DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
I Built a Security Scanner for AI Apps — Then I Ran It on My Own Site

I Built a Security Scanner for AI Apps — Then I Ran It on My Own Site

1
Comments 1
2 min read
TraceTree: Mapping malware behavior to catch supply chain attacks

TraceTree: Mapping malware behavior to catch supply chain attacks

1
Comments 1
1 min read
Add a post-quantum readiness gate to your CI in 5 lines

Add a post-quantum readiness gate to your CI in 5 lines

Comments
4 min read
Why a curl User-Agent Isn't Automatically Malicious

Why a curl User-Agent Isn't Automatically Malicious

Comments
2 min read
Memory Poisoning: The AI Agent Attack Vector Nobody Is Scanning For

Memory Poisoning: The AI Agent Attack Vector Nobody Is Scanning For

Comments
2 min read
Your Phishing Simulation Score Is 99%. Here's Why That Worries Me.

Your Phishing Simulation Score Is 99%. Here's Why That Worries Me.

Comments
4 min read
Gate Insecure AWS IAM in Pull Requests with a Free GitHub Action

Gate Insecure AWS IAM in Pull Requests with a Free GitHub Action

Comments
2 min read
Privacy Isn't a Checkbox — It's Architecture

Privacy Isn't a Checkbox — It's Architecture

Comments
2 min read
I Opened 3 Security Issues on Microsoft AutoGen and LlamaIndex. Here Is Why

I Opened 3 Security Issues on Microsoft AutoGen and LlamaIndex. Here Is Why

Comments
1 min read
I Scanned 3 Major AI Agent Frameworks. Here Are the 332 Critical Vulnerabilities

I Scanned 3 Major AI Agent Frameworks. Here Are the 332 Critical Vulnerabilities

Comments
1 min read
It Happened Again. This Time It Was Microsoft's Own Diagnostic Tool.

It Happened Again. This Time It Was Microsoft's Own Diagnostic Tool.

Comments
4 min read
Across Function Boundaries: Why Single-Function Taint Analysis Fails

Across Function Boundaries: Why Single-Function Taint Analysis Fails

Comments
2 min read
We open-sourced our security audit. Here's what we found (and fixed).

We open-sourced our security audit. Here's what we found (and fixed).

Comments
3 min read
97.8% of the top 10,000 domains have no MTA-STS. Here's how to be in the other 2%

97.8% of the top 10,000 domains have no MTA-STS. Here's how to be in the other 2%

Comments
4 min read
I stopped trusting my own app's encryption, so I rebuilt it — ATLOCK v4 is Here.

I stopped trusting my own app's encryption, so I rebuilt it — ATLOCK v4 is Here.

21
Comments 2
3 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.