DEV Community

# vulnerabilities

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
PamStealer: the macOS stealer that checks your password through PAM before stealing it

PamStealer: the macOS stealer that checks your password through PAM before stealing it

1
Comments 2
5 min read
Why CVSS Alone Doesn't Tell You What to Patch First (And How KEV + EPSS Changes Everything)

Why CVSS Alone Doesn't Tell You What to Patch First (And How KEV + EPSS Changes Everything)

Comments
5 min read
Vulnerability Management is a Workaround for a Missing Call Graph

Vulnerability Management is a Workaround for a Missing Call Graph

Comments 2
12 min read
Inside the CVE List: How Vulnerabilities Get Their ID Cards

Inside the CVE List: How Vulnerabilities Get Their ID Cards

Comments
1 min read
What I found when I security-scanned 10 AI-built apps (and how to check yours manually)

What I found when I security-scanned 10 AI-built apps (and how to check yours manually)

Comments
4 min read
One CVE, four ignore files: unifying Trivy, Grype, Snyk and osv-scanner

One CVE, four ignore files: unifying Trivy, Grype, Snyk and osv-scanner

Comments
4 min read
Windows and Linux Sensitive Directory Path Summary

Windows and Linux Sensitive Directory Path Summary

6
Comments
5 min read
Architectural Collapse: How Extension Poisoning, Node Vulnerabilities, and Infrastructure Fog Enabled the GitHub Repository Breach

Architectural Collapse: How Extension Poisoning, Node Vulnerabilities, and Infrastructure Fog Enabled the GitHub Repository Breach

Comments
5 min read
Symlink races and a client-controlled auth header in OpenClaw

Symlink races and a client-controlled auth header in OpenClaw

Comments
1 min read
How to Audit Your AI Agent Skills for Credential Exposure and Malicious Instructions

How to Audit Your AI Agent Skills for Credential Exposure and Malicious Instructions

1
Comments 1
3 min read
What "Code That Runs Before You Click Trust" Means for AI Coding Tools (Claude Code Case Study)

What "Code That Runs Before You Click Trust" Means for AI Coding Tools (Claude Code Case Study)

Comments
4 min read
Flutter and Dart Dependency Security — Scanning pub.dev Packages for Vulnerabilities

Flutter and Dart Dependency Security — Scanning pub.dev Packages for Vulnerabilities

Comments
8 min read
One CVE, four ignore files: unifying Trivy, Grype, Snyk and osv-scanner

One CVE, four ignore files: unifying Trivy, Grype, Snyk and osv-scanner

1
Comments
4 min read
How to Check if You're Affected by CVE-2026-26268 in Cursor (and What to Do)

How to Check if You're Affected by CVE-2026-26268 in Cursor (and What to Do)

Comments
3 min read
How to Check If Your Claude Code Installation Is Affected by CVE-2026-39861 (CVSS 7.7)

How to Check If Your Claude Code Installation Is Affected by CVE-2026-39861 (CVSS 7.7)

Comments
3 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.