#developer security

Yes, you can use MCP servers on a work laptop — but only if you stop treating them like harmless developer toys. That is the real answer. The problem is not MCP itself. The problem is what a work laptop changes. On a personal machine, a sloppy MCP setup is mostly your own risk. On a work laptop, the same setup can touch employer data, internal repos, local credentials, managed security…

Workspace Trust looks like a small VS Code prompt, but for AI coding tools it is really a local security boundary decision. That is the right way to think about it. Most developers see the prompt, click through it, and move on. That was already lazy before AI coding tools, local MCP servers, terminals, tasks, extensions, and repo-level automation started getting mixed into the same…

How to Secure AI Coding Assistants in Real Software Teams AI coding assistants can save a team hours and create brand-new failure modes just as fast. Give one loose repo access, a shell, and the wrong prompt, and it stops feeling like autocomplete. It starts feeling like an eager junior contractor with credentials. That is the real shift. The question is not which assistant writes code fastest.…

Snyk Raises $196.5 Million at $7.4 Billion Valuation

Home › Application Security Snyk Raises $196.5 Million at $7.4 Billion Valuation By Ionut Arghire on December 13, 2022 Tweet Boston-based developer security firm Snyk on Monday announced that it has raised $196.5 million in a Series G funding round, at a $7.4 billion valuation. To date, the company has raised over $1 billion. The investment round was led by QIA (Qatar Investment Authority), with…