DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
I broke my own governed MCP server by hand, then built the scanner that catches the class

I broke my own governed MCP server by hand, then built the scanner that catches the class

Comments 1
5 min read
73% of AI-agent credential leaks trace back to one mundane thing: debug logging

73% of AI-agent credential leaks trace back to one mundane thing: debug logging

Comments
2 min read
Your AI agent is only as secure as the tools and agents it calls

Your AI agent is only as secure as the tools and agents it calls

Comments
4 min read
The 7 Stripe bugs I find in almost every pre-launch checkout

The 7 Stripe bugs I find in almost every pre-launch checkout

Comments 1
5 min read
How to Update GDOM Database Credentials: Changing Users, Passwords, and IPs

How to Update GDOM Database Credentials: Changing Users, Passwords, and IPs

2
Comments
2 min read
npm Supply Chain RAT: PostCSS Impersonation & Dependency Confusion

npm Supply Chain RAT: PostCSS Impersonation & Dependency Confusion

Comments
6 min read
Inside the Uninsured Middle: An Operator's View of AI-Agent Operational Risk

Inside the Uninsured Middle: An Operator's View of AI-Agent Operational Risk

3
Comments
9 min read
Five features that turn an OS into a trust platform: Panic, Dead Man’s Switch, E2E messenger, Vault UI, and Secure Boot attestation in IONA OS

Five features that turn an OS into a trust platform: Panic, Dead Man’s Switch, E2E messenger, Vault UI, and Secure Boot attestation in IONA OS

3
Comments
4 min read
Stop returning the same "blocked" error from your agent guardrail

Stop returning the same "blocked" error from your agent guardrail

Comments
2 min read
Learning Web Security #1: Broken Access Control (OWASP Top 10 #1 - Beginner's Guide)

Learning Web Security #1: Broken Access Control (OWASP Top 10 #1 - Beginner's Guide)

Comments
7 min read
You Don't Own Your AI Agent. And Even If You Did, Would You Trust It?

You Don't Own Your AI Agent. And Even If You Did, Would You Trust It?

Comments
9 min read
Who Asked That? Identity, Accountability and the Agentic Query

Who Asked That? Identity, Accountability and the Agentic Query

Comments
6 min read
I Scanned 5 Real Vibe-Coded Apps With a Security Scanner — Here's What I Found

I Scanned 5 Real Vibe-Coded Apps With a Security Scanner — Here's What I Found

Comments
4 min read
How I Built a Lightweight WordPress Plugin to Combat AdBlockers & Security Threats (WAF)

How I Built a Lightweight WordPress Plugin to Combat AdBlockers & Security Threats (WAF)

1
Comments
3 min read
Tracepath — I Built an AI Agent Audit Middleware in One Weekend

DEV Weekend Challenge: Passion Edition Submission

Tracepath — I Built an AI Agent Audit Middleware in One Weekend

7
Comments 12
5 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.