1+ day, 16+ hour ago  (669+ words) Home " Sponsored Content " Legacy App Sec Is Out of Step with the Speed of AI The timing is off, and it seems to be getting worse. Traditional application security pipelines were designed way back in the days when only humans…...

6+ day, 14+ hour ago  (344+ words) Home " Cybersecurity " Cloud Security " How can Agentic AI improve cloud security? But why is effective NHI management so vital? Here are some critical aspects: Several sectors can leverage the advantages of NHI management: In particular, organizations operating in cloud environments…...

1+ week, 1+ day ago  (1074+ words) Home " Security Bloggers Network " Is Your Liquibase Community Project Ready for the AI Era? Liquibase Community has earned its place in your stack. Over 100 million downloads prove it. The source-available model gives developers freedom. The community provides support. The tool…...

1+ week, 3+ day ago  (937+ words) I recently migrated one of my personal AI workflows from using Obsidian MCP server to the Obsidian CLI. Not because the Model Context Protocol (MCP) was broken. The server could read and write my vault just fine. The problem was subtler…...

2+ week, 1+ day ago  (893+ words) Home " Security Bloggers Network " How Do I Make Kubernetes Self'Service Without Losing Control? Platform teams are under pressure to move faster, but handing full Kubernetes access to every developer is risky. Self'service and control are not opposites; they are two…...

2+ week, 1+ day ago  (371+ words) Home " Security Bloggers Network " The agentification of Test Data Management is here. Meet the Structural Agent. At Tonic. ai, we believe your time is better spent building products than shaping data transformations. Earlier this year, we took our first step…...

2+ week, 3+ day ago  (455+ words) Home " Editorial Calendar " Dev Sec Ops " Decoding AI-enabled dev: Top concerns, hidden benefits, and smart investment strategies Video Companion: Get the full picture on AI-enabled development and pipeline strategies by watching the accompanying video. This year's top concerns about AI-enabled…...

2+ week, 4+ day ago  (1800+ words) Home " Security Bloggers Network " How we made Trail of Bits AI-native (so far) This post is adapted from a talk I gave at [un]prompted, the AI security practitioner conference. Thanks to Gadi Evron for inviting me to speak. You…...

3+ week, 22+ hour ago  (767+ words) Home " Editorial Calendar " API Security " Your API Has Authorization Bugs. Hadrian Finds Them. The problem isn't knowing what to look for. It's doing it at scale. An API with 50 authenticated endpoints and four user roles produces hundreds of attacker-victim permutations,…...

3+ week, 19+ hour ago  (630+ words) Home " Security Bloggers Network " The Team PCP Snowball Effect: A Quantitative Analysis The PCP Team's supply chain attacks compromised two critical components of the development ecosystem: Aqua Security's trivy-action and the Python litellm package. These incidents affected repositories and packages…...