seen from United States
seen from United States
seen from Germany
seen from China
seen from United States
seen from United States
seen from China
seen from China
seen from China
seen from Argentina
seen from United States
seen from Canada
seen from T1
seen from Australia
seen from India
seen from Germany
seen from United States
seen from Australia
seen from Argentina
seen from United States
Dependency remediation bolstered with CVE Lite CLI
CVE Lite CLI puts vulnerability scanning where developers actually work: the terminal. Local lockfile checks, actionable fix guidance, and less CI friction. https://jpmellojr.blogspot.com/2026/06/dependency-remediation-bolstered-with.html
Most AI-built apps don’t fail because of product.
They fail because of security.
Right now, vibecoding is enabling people to ship faster than ever—but also to unknowingly ship vulnerabilities:
– Hardcoded API keys – Weak authentication – Missing security headers – Risky or hallucinated dependencies
And at the same time, attackers are evolving.
AI agents are now being used to: scale attacks, automate exploitation, and target systems continuously.
So we’re entering a new reality:
If you can build fast, attackers can break faster.
I put together a deep dive into: • The 7 most common vibecoding security risks • Real-world attack patterns • Prompts and tools to secure AI-generated code
Read the full article:
Vibecoding security risks are real and growing. Learn how hackers use AI agents to attack vibe-coded products and the tools and prompts that
#vibecoding #cybersecurity #aiagents #programming #webdev #saas #startups #owasp #machinelearning #tech
GenAI Security Project ramps up guidance for AppSec teams
AI risks are evolving fast and OWASP's GenAI Security Project is keeping pace—new red-teaming taxonomy, 200+ mapped solutions, and updated guidance for AppSec teams. https://jpmellojr.blogspot.com/2026/04/genai-security-project-ramps-up.html.
OWASP adopts DockSec: What it is — and why it matters
OWASP just adopted DockSec to cut through container security noise and sharpen DevSecOps signal. See how this AI-powered analyzer helps teams ship safer software: https://jpmellojr.blogspot.com/2026/03/owasp-adopts-docksec-what-it-is-and-why.html
A deep technical analysis of Agentic AI security in 2026, covering critical risks, frameworks like OWASP AIVSS and MAESTRO, practical implementation strategies, and future governance challenges for autonomous AI systems.
what we do after meetups be like (nyilván megyek haza, öreg vagyok én már kocsmázni)
vótam London
Educate. Excel. Empower.
