May 11, 2025
•
14 min read
Secure-by-Default, Vibe Coding, and Going Back to Basics
Apr 25, 2025
10 min read
Intentionally-Vulnerable MCP Server, Hallucinating Software Packages
Apr 18, 2025
Model Context Protocol, A2A, NHI Authentication
Apr 14, 2025
9 min read
Signing Models, Vibe Coding, GitHub Action Abuse
Mar 28, 2025
Middleware Vulnerabilities, Identifying Enumeration with LLMs
Mar 21, 2025
Conferences, Addressing Destructive Fatigue, Imposter Syndrome
Mar 14, 2025
ProdSec Metrics, Asset Monitoring, Vulnerability Management
Mar 7, 2025
8 min read
Security Conferences, Testing Data in Git, Unforgivable Vulnerabilities
Feb 28, 2025
AppSec Support, Security Red Flags, Getting into AppSec
Feb 21, 2025
NPM, Package, and Software Supply-Chain security
Feb 14, 2025
OpenGrep Summary, Secure by Design, Confusion Attacks
Feb 10, 2025
Semgrep/OpenGrep, Saying "No" in Security