abhisek
- Karma
- 0
- Created
- ()
- Submissions
- 0
- Claude Mythos and Cybersecurity (schneier.com)
- Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit (cloud.google.com)
- Step by Step Analysis of Malicious NPM Package (safedep.io)
- OpenClaw bot calls out maintainer when its PR got rejected (crabby-rathbun.github.io)
-
Hi everyone I am the author of Gryph. I have been using AI coding agents daily and realized I had no idea what they were actually doing across sessions. Sure, I could check git diff, but that doesn't show: - Files the…
- Agent Skills Threat Model (safedep.io)
- Catching malicious package releases using a transparency log (blog.trailofbits.com)
- KnownSec breach: What we know so far (substack.com)
- Buying browser extensions for fun and profit (secureannex.com)
- Secure Vibe Coding with AI Agents (safedep.io)
-
This is not a click bait but I am really curious about revisiting the most obvious activity in SDLC - code review. IMHO we code review to ensure quality, security and other guardrails beyond automated tools. There are…