Supply Chain Security 강화 및 Linux Sandbox 도입한 Homebrew 6.0 공개
Homebrew 6.0 released with new security mechanism, Linux sandbox and more
Homebrew 6.0 released with new security mechanism, Linux sandbox and more
Arch Linux Supply Chain Malware, repo-slopscore & AI Model Security Concerns
One CVE, four ignore files: unifying Trivy, Grype, Snyk and osv-scanner
Ideogram 4.0 goes open-weight, Claude finds 10k vulns, and Meta's WhatsApp agent goes global
How to use bandit library?
Cisco sings Mythos' praises - but doesn't say how many bugs the model uncovered
Expanding Project Glasswing
I built an open-source DAST scanner that outfound ZAP
I was tired of security scanners with 90% false positives, so I built my own
173 Undocumented Security Findings in TerraGoat: What Standard IaC Scanners Miss (and Why Post-Quantum Matters)
Anthropic's New Security Tooling is a Wake-Up Call for Agent Builders
Project Glasswing: An Initial Update
Claude Mythos 기반 보안 스캔으로 423개 취약점 및 High 심각도 180건 발굴
NHS to close-source hundreds of GitHub repos over AI, security concerns
I Built a Multi-Agent AI Pen Tester Because AI Coding Tools Are Shipping Vulnerable Code
Performance Test: Grype 0.70 vs Trivy 0.50 Scan Times – 15% Faster for Alpine Images
Article: CodeGuardian: A Model Context Protocol Server for AI-Assisted Code Quality Analysis and Security Scanning
I audited a Vibe-Coded SaaS and found 5 critical vulnerabilities in 5 minutes.
Scan MCP Servers for OWASP Vulnerabilities From Inside Claude. Here's How.
Project Glasswing and open source software: The good, the bad, and the ugly