<?xml version="1.0" encoding="UTF-8"?>
 <rdf:RDF xmlns="http://purl.org/rss/1.0/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:cc="http://web.resource.org/cc/" xmlns:syn="http://purl.org/rss/1.0/modules/syndication/" xmlns:admin="http://webns.net/mvcb/">
  <channel rdf:about="http://pinboard.in">
    <title>Pinboard (stevo)</title>
    <link>https://pinboard.in/u:stevo/public/</link>
    <description>recent bookmarks from stevo</description>
    <items>
      <rdf:Seq>	<rdf:li rdf:resource="https://warden.sentry.dev/benchmarking"/>
	<rdf:li rdf:resource="https://code.visualstudio.com/docs/enterprise/policies"/>
	<rdf:li rdf:resource="https://secretspec.dev/"/>
	<rdf:li rdf:resource="https://cybersecuritynews.com/claude-codes-github-actions-vulnerability/"/>
	<rdf:li rdf:resource="https://github.com/Infisical/agent-vault"/>
	<rdf:li rdf:resource="https://cybersecuritynews.com/claude-codes-network-sandbox-vulnerability/"/>
	<rdf:li rdf:resource="https://x.com/github/status/2056884788179726685"/>
	<rdf:li rdf:resource="https://kabir.au/blog/the-ctf-scene-is-dead"/>
	<rdf:li rdf:resource="https://github.com/lirantal/npq"/>
	<rdf:li rdf:resource="https://x.com/CloudflareDev/status/2052467567588196703"/>
	<rdf:li rdf:resource="https://x.com/sagitz_/status/2049153195243372569"/>
	<rdf:li rdf:resource="https://github.blog/security/securing-the-git-push-pipeline-responding-to-a-critical-remote-code-execution-vulnerability/"/>
	<rdf:li rdf:resource="https://vercel.com/kb/bulletin/vercel-april-2026-security-incident"/>
	<rdf:li rdf:resource="https://github.com/byteowlz/kyz"/>
	<rdf:li rdf:resource="https://github.com/ironsh/actions-demo"/>
	<rdf:li rdf:resource="https://x.com/Butanium_/status/2039079715823128964"/>
	<rdf:li rdf:resource="https://github.com/joelhooks/agent-secrets"/>
	<rdf:li rdf:resource="https://openai.com/index/designing-agents-to-resist-prompt-injection/"/>
	<rdf:li rdf:resource="https://x.com/thdxr/status/2029827114443137439"/>
	<rdf:li rdf:resource="https://x.com/rauchg/status/2026864132423823499"/>
	<rdf:li rdf:resource="https://cybersecuritynews.com/github-copilot-exploited/"/>
	<rdf:li rdf:resource="https://x.com/mbrg0/status/2024175986695082329"/>
	<rdf:li rdf:resource="https://x.com/headinthebox/status/2023865517250081130"/>
	<rdf:li rdf:resource="https://github.com/cline/cline/security/advisories/GHSA-9ppg-jx86-fqw7"/>
	<rdf:li rdf:resource="https://red.anthropic.com/2026/zero-days/"/>
	<rdf:li rdf:resource="https://ike.io/open-a-folder-all-your-agents-are-mine/"/>
	<rdf:li rdf:resource="https://embracethered.com/blog/posts/2025/the-normalization-of-deviance-in-ai/"/>
	<rdf:li rdf:resource="https://labs.zenity.io/p/claude-in-chrome-a-threat-analysis"/>
	<rdf:li rdf:resource="https://kibty.town/blog/mintlify/"/>
	<rdf:li rdf:resource="https://react.dev/blog/2025/12/11/denial-of-service-and-source-code-exposure-in-react-server-components"/>
	<rdf:li rdf:resource="https://github.com/lachlan2k/React2Shell-CVE-2025-55182-original-poc"/>
	<rdf:li rdf:resource="https://react2shell.com/"/>
	<rdf:li rdf:resource="https://ampcode.com/threads/T-d372dd3f-ca0f-43bf-9214-2a23c148f578"/>
	<rdf:li rdf:resource="https://github.com/facebook/react/pull/35277/files"/>
	<rdf:li rdf:resource="https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components"/>
	<rdf:li rdf:resource="https://x.com/amasad/status/1992999661649773006"/>
	<rdf:li rdf:resource="https://x.com/p1njc70r/status/1991231714027532526"/>
	<rdf:li rdf:resource="https://github.com/anthropic-experimental/sandbox-runtime"/>
	<rdf:li rdf:resource="https://github.com/coder/httpjail"/>
	<rdf:li rdf:resource="https://github.com/subroutinecom/workspace"/>
	<rdf:li rdf:resource="https://www.anthropic.com/news/disrupting-AI-espionage"/>
	<rdf:li rdf:resource="https://www.theregister.com/2025/10/30/phantomraven_npm_malware/"/>
	<rdf:li rdf:resource="https://github.com/fr0gger/proximity"/>
	<rdf:li rdf:resource="https://www.theregister.com/2025/10/15/vc_code_extension_leaks/"/>
	<rdf:li rdf:resource="https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview"/>
	<rdf:li rdf:resource="https://simonwillison.net/2025/Oct/15/csrf-in-go/"/>
	<rdf:li rdf:resource="https://labs.zenity.io/p/analyzing-the-security-risks-of-openai-s-agentkit"/>
	<rdf:li rdf:resource="https://github.com/anthropics/claude-code/tree/main/.devcontainer"/>
	<rdf:li rdf:resource="https://blog.cloudflare.com/code-mode/"/>
	<rdf:li rdf:resource="https://simonwillison.net/2025/Apr/11/camel/"/>
	<rdf:li rdf:resource="https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/"/>
	<rdf:li rdf:resource="https://github.com/coder/httpjail/issues/57"/>
	<rdf:li rdf:resource="https://github.com/nikvdp/cco"/>
	<rdf:li rdf:resource="https://ammar.io/blog/httpjail"/>
	<rdf:li rdf:resource="https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/?ref=ghuntley.com"/>
	<rdf:li rdf:resource="https://www.zdnet.com/article/hacker-slips-malicious-wiping-command-into-amazons-q-ai-coding-assistant-and-devs-are-worried/?ref=ghuntley.com"/>
	<rdf:li rdf:resource="https://trivy.dev/latest/"/>
	<rdf:li rdf:resource="https://ghuntley.com/secure-codegen/"/>
	<rdf:li rdf:resource="https://github.com/SawyerHood/ufiaw"/>
	<rdf:li rdf:resource="https://monthofaibugs.com/"/>
	<rdf:li rdf:resource="https://www.theregister.com/2025/08/27/nx_npm_supply_chain_attack/"/>
	<rdf:li rdf:resource="https://github.blog/security/vulnerability-research/safeguarding-vs-code-against-prompt-injections/"/>
	<rdf:li rdf:resource="https://x.com/0xzak/status/1955655184522371361"/>
	<rdf:li rdf:resource="https://x.com/wunderwuzzi23/status/1954905132371788115"/>
	<rdf:li rdf:resource="https://www.scworld.com/news/sloppy-ai-defenses-take-cybersecurity-back-to-the-1990s-researchers-say"/>
	<rdf:li rdf:resource="https://towardsdatascience.com/agentic-ai-evaluation-playbook/"/>
	<rdf:li rdf:resource="https://github.com/yarrick/iodine"/>
	<rdf:li rdf:resource="https://x.com/mbrg0/status/1953932780855013682"/>
	<rdf:li rdf:resource="https://x.com/mbrg0/status/1953815729947447770"/>
	<rdf:li rdf:resource="https://towardsdatascience.com/the-mcp-security-survival-guide-best-practices-pitfalls-and-real-world-lessons/"/>
      </rdf:Seq>
    </items>
  </channel><item rdf:about="https://warden.sentry.dev/benchmarking">
    <title>Overview | Warden</title>
    <dc:date>2026-06-30T19:26:05+00:00</dc:date>
    <link>https://warden.sentry.dev/benchmarking</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:dfce461ed80d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://code.visualstudio.com/docs/enterprise/policies">
    <title>Centrally manage VS Code settings with policies</title>
    <dc:date>2026-06-19T08:07:17+00:00</dc:date>
    <link>https://code.visualstudio.com/docs/enterprise/policies</link>
    <dc:creator>stevo</dc:creator><dc:subject>vscode security</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:78ff9b7fef7a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:vscode"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://secretspec.dev/">
    <title>Declare secrets once. Store them anywhere. | SecretSpec</title>
    <dc:date>2026-06-16T17:56:46+00:00</dc:date>
    <link>https://secretspec.dev/</link>
    <dc:creator>stevo</dc:creator><dc:subject>devpro security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:95ebdc34d69f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:devpro"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://cybersecuritynews.com/claude-codes-github-actions-vulnerability/">
    <title>Claude Code's GitHub Actions Vulnerability Lets Attackers Compromise Any Repository</title>
    <dc:date>2026-06-03T20:20:56+00:00</dc:date>
    <link>https://cybersecuritynews.com/claude-codes-github-actions-vulnerability/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:7fc76ce3fde5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/Infisical/agent-vault">
    <title>Infisical/agent-vault: A HTTP credential proxy and vault for AI agents like Claude Code, OpenClaw, Hermes, custom agents + harnesses, and more.</title>
    <dc:date>2026-05-26T07:00:50+00:00</dc:date>
    <link>https://github.com/Infisical/agent-vault</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:63a5822ba07d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://cybersecuritynews.com/claude-codes-network-sandbox-vulnerability/">
    <title>Claude Code's Network Sandbox Vulnerability Exposes User Credentials and Source Code</title>
    <dc:date>2026-05-23T12:03:15+00:00</dc:date>
    <link>https://cybersecuritynews.com/claude-codes-network-sandbox-vulnerability/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:a1ffdea7533c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/github/status/2056884788179726685">
    <title>GitHub on X: &quot;We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, org</title>
    <dc:date>2026-05-20T06:14:57+00:00</dc:date>
    <link>https://x.com/github/status/2056884788179726685</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:bf6964c8ed8f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://kabir.au/blog/the-ctf-scene-is-dead">
    <title>The CTF scene is dead - kabir.au</title>
    <dc:date>2026-05-17T08:44:08+00:00</dc:date>
    <link>https://kabir.au/blog/the-ctf-scene-is-dead</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:4ed42273c530/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/lirantal/npq">
    <title>lirantal/npq: safely install npm packages by auditing them pre-install stage</title>
    <dc:date>2026-05-13T05:51:01+00:00</dc:date>
    <link>https://github.com/lirantal/npq</link>
    <dc:creator>stevo</dc:creator><dc:subject>security node</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:c3f73e7dbdb1/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:node"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/CloudflareDev/status/2052467567588196703">
    <title>Cloudflare Developers on X: &quot;Multiple security vulnerabilities affecting React Server Components and Next.js have been disclosed. We strongly recommend updating your applications immediately. Cloudflare WAF managed rules already mitigate the disclosed den</title>
    <dc:date>2026-05-07T22:56:20+00:00</dc:date>
    <link>https://x.com/CloudflareDev/status/2052467567588196703</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:52e7d413270d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/sagitz_/status/2049153195243372569">
    <title>sagitz on X: &quot;We achieved Remote Code Execution on GitHub - and got access to millions of repositories belonging to other users and organizations 🤯 All it took was a single `git push` Here's how we did it (CVE-2026-3854) 🧵⬇️ https://t.co/CrnBRDo</title>
    <dc:date>2026-04-28T20:23:31+00:00</dc:date>
    <link>https://x.com/sagitz_/status/2049153195243372569</link>
    <dc:creator>stevo</dc:creator><dc:subject>github security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:24ae8c1a8275/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:github"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.blog/security/securing-the-git-push-pipeline-responding-to-a-critical-remote-code-execution-vulnerability/">
    <title>Securing the git push pipeline: Responding to a critical remote code execution vulnerability - The GitHub Blog</title>
    <dc:date>2026-04-28T20:21:00+00:00</dc:date>
    <link>https://github.blog/security/securing-the-git-push-pipeline-responding-to-a-critical-remote-code-execution-vulnerability/</link>
    <dc:creator>stevo</dc:creator><dc:subject>github security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:a0410a0ce981/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:github"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://vercel.com/kb/bulletin/vercel-april-2026-security-incident">
    <title>Vercel April 2026 security incident | Vercel Knowledge Base</title>
    <dc:date>2026-04-19T19:41:01+00:00</dc:date>
    <link>https://vercel.com/kb/bulletin/vercel-april-2026-security-incident</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:17aaf93c8972/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/byteowlz/kyz">
    <title>byteowlz/kyz: simple credentials storage for humans and agents</title>
    <dc:date>2026-04-06T21:48:07+00:00</dc:date>
    <link>https://github.com/byteowlz/kyz</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:61ad6f0e3ba1/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/ironsh/actions-demo">
    <title>ironsh/actions-demo</title>
    <dc:date>2026-04-03T00:37:56+00:00</dc:date>
    <link>https://github.com/ironsh/actions-demo</link>
    <dc:creator>stevo</dc:creator><dc:subject>github security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:5bf8d04b672a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:github"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/Butanium_/status/2039079715823128964">
    <title>Clément Dumas on X: &quot;⚠️ Supply chain attack in progress: someone is squatting Anthropic-internal npm package names targeting people trying to compile the leaked Claude Code source. `color-diff-napi` and `modifiers-napi` — both registered today, sam</title>
    <dc:date>2026-04-01T00:43:02+00:00</dc:date>
    <link>https://x.com/Butanium_/status/2039079715823128964</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:87e17347e045/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/joelhooks/agent-secrets">
    <title>joelhooks/agent-secrets: 🛡️ Portable credential management for AI agents — Age encryption, session leases, killswitch</title>
    <dc:date>2026-03-21T10:17:03+00:00</dc:date>
    <link>https://github.com/joelhooks/agent-secrets</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:ba6db6b12d87/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://openai.com/index/designing-agents-to-resist-prompt-injection/">
    <title>Designing AI agents to resist prompt injection | OpenAI</title>
    <dc:date>2026-03-12T19:25:28+00:00</dc:date>
    <link>https://openai.com/index/designing-agents-to-resist-prompt-injection/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:254a22eaafab/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/thdxr/status/2029827114443137439">
    <title>dax on X: &quot;we spoke to a company today who's security team is so concerned by ai code they're considering banning ai tools your first reaction might be &quot;they're gonna get left behind&quot; but if you are practical their concerns aren't invalid if you are a hug</title>
    <dc:date>2026-03-10T15:30:05+00:00</dc:date>
    <link>https://x.com/thdxr/status/2029827114443137439</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:550623a3b3db/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/rauchg/status/2026864132423823499">
    <title>Guillermo Rauch on X: &quot;We've identified, responsibly disclosed, and confirmed 2 critical, 2 high, 2 medium, 1 low security vulnerabilities in Cloudflare's vibe-coded framework Vinext. We believe the security of the internet is the highest priority, especi</title>
    <dc:date>2026-03-01T13:40:45+00:00</dc:date>
    <link>https://x.com/rauchg/status/2026864132423823499</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:2e1ebd95accc/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://cybersecuritynews.com/github-copilot-exploited/">
    <title>GitHub Copilot Exploited to Perform Full Repository Takeover via Passive Prompt Injection</title>
    <dc:date>2026-02-26T18:30:28+00:00</dc:date>
    <link>https://cybersecuritynews.com/github-copilot-exploited/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai copilot security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:51df79e67c6f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:copilot"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/mbrg0/status/2024175986695082329">
    <title>Michael Bargury on X: &quot;@cline @adnanthekhan ok we got it figured out. `gtlhub-actions` attacked a second repo belonging to newrelic: newrelic/test-oac-repository this time they did it by naming their branch with a command injection so that when the workfl</title>
    <dc:date>2026-02-19T15:45:19+00:00</dc:date>
    <link>https://x.com/mbrg0/status/2024175986695082329</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:a876c75a5d2a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/headinthebox/status/2023865517250081130">
    <title>Erik Meijer on X: &quot;In Code They Think; In Proof We Trust AI agents that use tools can be hijacked by prompt injection to exfiltrate sensitive data. Shortly after Anthropic launched Claude Cowork, their coding assistant with network access and file system</title>
    <dc:date>2026-02-18T21:23:54+00:00</dc:date>
    <link>https://x.com/headinthebox/status/2023865517250081130</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:364e327c4597/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/cline/cline/security/advisories/GHSA-9ppg-jx86-fqw7">
    <title>Unauthorized npm publish of Cline CLI cline@2.3.0 with modified postinstall script to install openclaw · Advisory · cline/cline</title>
    <dc:date>2026-02-18T07:59:19+00:00</dc:date>
    <link>https://github.com/cline/cline/security/advisories/GHSA-9ppg-jx86-fqw7</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:01b0f0381bad/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://red.anthropic.com/2026/zero-days/">
    <title>0-Days red.anthropic.com</title>
    <dc:date>2026-02-06T20:42:42+00:00</dc:date>
    <link>https://red.anthropic.com/2026/zero-days/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:2f6510057f1e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://ike.io/open-a-folder-all-your-agents-are-mine/">
    <title>Exploit Cursor Agents to create persistent, distributed threats — ike.io</title>
    <dc:date>2026-01-25T18:44:14+00:00</dc:date>
    <link>https://ike.io/open-a-folder-all-your-agents-are-mine/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:471464de5d98/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://embracethered.com/blog/posts/2025/the-normalization-of-deviance-in-ai/">
    <title>The Normalization of Deviance in AI · Embrace The Red</title>
    <dc:date>2025-12-29T23:04:07+00:00</dc:date>
    <link>https://embracethered.com/blog/posts/2025/the-normalization-of-deviance-in-ai/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:3e8fedda6a9c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://labs.zenity.io/p/claude-in-chrome-a-threat-analysis">
    <title>Claude in Chrome: A Threat Analysis</title>
    <dc:date>2025-12-29T17:11:02+00:00</dc:date>
    <link>https://labs.zenity.io/p/claude-in-chrome-a-threat-analysis</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security web</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:7bd537ef91bc/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:web"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://kibty.town/blog/mintlify/">
    <title>how to hack discord, vercel and more with one easy trick - eva's site</title>
    <dc:date>2025-12-19T14:24:42+00:00</dc:date>
    <link>https://kibty.town/blog/mintlify/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:d1cddc279816/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://react.dev/blog/2025/12/11/denial-of-service-and-source-code-exposure-in-react-server-components">
    <title>Denial of Service and Source Code Exposure in React Server Components – React</title>
    <dc:date>2025-12-11T23:45:08+00:00</dc:date>
    <link>https://react.dev/blog/2025/12/11/denial-of-service-and-source-code-exposure-in-react-server-components</link>
    <dc:creator>stevo</dc:creator><dc:subject>security react</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:d255fbac4dc5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/lachlan2k/React2Shell-CVE-2025-55182-original-poc">
    <title>lachlan2k/React2Shell-CVE-2025-55182-original-poc: Original Proof-of-Concept's for React2Shell CVE-2025-55182</title>
    <dc:date>2025-12-05T12:59:19+00:00</dc:date>
    <link>https://github.com/lachlan2k/React2Shell-CVE-2025-55182-original-poc</link>
    <dc:creator>stevo</dc:creator><dc:subject>react security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:66bb0407812e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://react2shell.com/">
    <title>React2Shell (CVE-2025-55182/CVE-2025-66478)</title>
    <dc:date>2025-12-04T18:23:46+00:00</dc:date>
    <link>https://react2shell.com/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security react</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:329ec83c9619/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://ampcode.com/threads/T-d372dd3f-ca0f-43bf-9214-2a23c148f578">
    <title>React server actions RCE reproduction case - Amp</title>
    <dc:date>2025-12-04T17:49:16+00:00</dc:date>
    <link>https://ampcode.com/threads/T-d372dd3f-ca0f-43bf-9214-2a23c148f578</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai react security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:f88b64e0e46e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/facebook/react/pull/35277/files">
    <title>Patch FlightReplyServer with fixes from ReactFlightClient by sebmarkbage · Pull Request #35277 · facebook/react</title>
    <dc:date>2025-12-04T00:23:39+00:00</dc:date>
    <link>https://github.com/facebook/react/pull/35277/files</link>
    <dc:creator>stevo</dc:creator><dc:subject>security react</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:0e24fcb0b830/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components">
    <title>Critical Security Vulnerability in React Server Components – React</title>
    <dc:date>2025-12-03T17:12:18+00:00</dc:date>
    <link>https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components</link>
    <dc:creator>stevo</dc:creator><dc:subject>react security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:891fe058b76b/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:react"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/amasad/status/1992999661649773006">
    <title>Amjad Masad on X: &quot;NPM worm “Shai Hulud” is back and you can see a list of people getting pwned in realtime by refreshing this GitHub search page. When a user is infected the worm collects API keys and secrets and pushes them to a new repo on GitHub. </title>
    <dc:date>2025-11-24T21:13:17+00:00</dc:date>
    <link>https://x.com/amasad/status/1992999661649773006</link>
    <dc:creator>stevo</dc:creator><dc:subject>npm security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:33da23ad03ca/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:npm"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/p1njc70r/status/1991231714027532526">
    <title>P1njc70r󠁩󠁦󠀠󠁡󠁳󠁫󠁥󠁤󠀠󠁡󠁢󠁯󠁵󠁴󠀠󠁴󠁨󠁩󠁳󠀠󠁵 on X: &quot;Friendly advice, Be careful when using Google's Antigravity IDE with sensitive data (API keys, secrets...) Attackers can hide instructions in code comments</title>
    <dc:date>2025-11-20T08:37:51+00:00</dc:date>
    <link>https://x.com/p1njc70r/status/1991231714027532526</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:aa22132ef3ce/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/anthropic-experimental/sandbox-runtime">
    <title>anthropic-experimental/sandbox-runtime: A lightweight sandboxing tool for enforcing filesystem and network restrictions on arbitrary processes at the OS level, without requiring a container.</title>
    <dc:date>2025-11-16T18:25:23+00:00</dc:date>
    <link>https://github.com/anthropic-experimental/sandbox-runtime</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai sandbox security opencode</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:89c160ea106d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:sandbox"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:opencode"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/coder/httpjail">
    <title>coder/httpjail: HTTP(s) request filter for processes</title>
    <dc:date>2025-11-15T11:14:57+00:00</dc:date>
    <link>https://github.com/coder/httpjail</link>
    <dc:creator>stevo</dc:creator><description><![CDATA[firewall]]></description>
<dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:dd61e6974036/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/subroutinecom/workspace">
    <title>subroutinecom/workspace: Workspace orchestration for local development environments using docker-in-docker</title>
    <dc:date>2025-11-14T20:59:34+00:00</dc:date>
    <link>https://github.com/subroutinecom/workspace</link>
    <dc:creator>stevo</dc:creator><dc:subject>agentic security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:7368c553a046/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:agentic"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.anthropic.com/news/disrupting-AI-espionage">
    <title>Disrupting the first reported AI-orchestrated cyber espionage campaign Anthropic</title>
    <dc:date>2025-11-14T00:01:44+00:00</dc:date>
    <link>https://www.anthropic.com/news/disrupting-AI-espionage</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:8eb4d32099e6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.theregister.com/2025/10/30/phantomraven_npm_malware/">
    <title>npm hit by PhantomRaven supply chain attack • The Register</title>
    <dc:date>2025-11-01T09:50:25+00:00</dc:date>
    <link>https://www.theregister.com/2025/10/30/phantomraven_npm_malware/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:498a016735dd/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/fr0gger/proximity">
    <title>fr0gger/proximity: Proximity is a MCP security scanner powered with NOVA</title>
    <dc:date>2025-10-31T08:06:14+00:00</dc:date>
    <link>https://github.com/fr0gger/proximity</link>
    <dc:creator>stevo</dc:creator><dc:subject>security mcp</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:e82279aa03fa/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.theregister.com/2025/10/15/vc_code_extension_leaks/">
    <title>Devs of VS Code extensions are leaking secrets en masse • The Register</title>
    <dc:date>2025-10-16T11:38:50+00:00</dc:date>
    <link>https://www.theregister.com/2025/10/15/vc_code_extension_leaks/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:f0ce90de13a7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview">
    <title>How I Almost Got Hacked By A 'Job Interview'</title>
    <dc:date>2025-10-15T22:49:12+00:00</dc:date>
    <link>https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:a32d79a06567/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://simonwillison.net/2025/Oct/15/csrf-in-go/">
    <title>A modern approach to preventing CSRF in Go</title>
    <dc:date>2025-10-15T07:39:04+00:00</dc:date>
    <link>https://simonwillison.net/2025/Oct/15/csrf-in-go/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security web golang</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:8278dab28cc9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:web"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:golang"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://labs.zenity.io/p/analyzing-the-security-risks-of-openai-s-agentkit">
    <title>Analyzing The Security Risks of OpenAI's AgentKit</title>
    <dc:date>2025-10-09T18:56:15+00:00</dc:date>
    <link>https://labs.zenity.io/p/analyzing-the-security-risks-of-openai-s-agentkit</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:51d2d8a238e2/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/anthropics/claude-code/tree/main/.devcontainer">
    <title>claude-code/.devcontainer at main · anthropics/claude-code</title>
    <dc:date>2025-09-30T20:46:35+00:00</dc:date>
    <link>https://github.com/anthropics/claude-code/tree/main/.devcontainer</link>
    <dc:creator>stevo</dc:creator><dc:subject>Claude security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:9d4bb2320e99/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:Claude"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.cloudflare.com/code-mode/">
    <title>Code Mode: the better way to use MCP</title>
    <dc:date>2025-09-29T11:59:22+00:00</dc:date>
    <link>https://blog.cloudflare.com/code-mode/</link>
    <dc:creator>stevo</dc:creator><dc:subject>mcp security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:42227769dfb5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://simonwillison.net/2025/Apr/11/camel/">
    <title>CaMeL offers a promising new direction for mitigating prompt injection attacks</title>
    <dc:date>2025-09-28T08:17:24+00:00</dc:date>
    <link>https://simonwillison.net/2025/Apr/11/camel/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai prompt security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:bfdc5f80620c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:prompt"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/">
    <title>Salesforce Agentforce tricked into leaking sales leads • The Register</title>
    <dc:date>2025-09-27T09:21:18+00:00</dc:date>
    <link>https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:80b747528e3a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/coder/httpjail/issues/57">
    <title>Full proxy bypass on any CloudFlare (or other proxy service) requests · Issue #57 · coder/httpjail</title>
    <dc:date>2025-09-21T09:46:32+00:00</dc:date>
    <link>https://github.com/coder/httpjail/issues/57</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:091edd585a05/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/nikvdp/cco">
    <title>nikvdp/cco: A thin protective layer for Claude Code</title>
    <dc:date>2025-09-20T21:14:05+00:00</dc:date>
    <link>https://github.com/nikvdp/cco</link>
    <dc:creator>stevo</dc:creator><dc:subject>security tool claude ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:7d8bf3939dad/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:tool"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:claude"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://ammar.io/blog/httpjail">
    <title>Fine-grained HTTP filtering for Claude Code</title>
    <dc:date>2025-09-20T21:09:02+00:00</dc:date>
    <link>https://ammar.io/blog/httpjail</link>
    <dc:creator>stevo</dc:creator><dc:subject>tool security agentic ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:15eef7b4177a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:tool"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:agentic"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/?ref=ghuntley.com">
    <title>The lethal trifecta for AI agents: private data, untrusted content, and external communication</title>
    <dc:date>2025-09-20T20:47:22+00:00</dc:date>
    <link>https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/?ref=ghuntley.com</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security mcp</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:8373b92c2048/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.zdnet.com/article/hacker-slips-malicious-wiping-command-into-amazons-q-ai-coding-assistant-and-devs-are-worried/?ref=ghuntley.com">
    <title>Hacker slips malicious 'wiping' command into Amazon's Q AI coding assistant - and devs are worried | ZDNET</title>
    <dc:date>2025-09-20T20:47:05+00:00</dc:date>
    <link>https://www.zdnet.com/article/hacker-slips-malicious-wiping-command-into-amazons-q-ai-coding-assistant-and-devs-are-worried/?ref=ghuntley.com</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:cda15c8cdc83/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://trivy.dev/latest/">
    <title>Trivy</title>
    <dc:date>2025-09-08T10:32:53+00:00</dc:date>
    <link>https://trivy.dev/latest/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:stevo/b:67fa249846a2/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://ghuntley.com/secure-codegen/">
    <title>anti-patterns and patterns for achieving secure generation of code via AI</title>
    <dc:date>2025-09-05T12:57:21+00:00</dc:date>
    <link>https://ghuntley.com/secure-codegen/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security agentic ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:f61c66c075ce/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:agentic"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/SawyerHood/ufiaw">
    <title>SawyerHood/ufiaw: An npm package that will turn your coding agents into waifus when installed</title>
    <dc:date>2025-08-31T00:15:35+00:00</dc:date>
    <link>https://github.com/SawyerHood/ufiaw</link>
    <dc:creator>stevo</dc:creator><dc:subject>funny security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:b3a533d1bdaf/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:funny"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://monthofaibugs.com/">
    <title>Agentic ProbLLMs - The Month of AI Bugs 2025</title>
    <dc:date>2025-08-30T11:30:10+00:00</dc:date>
    <link>https://monthofaibugs.com/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:79c07cfd1ffe/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.theregister.com/2025/08/27/nx_npm_supply_chain_attack/">
    <title>Nx NPM packages poisoned in AI-assisted supply chain attack • The Register</title>
    <dc:date>2025-08-30T09:21:39+00:00</dc:date>
    <link>https://www.theregister.com/2025/08/27/nx_npm_supply_chain_attack/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:2dbb836ec2be/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.blog/security/vulnerability-research/safeguarding-vs-code-against-prompt-injections/">
    <title>Safeguarding VS Code against prompt injections - The GitHub Blog</title>
    <dc:date>2025-08-25T20:39:02+00:00</dc:date>
    <link>https://github.blog/security/vulnerability-research/safeguarding-vs-code-against-prompt-injections/</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai GitHub security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:10966dce282a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:GitHub"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/0xzak/status/1955655184522371361">
    <title>zak.eth on X: &quot;🚨 UPDATE: Full Post-Mortem On Cursor Security Incident In yesterday’s thread I explained how I got drained after installing a malicious extension in @cursor_ai. This is the deeper dive into what I found, what I did, and how you can avo</title>
    <dc:date>2025-08-18T19:41:41+00:00</dc:date>
    <link>https://x.com/0xzak/status/1955655184522371361</link>
    <dc:creator>stevo</dc:creator><dc:subject>security mcp ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:255596fb1b2f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/wunderwuzzi23/status/1954905132371788115">
    <title>Johann Rehberger on X: &quot;👉 Episode 11: Claude Code - Data Exfiltration with DNS 💥 I compromised Claude Code via prompt injection, read sensitive files from the machine, and exfiltrated the data via DNS 😈 🙌 Happy to share this high-severity vuln</title>
    <dc:date>2025-08-17T10:16:17+00:00</dc:date>
    <link>https://x.com/wunderwuzzi23/status/1954905132371788115</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:c5f9b59a97e3/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.scworld.com/news/sloppy-ai-defenses-take-cybersecurity-back-to-the-1990s-researchers-say">
    <title>Sloppy AI defenses take cybersecurity back to the 1990s, researchers say | SC Media</title>
    <dc:date>2025-08-13T19:04:35+00:00</dc:date>
    <link>https://www.scworld.com/news/sloppy-ai-defenses-take-cybersecurity-back-to-the-1990s-researchers-say</link>
    <dc:creator>stevo</dc:creator><dc:subject>security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:f0f019be754c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://towardsdatascience.com/agentic-ai-evaluation-playbook/">
    <title>Agentic AI: On Evaluations | Towards Data Science</title>
    <dc:date>2025-08-09T23:11:22+00:00</dc:date>
    <link>https://towardsdatascience.com/agentic-ai-evaluation-playbook/</link>
    <dc:creator>stevo</dc:creator><dc:subject>mcp security ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:4dc1bcaeb5fa/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/yarrick/iodine">
    <title>yarrick/iodine: Official git repo for iodine dns tunnel</title>
    <dc:date>2025-08-09T22:29:17+00:00</dc:date>
    <link>https://github.com/yarrick/iodine</link>
    <dc:creator>stevo</dc:creator><dc:subject>tools security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:fe8ffcf82264/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:tools"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/mbrg0/status/1953932780855013682">
    <title>Michael Bargury @ DC on X: &quot;next. we hijacked cursor via jira mcp by submitting a support ticket cursor harvests and exfiltrate all creds from your dev machine and then reports back to the dev that &quot;the 2-hour downtime that affected user transactions has</title>
    <dc:date>2025-08-09T22:06:32+00:00</dc:date>
    <link>https://x.com/mbrg0/status/1953932780855013682</link>
    <dc:creator>stevo</dc:creator><dc:subject>mcp ai security</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:ea1621f07607/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://x.com/mbrg0/status/1953815729947447770">
    <title>mbg @ BH / DC on X: &quot;we hijacked microsoft's copilot studio agents and got them to spill out their private knowledge, reveal their tools and let us use them to dump full crm records these are autonomous agents.. no human in the loop #DEFCON #BHUSA @tamiri</title>
    <dc:date>2025-08-09T09:17:50+00:00</dc:date>
    <link>https://x.com/mbrg0/status/1953815729947447770</link>
    <dc:creator>stevo</dc:creator><dc:subject>ai security mcp</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:3c4f70865477/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://towardsdatascience.com/the-mcp-security-survival-guide-best-practices-pitfalls-and-real-world-lessons/">
    <title>The MCP Security Survival Guide: Best Practices, Pitfalls, and Real-World Lessons | Towards Data Science</title>
    <dc:date>2025-08-08T10:16:55+00:00</dc:date>
    <link>https://towardsdatascience.com/the-mcp-security-survival-guide-best-practices-pitfalls-and-real-world-lessons/</link>
    <dc:creator>stevo</dc:creator><dc:subject>security mcp ai</dc:subject>
<dc:identifier>https://pinboard.in/u:stevo/b:499d581b37fb/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:mcp"/>
	<rdf:li rdf:resource="https://pinboard.in/u:stevo/t:ai"/>
</rdf:Bag></taxo:topics>
</item>
</rdf:RDF>