DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
How Attackers Exploit Trust Signals Like HTTPS and UI Design
james_smith_543 profile

How Attackers Exploit Trust Signals Like HTTPS and UI Design

#security #cybersecurity #webdev #privacy
Comments
10 min read
GHSA-XJVP-7243-RG9H: GHSA-xjvp-7243-rg9h: Critical Path Traversal in Wish SCP Middleware Allows Arbitrary File Read/Write
cverports profile

GHSA-XJVP-7243-RG9H: GHSA-xjvp-7243-rg9h: Critical Path Traversal in Wish SCP Middleware Allows Arbitrary File Read/Write

#security #cve #cybersecurity #ghsa
Comments
2 min read
53% of AI Agents Exceed Their Permissions. That's an Architecture Problem.
lkelly profile
Logan for Waxell

53% of AI Agents Exceed Their Permissions. That's an Architecture Problem.

#ai #security #agentops #agents
Comments
8 min read
MCP security has 4 layers. Most teams have 2.
andreap profile

MCP security has 4 layers. Most teams have 2.

#security #ai #mcp #agents
1
Comments
4 min read
Data Privacy in Regulated Applications: What Developers Need to Know
dominiquer profile

Data Privacy in Regulated Applications: What Developers Need to Know

#security #privacy #webdev
Comments
7 min read
Your Emails Go to Spam Because of Three DNS Records You Never Set Up
njoylab profile

Your Emails Go to Spam Because of Three DNS Records You Never Set Up

#dns #email #devops #security
Comments
5 min read
CSP for Third Party Scripts: The Practical Cheat Sheet for GA, Stripe, Intercom, and More
sitesecurityscore profile

CSP for Third Party Scripts: The Practical Cheat Sheet for GA, Stripe, Intercom, and More

#security #webdev #javascript #devops
1
Comments
6 min read
We Had Secrets in Kubernetes. Then We Got Audited.
alex_coder19283 profile
Alex

We Had Secrets in Kubernetes. Then We Got Audited.

#azure #kubernetes #devops #security
1
Comments
6 min read
IDOR in AI-Generated APIs: What Cursor Won't Check for You
chandan_karn_fb750e731394 profile

IDOR in AI-Generated APIs: What Cursor Won't Check for You

#security #webdev #ai #devsecops
3
Comments 2
3 min read
CNAPP pricing teardown: why Indian mid-market rejects Wiz, Orca, and Prisma Cloud (and what they buy instead)
aicloudstrategist profile

CNAPP pricing teardown: why Indian mid-market rejects Wiz, Orca, and Prisma Cloud (and what they buy instead)

#security #cloud #devops #aws
Comments
6 min read
IAM Access Analyzer nuked our prod hotfix because I fundamentally misunderstood how Zelkova evaluates wildcards
abestdev profile

IAM Access Analyzer nuked our prod hotfix because I fundamentally misunderstood how Zelkova evaluates wildcards

#aws #security #devops #terraform
Comments
2 min read
Letters of Marque for AI Agents: The 600-Year Authorization Architecture You're Reinventing
vibeagentmaking profile

Letters of Marque for AI Agents: The 600-Year Authorization Architecture You're Reinventing

#ai #security #authorization #agents
1
Comments
3 min read
How I Mastered Foundry and Earned My 101 Badge: A Journey into Web3 Security
rdin777 profile

How I Mastered Foundry and Earned My 101 Badge: A Journey into Web3 Security

#blockchain #security #testing #web3
Comments
2 min read
The Vercel April 2026 Security Incident: What Every Developer Actually Needs to Know
benriemer profile

The Vercel April 2026 Security Incident: What Every Developer Actually Needs to Know

#security #devops #webdev #javascript
Comments
6 min read
The State of Package Health: Weekly Report #002
depscope profile

The State of Package Health: Weekly Report #002

#security #webdev #devops #opensource
Comments
3 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.