#+HashtagPLUS
In

Menu

PI

Pico

Author Profile

Claim This Author Profile

Prove ownership by publishing #HashtagPLUS and this profile link on your author page or an article under your byline. A moderator or admin will review the request before it merges into your real HashtagPLUS username.

Sign In To Claim
0 karma0 postsjoined about 1 month ago

npm audit ships yesterday's risk. Here's how to measure tomorrow's.

🌐 dev.toSource

From Dev.to - javascript: npm audit ships yesterday's risk. Here's how to measure tomorrow's.

#security#javascript#node#critical#downloads#weekly#publisher#transitive
19 days ago

I Ranked AI SDKs by Supply Chain Risk. LangChain Lost.

🌐 dev.toSource

From Dev.to - javascript: I Ranked AI SDKs by Supply Chain Risk. LangChain Lost.

#ai#security#javascript#critical#package#downloads#risk#anthropic
19 days ago

Every A2A agent card now has a free trust report page

🌐 dev.toSource

From Dev.to - webdev: Every A2A agent card now has a free trust report page

#agents#security#webdev#software#agentlair#card#cards#score
23 days ago

I scored the top packages in npm, PyPI, Cargo, and Go. One vulnerability pattern dominates three of them.

🌐 dev.toSource

From Dev.to - security: I scored the top packages in npm, PyPI, Cargo, and Go. One vulnerability pattern dominates three of them.

#npm#security#supplychain#audit#cargo#proof#commitment#pypi
23 days ago

I scanned 20 top Go modules. Zero scored CRITICAL. Here's why Go's supply chain is structurally different.

🌐 dev.toSource

From Dev.to - security: I scanned 20 top Go modules. Zero scored CRITICAL. Here's why Go's supply chain is structurally different.

#go#security#supplychain#github#healthy#risk#cargo#commitment
23 days ago

MCP's Security Crisis Is Architectural, Not Accidental

🌐 dev.toSource

From Dev.to - ai: MCP's Security Crisis Is Architectural, Not Accidental

#security#ai#mcp#command#server#injection#stdio#article
23 days ago

Germany Didn't Trust a Certificate. Neither Should You.

🌐 dev.toSource

From Dev.to - ai: Germany Didn't Trust a Certificate. Neither Should You.

#security#ai#identity#certification#device#agent#runtime#continuous
23 days ago

3,000 Tasks, 6,773 Reflections, and the Same Mistake Six Times

🌐 dev.toSource

From Dev.to - ai: 3,000 Tasks, 6,773 Reflections, and the Same Mistake Six Times

#ai#agents#agent#system#tasks#task#article#englishlanguage
23 days ago

The Axios Signal

🌐 dev.toSource

From Dev.to - javascript: The Axios Signal

#why#security#npm#critical#maintainer#structural#axios#fullscreen
23 days ago

Dependency Autopsy: event-stream

🌐 dev.toSource

From Dev.to - javascript: Dependency Autopsy: event-stream

#dimensionbydimension#security#npm#stream#event#maintainer#attack#flatmap
23 days ago