DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
We Pulled a Rule From Our AI Linter — Here's Why It Made the Tool Better

We Pulled a Rule From Our AI Linter — Here's Why It Made the Tool Better

5
Comments 1
4 min read
SOC 2 CC7.1: What Auditors Actually Ask For in Vulnerability Management

SOC 2 CC7.1: What Auditors Actually Ask For in Vulnerability Management

Comments
5 min read
An SBOM Proves What You Installed. It Can't Prove You Should Have.

An SBOM Proves What You Installed. It Can't Prove You Should Have.

1
Comments
20 min read
PREDICTION-20260701-0009

PREDICTION-20260701-0009

Comments
7 min read
How to Monitor Certificate Transparency Logs for Lookalike Domains

How to Monitor Certificate Transparency Logs for Lookalike Domains

Comments
3 min read
Cleaning Up Personal References: How Hermes Skills Maintains Security Best Practices

Cleaning Up Personal References: How Hermes Skills Maintains Security Best Practices

Comments
2 min read
Is AI-Generated Code Buggier? The 2025-26 Data

Is AI-Generated Code Buggier? The 2025-26 Data

Comments 1
3 min read
We called AVE "the CVE for AI agents." A Reddit commenter told us that was wrong. They were right

We called AVE "the CVE for AI agents." A Reddit commenter told us that was wrong. They were right

1
Comments
4 min read
Stopping WooCommerce Card Testing Bots with Edge Cryptography

Stopping WooCommerce Card Testing Bots with Edge Cryptography

Comments
3 min read
citefid 0.1.0: verificar la fidelidad de citas en wikis OKF con NLI (AUC 0.7029 sobre cĂłdigo)

citefid 0.1.0: verificar la fidelidad de citas en wikis OKF con NLI (AUC 0.7029 sobre cĂłdigo)

11
Comments
5 min read
Why Every CISO Needs an AIBOM in 2026 — And What Most Vendors Miss

Why Every CISO Needs an AIBOM in 2026 — And What Most Vendors Miss

1
Comments
9 min read
LLM Audits and Guardrails Are Not Enough: Why You Must Filter at the Logit Level

LLM Audits and Guardrails Are Not Enough: Why You Must Filter at the Logit Level

Comments
1 min read
Vaultwarden-Plus v1.36.3: Organization Account Recovery — without breaking zero-knowledge

Vaultwarden-Plus v1.36.3: Organization Account Recovery — without breaking zero-knowledge

1
Comments
2 min read
Your CORS proxy is an SSRF engine: how to harden a URL fetcher

Your CORS proxy is an SSRF engine: how to harden a URL fetcher

Comments
3 min read
From Passwords to Token-based Authentication

From Passwords to Token-based Authentication

Comments
7 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.