DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Privacy isn't encryption: what building on Midnight actually taught me

Privacy isn't encryption: what building on Midnight actually taught me

Comments
4 min read
I audited my own AI-built SaaS expecting a disaster. The payment logic was fine — but two things almost drained my API bill and leaked my keys.

I audited my own AI-built SaaS expecting a disaster. The payment logic was fine — but two things almost drained my API bill and leaked my keys.

Comments
4 min read
The Duck Stops Here: Building hid_guard — Catching Keystroke Injection at the Kernel Level

The Duck Stops Here: Building hid_guard — Catching Keystroke Injection at the Kernel Level

1
Comments 1
5 min read
The Session ID That Wouldn't Stop Changing

The Session ID That Wouldn't Stop Changing

Comments
6 min read
Chmod 755 vs 644 vs 777: What Linux File Permissions Actually Mean

Chmod 755 vs 644 vs 777: What Linux File Permissions Actually Mean

Comments
5 min read
LLM Policy as Code: Version-Controlled Governance for Model and Agent Access

LLM Policy as Code: Version-Controlled Governance for Model and Agent Access

Comments
4 min read
"The credential handoff that keeps your client's secrets out of Slack DMs"

"The credential handoff that keeps your client's secrets out of Slack DMs"

Comments
3 min read
【Sofi_Log #032】ゼロ知識証明(ZKP)とデジタル免疫システム:国家とAI監視を『数学的に無視』する自己主権ID仕様

【Sofi_Log #032】ゼロ知識証明(ZKP)とデジタル免疫システム:国家とAI監視を『数学的に無視』する自己主権ID仕様

Comments
7 min read
Building an LLM Gateway Proxy with Security Guardrails and Observability

Building an LLM Gateway Proxy with Security Guardrails and Observability

Comments
5 min read
Guard Scripts Don't Stop an AI Agent From Publishing Your Draft. It Has a Shell

Guard Scripts Don't Stop an AI Agent From Publishing Your Draft. It Has a Shell

Comments
8 min read
Why does your local database data leave your network for a query?

Why does your local database data leave your network for a query?

Comments
1 min read
OWASP Top 10 #1: Understanding Broken Access Control (Beginner's Guide)

OWASP Top 10 #1: Understanding Broken Access Control (Beginner's Guide)

Comments
7 min read
An identity provider told us who you were, and we believed it

An identity provider told us who you were, and we believed it

1
Comments
4 min read
I ran Anthropic's official MCP server in a gVisor sandbox — here's what happened

I ran Anthropic's official MCP server in a gVisor sandbox — here's what happened

1
Comments
4 min read
Text-Safe Is Not Tool-Safe: The Safety Layer Alignment Skips

Text-Safe Is Not Tool-Safe: The Safety Layer Alignment Skips

2
Comments 2
6 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.