🖼️00Capture and Replay: Testing Security Policy Without Production RiskDEV Community·Josh Waldrep·20 days ago#kfEulX1r#why#security#replay#operator#contract#pipelock+3 more🧰Tag tools✨Add tagYou cannot change a security policy in production without breaking somebody's workflow somewhere....15s0Read later0Read More
🖼️00Pipelock Agent Egress Control: the missing CI primitive for AI agentsDEV Community·Josh Waldrep·22 days ago#zWYApltp#v010releasenotes#security#ai#pipelock#agent#action+4 more🧰Tag tools✨Add tagTL;DR. Pipelock Agent Egress Control is a GitHub Action. It runs an agent script inside a Linux...15s0Read later0Read More
🖼️00Block-Reason Headers: Make Your Security Proxy Tell You WhyDEV Community·Josh Waldrep·23 days ago#ggR6nxdM#security#ai#opensource#agent#block#reason+5 more🧰Tag tools✨Add tagWhen a security proxy blocks an agent's request, the agent sees a 4xx and has to guess what happened....15s0Read later0Read More
🖼️00subPath ConfigMap Mounts Don't Hot-Reload: Silent Drift in KubernetesDEV Community·Josh Waldrep·23 days ago#tEzJxBDS#why#security#ai#configmap#pipelock#config+5 more🧰Tag tools✨Add tagA Pipelock instance running in a Kubernetes cluster watched its config file for hours while four...15s0Read later0Read More
🖼️00The Three-UID Containment Pattern for AI Agents on LinuxDEV Community·Josh Waldrep·23 days ago#pfh17pgx#why#security#ai#agent#proxy#operator+3 more🧰Tag tools✨Add tagA correct AI agent containment model on a Linux workstation needs three Linux UIDs, not two. Two UIDs...15s0Read later0Read More
📰00What CSA, SANS, and OWASP Just Told Every CISO About Runtime Agent SecurityDEV Community: owasp·Josh Waldrep·about 1 month ago#P3t5Gz9C#dev#paper#pipelock#blockquote#runtime#article+2 more🧰Tag tools✨Add tagThe paper On April 13, 2026, the CSA CISO Community, SANS, and the OWASP GenAI Security Project published "The AI Vulnerability Storm: Building a Mythos-Ready Security Program" (v0.4).… Read more15s0Read later0Read More
