DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Rate Limiting Your API: Algorithms, Tradeoffs, and Implementation
whoffagents profile

Rate Limiting Your API: Algorithms, Tradeoffs, and Implementation

#api #node #backend #security
Comments
4 min read
ForgeRock AM Scripted Decision Node: Production Scripts & Debug Guide
iamdevbox profile

ForgeRock AM Scripted Decision Node: Production Scripts & Debug Guide

#forgerock #iam #authentication #security
Comments
4 min read
Google Cloud Next26:Securing AI

Google Cloud NEXT '26 Challenge Submission
apinke profile

Google Cloud Next26:Securing AI

#devchallenge #cloudnextchallenge #googlecloud #security
1
Comments
3 min read
Securing AI Agent Workflows: Preventing Identity Collapse in Multi-Step Chains
jerry_poon profile

Securing AI Agent Workflows: Preventing Identity Collapse in Multi-Step Chains

#aiagents #security #llmorchestration #python
Comments
9 min read
The TLS Fingerprinting Hell: Why I Stopped Reverse-Engineering the Vinted App
datakaz profile

The TLS Fingerprinting Hell: Why I Stopped Reverse-Engineering the Vinted App

#webdev #python #dataengineering #security
Comments
5 min read
Your Agent's Reputation Doesn't Travel. Here's What Does.
mycelnet profile

Your Agent's Reputation Doesn't Travel. Here's What Does.

#ai #multiagent #security #trust
Comments
4 min read
Everyone's Sharing Claude Code Skills. Nobody's Checking What's Inside.
augusto_chirico profile

Everyone's Sharing Claude Code Skills. Nobody's Checking What's Inside.

#claudecode #security #ai #opensource
Comments
5 min read
Your API Is Leaking Source Fingerprints. Here's How to Stop It.
iistrate profile

Your API Is Leaking Source Fingerprints. Here's How to Stop It.

#api #python #security #data
2
Comments
6 min read
How to Safely Allow Inline Scripts Without Breaking Security with CSP Nonce
jacobandrewsky profile

How to Safely Allow Inline Scripts Without Breaking Security with CSP Nonce

#security #javascript #typescript #tutorial
1
Comments
4 min read
nginx-ui's MCP endpoint shipped with 'empty allowlist equals allow-all' — and that's the story worth sitting with
silask profile

nginx-ui's MCP endpoint shipped with 'empty allowlist equals allow-all' — and that's the story worth sitting with

#security #mcp #nginx #appsec
Comments 3
7 min read
Protecting Node.js APIs: Audiences, Scopes, and Bearer Tokens
monocloud_admin profile

Protecting Node.js APIs: Audiences, Scopes, and Bearer Tokens

#node #api #oauth #security
Comments
5 min read
From Promises to Proof: Designing a Defensive Escrow Protocol
binnadev profile

From Promises to Proof: Designing a Defensive Escrow Protocol

#security #blockchain #web3 #smartcontract
5
Comments
5 min read
How to cut your AWS bill by 20–45% without touching your architecture
kloudaudit profile

How to cut your AWS bill by 20–45% without touching your architecture

#devops #aws #tutorial #security
Comments
2 min read
How Enterprise Wallet Infrastructure Actually Works: MPC, Custody Models, and Why MetaMask Was Never the Answer
deadwin19 profile

How Enterprise Wallet Infrastructure Actually Works: MPC, Custody Models, and Why MetaMask Was Never the Answer

#blockchain #web3 #architecture #security
1
Comments
9 min read
AI-Generated Backends Almost Always Get CORS Wrong
busyagents profile

AI-Generated Backends Almost Always Get CORS Wrong

#security #webdev #ai #devsecops
Comments
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.