Security

211 articles in this category (Page 9 of 9)

AI NewsSecuritySoftware Engineering

Building Composable RLS: Enterprise Data Security on Autopilot

Composable Row-Level Security (RLS) implemented in a .NET Data Access Layer (DAL) guarantees data access control, eliminating common vulnerabilities.

Nov 25, 2025

AI NewsSecurityJava

Deep Dive into Fastjson Deserialization Vulnerabilities: From Principles to Practical Defense

This article details Fastjson deserialization vulnerabilities, particularly CVE-2022-25845, which can lead to Remote Code Execution (RCE).

Nov 25, 2025

AI NewsDevOpsSecurity

End-to-End DevSecOps Project (Movies Finder)

Automated DevSecOps pipeline cuts deployment time by 50% using GitOps and security-first tools.

Nov 23, 2025

AI NewsKubernetesSecurity

Amazon EKS Adds Native Support for AWS Secrets Store CSI Driver Provider

Amazon EKS now natively supports secure secret mounting from AWS Secrets Manager and SSM Parameter Store across all regions.

Nov 22, 2025

AI NewsSecurityDevOps

Introducing SSH Secure Audit: A Lightweight Open-Source SSH Security Scanner for Linux

SSH Secure Audit is a new open-source tool that quickly identifies risky SSH configurations on Linux systems.

Nov 21, 2025

AI NewsSecurityJava Development

Java 21 Introduces Standardized Key Encapsulation Mechanism (KEM) API

Java 21's JEP 452 introduces a standardized KEM API for secure symmetric key exchange using public-key cryptography.

Nov 20, 2025

AI NewsSecurityAlgorithms

Linux SecureRandom: Blocking Is Now Obsolete

Modern Linux systems eliminate SecureRandom blocking; performance tests show <1% difference between blocking/non-blocking variants.

Nov 20, 2025

AI Newssecuritydevops

HashiCorp Vault para Gerenciamento de Segredos

HashiCorp Vault oferece segurança avançada para gerenciamento de segredos em aplicações Node.js.

Nov 15, 2025

AI NewsDevOpsSecurity

Optimize ClamAV Scans on 4GB RAM Servers Without Crashes

Optimize ClamAV scans on 4GB RAM servers with clamd and proper tuning to prevent crashes.

Nov 15, 2025

AI NewsSecurityCybersecurity

AI Toxicity Harder to Fake Than Intelligence, 2025 Study Reveals

2025 study shows AI-generated text remains distinguishable from humans by emotional cues, raising security risks for impersonation attacks.

Nov 14, 2025

ThoughtsSecurityMLOps

The Future of Software Development: Security and Intelligence

Why security, MLOps, and AI agents not just code will define software in the next decade. Practical guidance for builders and leaders.

Nov 6, 2025

AI Newssecurityarchitecture

Production-Grade Azure Landing Zone: Architecture, Governance, and Automation

A comprehensive guide to designing, deploying, and governing a secure, scalable Azure Landing Zone using Infrastructure as Code, Azure Policy, and CI/CD pipelines.

Nov 6, 2025

AI Newssecuritydevops

Securing GraphQL API Access with Token Exchange via ToolHive and Okta

This article demonstrates how to use Okta and ToolHive to enable secure token exchange for MCP server authentication with a GraphQL API, ensuring role-based access and audit trails.

Nov 4, 2025

AI Newsgoopensource

I Built a WAF in Golang: Open-Source Project Overview

A Golang-based Web Application Firewall (WAF) developed as an open-source project with a focus on security and scalability.

Nov 2, 2025

AI NewsComplianceSecurity

NYDFS Part 500 Compliance: 7 Fast Wins for the Nov 1, 2025 Deadline

A developer-focused guide to achieving NYDFS Part 500 compliance by November 1, 2025, with actionable steps, code examples, and audit-ready artifacts.

Nov 2, 2025

AI Newsdotnetsecurity

Secrets in .NET: Why Strings Are Not Safe (and What to Do Instead)

Understanding the risks of using strings for secrets in .NET and implementing safer alternatives like byte arrays and memory management strategies.

Nov 2, 2025

AI NewsSecurityArtificial Intelligence

OpenAI Releases gpt-oss-safeguard: Open-Weight Safety Reasoning Models for Custom Policy Enforcement

OpenAI introduces two open-weight safety reasoning models, gpt-oss-safeguard-120b and gpt-oss-safeguard-20b, enabling developers to apply custom safety policies at inference time without retraining. The models are available under Apache 2.0 and optimized for hardware deployment.

Oct 31, 2025

AI NewsSecurityOpen Source

Hugging Face and VirusTotal Collaborate to Enhance AI Security

Hugging Face and VirusTotal have partnered to continuously scan the Hugging Face Hub's 2.2M+ public models and datasets for malware, bolstering security for the machine learning community.

Oct 23, 2025

AI NewsSecurityAI/ML

Bifrost Edge: Endpoint Enforcement for Enterprise MCP Governance

Bifrost Edge enforces MCP policies on employee machines, routing all AI traffic through the Gateway for complete visibility and control.

Jun 21, 2025