DEV Community

# appsec

Application security topics beyond the web, including mobile and desktop applications.

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
DAST false negatives vs SAST false positives: a real case
securitystefan profile

DAST false negatives vs SAST false positives: a real case

#security #appsec #sast #dast
1
Comments
10 min read
Cache Poisoning at the Edge: How Cloudflare Workers & Vercel Edge Functions Break Everything You Thought You Knew
arashad_dodhiya_0e4bdba5a profile

Cache Poisoning at the Edge: How Cloudflare Workers & Vercel Edge Functions Break Everything You Thought You Knew

#websecurity #cachepoisoning #appsec #bugbounty
Comments
7 min read
AI Coding Agents Are the New Attack Surface Nobody's Ready For
coridev profile

AI Coding Agents Are the New Attack Surface Nobody's Ready For

#security #ai #appsec #devops
1
Comments
3 min read
Mobile App Authentication: Best Practices for iOS and Android Developers (2026)
securecodinghub profile

Mobile App Authentication: Best Practices for iOS and Android Developers (2026)

#mobile #security #authentication #appsec
Comments
17 min read
Palo Alto Unit 42 Caught Indirect Prompt Injection in the Wild — Here's What Your Agent Firewall Needs to Stop It
coridev profile

Palo Alto Unit 42 Caught Indirect Prompt Injection in the Wild — Here's What Your Agent Firewall Needs to Stop It

#security #ai #appsec #cybersecurity
1
Comments
5 min read
How Malicious MCP Configs in Amazon Q Developer Could Execute Arbitrary Code — and How to Stop It
coridev profile

How Malicious MCP Configs in Amazon Q Developer Could Execute Arbitrary Code — and How to Stop It

#security #ai #appsec #cybersecurity
Comments
5 min read
Protecting Developers Means Protecting Their Secrets
dwayne_mcdaniel profile

Protecting Developers Means Protecting Their Secrets

#security #devsecops #appsec #devops
Comments
10 min read
The Tool Found Corridor Nodes — But the Bigger Finding Was Where It Found None
victor_areyzaga profile

The Tool Found Corridor Nodes — But the Bigger Finding Was Where It Found None

#security #docker #appsec #opensource
Comments
5 min read
Claude Code Security: Why the Real Risk Lies Beyond Code
dwayne_mcdaniel profile

Claude Code Security: Why the Real Risk Lies Beyond Code

#security #ai #devsecops #appsec
Comments 1
5 min read
Who Actually Owns This Service Account?
dwayne_mcdaniel profile

Who Actually Owns This Service Account?

#security #nhi #devsecops #appsec
Comments
5 min read
North Korean Hackers Poisoned 140+ npm Packages in an AI Dev Tooling Attack. Here's What Would Have Caught It.
coridev profile

North Korean Hackers Poisoned 140+ npm Packages in an AI Dev Tooling Attack. Here's What Would Have Caught It.

#security #appsec #cybersecurity #ai
1
Comments
4 min read
The Service That Stored Nothing Sensitive But Still Became High Priority
victor_areyzaga profile

The Service That Stored Nothing Sensitive But Still Became High Priority

#security #appsec #devops #docker
Comments
7 min read
Security First, Transparency Always: Inside GitGuardian's Responsible Disclosure Process
dwayne_mcdaniel profile

Security First, Transparency Always: Inside GitGuardian's Responsible Disclosure Process

#security #disclosure #devsecops #appsec
5
Comments
4 min read
Why Security Should Be Modeled as a Graph
eldor_zufarov_1966 profile

Why Security Should Be Modeled as a Graph

#cybersecurity #devsecops #architecture #appsec
Comments
7 min read
DBD Cornucopia is now available to play online!
sydseter profile

DBD Cornucopia is now available to play online!

#gamedev #security #appsec #threatmodeling
Comments
3 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.