Codebase
oopssec-store profile

The ORM Didn't Save You: SQL Injection in a Prisma Codebase

#security #nextjs #webdev #tutorial
Comments
4 min read
VoxMind: A Secure, Local-First Voice AI Agent on the Edge
devansh_kalwani_509887af2 profile

VoxMind: A Secure, Local-First Voice AI Agent on the Edge

#showdev #agents #ai #security
3
Comments 1
3 min read
Air Traffic Control Scaleway Ep.1
wvanheemstra profile

Air Traffic Control Scaleway Ep.1

#scaleway #cloud #iam #security
Comments
9 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.