Forem

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
AI News Roundup: Claude Code Security, ggml.ai + Hugging Face, and 17K tok/s Silicon Llama
damogallagher profile

AI News Roundup: Claude Code Security, ggml.ai + Hugging Face, and 17K tok/s Silicon Llama

#news #ai #llm #security
Comments
3 min read
Your Terraform Is Probably Insecure — Here Are 90 Patterns to Check
suhteevah profile

Your Terraform Is Probably Insecure — Here Are 90 Patterns to Check

#devops #terraform #security #cloud
Comments
4 min read
MCP tool spoofing succeeds 100% of the time. A new paper maps 12 security risks across 4 agent protocols.
n_asuy profile

MCP tool spoofing succeeds 100% of the time. A new paper maps 12 security risks across 4 agent protocols.

#agents #ai #mcp #security
3
Comments 2
3 min read
CVE-2026-2472: Poisoned Notebooks: Stored XSS in Google Vertex AI SDK
cverports profile

CVE-2026-2472: Poisoned Notebooks: Stored XSS in Google Vertex AI SDK

#security #cve #cybersecurity
Comments
2 min read
Vercel’s "Agentic" Shift: Is Your Proprietary Code Now Training AI?
Cover image for Vercel’s "Agentic" Shift: Is Your Proprietary Code Now Training AI?
matscode profile

Vercel’s "Agentic" Shift: Is Your Proprietary Code Now Training AI?

#webdev #ai #security #vercel
7
Comments
2 min read
Guardrails deleted, now what?
luckypipewrench profile

Guardrails deleted, now what?

#security #ai #opensource #go
Comments
4 min read
Authelia vs Authentik: Which Auth Server?
selfhostingsh profile

Authelia vs Authentik: Which Auth Server?

#selfhosted #docker #security #tutorial
Comments
4 min read
CVE-2026-25896: Regex Injection in fast-xml-parser: Shadowing the <
cverports profile

CVE-2026-25896: Regex Injection in fast-xml-parser: Shadowing the <

#security #cve #cybersecurity
Comments
2 min read
We built a free CRA compliance scorer into a silicon advisor. Here's what we learned.
Cover image for We built a free CRA compliance scorer into a silicon advisor. Here's what we learned.
vladimir_vician profile

We built a free CRA compliance scorer into a silicon advisor. Here's what we learned.

#security #iot #embedded
1
Comments
3 min read
RASP vs WAF: The Key Differences and Why You Need a Third Approach
bytehide profile

RASP vs WAF: The Key Differences and Why You Need a Third Approach

#waf #security
Comments
9 min read
Building a Cost-Effective Windows Code Signing Pipeline with Sectigo, Google Cloud KMS, and GitHub Actions
katz profile

Building a Cost-Effective Windows Code Signing Pipeline with Sectigo, Google Cloud KMS, and GitHub Actions

#github #security #windows #infosec
Comments
9 min read
Your LangChain Agent Has No Security. Neither Does CrewAI, OpenAI, or 6 Others.
acacian profile

Your LangChain Agent Has No Security. Neither Does CrewAI, OpenAI, or 6 Others.

#ai #security #python #opensource
2
Comments
4 min read
We Built a Python SDK Where the Credentials Never Enter Your Code
the_seventeen profile

We Built a Python SDK Where the Credentials Never Enter Your Code

#ai #security #python #agents
6
Comments
3 min read
I Spent 3 Months Solving a Security Gap Nobody Talks About: LLM Artifact Integrity
ogulcanaydogan profile

I Spent 3 Months Solving a Security Gap Nobody Talks About: LLM Artifact Integrity

#security #go #kubernetes #ai
Comments
5 min read
Android 2026: Google Closes the Door. "What Every Developer Should Know"
Cover image for Android 2026: Google Closes the Door. "What Every Developer Should Know"
isspicycode profile

Android 2026: Google Closes the Door. "What Every Developer Should Know"

#android #google #mobile #security
Comments
7 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.