#codesecurity — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #codesecurity, aggregated by home.social.
-
How Anthropic’s Model Context Protocol Allows for Easy Remote Execution
-
How Anthropic’s Model Context Protocol Allows for Easy Remote Execution
-
How Anthropic’s Model Context Protocol Allows for Easy Remote Execution
-
How Anthropic’s Model Context Protocol Allows for Easy Remote Execution
-
How Anthropic’s Model Context Protocol Allows for Easy Remote Execution
-
Anthropic launches AI security tool that can find software bugs humans miss | Fortune https://fortune.com/2026/02/20/exclusive-anthropic-rolls-out-ai-tool-that-can-hunt-software-bugs-on-its-own-including-the-most-dangerous-ones-humans-miss/ #cybersecurity #Anthropic #codesecurity #ClaudeCodeSecurity #codereview
-
🎉 Ah, the KIM-1 turns 50, and what better way to celebrate than a GitHub demo no one asked for, buried under a pile of buzzword salad? 🤖 Just remember, folks: nothing screams "party" like platform #AI and code security lingo. 🎂
https://github.com/netzherpes/KIM1-Demo #KIM1 #50thAnniversary #GitHubDemo #BuzzwordSalad #CodeSecurity #HackerNews #ngated -
AI models often miss IaC security flaws—not because they lack power, but because they lack focus.
This benchmark shows how accuracy improves when AI gets clear context, tight scope, and an understanding of why a fix works.
It’s the difference between a quick patch and real remediation.
At AppSec Village, we appreciate sponsors like Symbiotic AI, who push for true precision in AI-powered security.
Read the full article →
https://www.symbioticsec.ai/blog/cracking-code-insights-ai-powered-code-security-remediation?utm_source=apv&utm_medium=technical&utm_campaign=apv&utm_id=apv -
🚨 OH NO! React Server Components can't catch a break! 🎉 Just when you thought it was safe to deploy... surprise! More vulnerabilities! 😱 But hey, at least they're not letting hackers run wild with RCE, just crash your server and peek at your code. 🤦♂️ So much for smooth sailing, React team!
https://react.dev/blog/2025/12/11/denial-of-service-and-source-code-exposure-in-react-server-components #ReactServerComponents #vulnerabilities #ServerCrash #CodeSecurity #HackerNews #HackerNews #ngated -
Contagious Interview attackers go ‘full stack’ to fool developers https://www.csoonline.com/article/4098699/contagious-interview-attackers-go-full-stack-to-fool-developers.html #SoftwareDevelopment #SecurityPractices #CodeSecurity #Security
-
OpenAI Aardvark: The AI Security Tool for Developers Are you ready for AI-powered security?
https://eproductempire.blogspot.com/2025/11/openai-aardvark-gpt-5-security-tool.html #OpenAI #Aardvark #GPT5 #AISecurity #CyberSecurity #DeveloperTools #CodeSecurity #DevSecOps #TechNews #AI -
OpenAI has launched Aardvark, an autonomous “agentic security researcher” powered by GPT-5.
It scans codebases for vulnerabilities, validates exploitability in sandboxed environments, and auto-generates potential patches.
Early reports show 10+ CVEs identified in open-source projects.
What’s your view - is AI-driven vulnerability research the future of cybersecurity or another layer of risk?
#CyberSecurity #OpenAI #GPT5 #Aardvark #Infosec #AI #DevSecOps #VulnerabilityManagement #MachineLearning #CodeSecurity #TechNews
-
via @dotnet : .NET and .NET Framework October 2025 servicing releases updates
https://ift.tt/8fz4RwU
#DotNet #DotNetFramework #October2025 #SecurityUpdates #CVE #SoftwareDevelopment #Programming #ReleaseNotes #TechUpdates #DevCommunity #CodeSecurity #SoftwareEng… -
If you train ML models, they can learn to write more secure code. But the quality of the training data is only as good as your AppSec tooling. #AICoding #SecureDevelopment #CodeSecurity #SoftwareDevelopment
https://jpmellojr.blogspot.com/2025/09/how-ai-coding-tools-can-learn-to.html -
Python Packages Infected with New PondRAT Malware Targeting Software Developers
Are you a software developer who relies on Python packages for your projects? Well, buckle up because there's a new malware in town targeting Python packages, and it's called PondRAT. Palo Alto Networks Unit 42 recently...
#PythonPackages #PondRAT #MalwareAlert #SoftwareSecurity #CyberThreats #DeveloperSafety #MalwareProtection #CodeSecurity #TechNews #CyberAwareness #news #tech
https://cloudhosting.evostrix.eu/python-packages-infected-with-new-pondrat-malware-targeting-software-developers/ -
Tickets to the biggest #appsec conference in New England are now available! Go to basconf.eventbrite.com to grab one!
-
Do you want Infrastructure as Code security? :kubernetes: :github: :microsoft:
Do you use CodeQL to scan your code (which is, btw, free for open source code)?
From today you can use #CodeQL to scan it, using a new open source package written by my team mate @geekmasher
Scan #Terraform, #GitHubActions, #HelmChart, and #AzureBicep, with more in progress.
#IAC #InfrastructureAsCode #SAST #CodeSecurity #CodeSmells #StaticAnalysis #GitHub #AdvancedSecurity
-
I've wrapped up SpotBugs/FindSecBugs in a bow 🎁 in a GitHub Action, so you can use it in GitHub Code Scanning - free for open source projects, and also available for paid users of GitHub Advanced Security.
SpotBugs and FindSecBugs work with JVM languages - Scala, Java, and Clojure, mainly.
https://github.com/marketplace/actions/spotbugs-with-findsecbugs
Point it at the results of the build, and go.
#GitHub #SAST #Scala #JVM #Clojure #Java #CodeSecurity #SpotBugs #FindSecBugs #DevSecOps #SDLC
-
BluBracket nabs $12M Series A to expand source code security platform - BluBracket, an early stage startup that focuses on keeping source code repositorie... - http://feedproxy.google.com/~r/Techcrunch/~3/TfjpTGSWS3A/ #evolutionequitypartners #recentfunding #codesecurity #enterprise #blubracket #developer #ajayarora #security #startups #funding #cloud #tc