SECURITY

13 items

9 posts, 2 tools, 2 guides

BlogMay 22, 2026

Sandboxed Agents Are Becoming the Team Control Plane

Runtime's Launch HN thread is a useful signal: teams do not just want isolated coding agents. They want a control plane for approvals, secrets, telemetry, review, and merge policy.

AI Agents Developer Tools Security Developer Workflow

BlogMay 17, 2026

Agent Skills Are Becoming Package Managers

GitHub trending is full of agent skill registries. The winning pattern is not more prompts. It is dependency governance for the instructions your coding agents inherit.

AI Coding Agent Skills Developer Workflow Security Claude Code

BlogMay 14, 2026

Claude Code Plugin URLs Turn Skills Into a Supply Chain

Claude Code's newer plugin URL and hard-deny controls are small release-note items with a big implication: agent extensions now need supply-chain discipline.

Claude Code AI Coding Security Agent Skills Developer Tools

BlogMay 12, 2026

TanStack's npm Compromise Is the CI Lesson Agent Teams Needed

The TanStack npm incident was not just a package-security story. It was a reminder that AI agent workflows inherit every weak trust boundary in CI.

Security AI Agents GitHub Actions Developer Workflow Supply Chain

GuideMay 6, 2026

Claude Code Complete Course

A complete, citation-backed Claude Code course with setup, prompting systems, MCP, CI, security, cost controls, and capstone workflows.

BlogMay 5, 2026

OpenAI's Codex Mac Certificate Deadline Is a Runbook Test

OpenAI's May 8 macOS certificate rotation for ChatGPT, Codex, Codex CLI, and Atlas is not just a one-off update. It is a useful test of how your team governs AI developer tools.

OpenAI Codex Security AI Coding Developer Workflow

BlogMay 2, 2026

Approval Fatigue Is an Agent Security Bug

Manual approval prompts stop protecting users when coding agents ask too often. The better pattern is risk-aware autonomy: safe defaults, narrow deny rules, and approvals only for meaningful changes.

AI Agents Security Claude Code Developer Workflow

BlogMay 2, 2026

lib0xc Is the Opposite of Rewrite Culture

Microsoft's lib0xc landed on Hacker News with a practical message: safer systems code often means better C APIs, warnings, bounds checks, and incremental adoption, not a heroic rewrite.

C Systems Programming Security Open Source Developer Tools

BlogApr 29, 2026

Codex Security Preview: AppSec Agent for Real Repos

OpenAI's Codex Security agent reviews app code for vulns. Here is what it caught and missed on three real production repos.

OpenAI Codex Security AppSec AI Code Review

GuideApr 21, 2026

Chronicle Research Preview Setup Guide

Set up Codex Chronicle on macOS, manage permissions, and understand privacy, security, and troubleshooting.

BlogApr 18, 2026

OpenAI Codex Cloud Security Playbook 2026: Internet Access, Prompt Injection, and Safe Defaults

A practical security playbook for running Codex cloud tasks safely in 2026 using OpenAI docs: internet access controls, domain allowlists, HTTP method limits, and review workflows.

OpenAI Codex Security AI Agents Developer Workflow

ToolApr 9, 2026

Glama

Largest MCP server directory with 17,000+ servers. Security grading (A/B/C/F), compatibility scoring, and install configs. ChatGPT-like UI for browsing and testing.

mcp directory security developer-tools model-context-protocol

Tool

Cloudflare

CDN, DNS, DDoS protection, and edge computing. Free tier handles most needs. This site uses Cloudflare for DNS and analytics. Workers for edge compute.

infrastructure cdn dns security edge analytics

Get Smarter About AI Dev

New tutorials, open-source projects, and deep dives on coding agents - delivered weekly.

One email per weekReal code, not theoryFree forever

Browse All Tags