SECURITY BLOG
Practical security for builders
How to ship AI-built apps that don't get you hacked. No jargon, just fixes.
AllAiAi Code SecurityAi Generated Code SecurityAntsApi securityAuthentificationAuthorizationAwsBlackcatBroken access controlChecklistCi CdCloud SecurityCnilCpanelCveCybersecuriteData breachData BreachDependency ConfusionDevops SecurityÉduconnectFranceFrance titresFuite De DonneesGdprGolangIdorIncident ResponseInfrastructure SecurityMfa FatigueNextjsOauth SecurityOwaspRansomwareRgpdRlsRubyS3 MisconfigurationSaas SecuritySecure Vibe CodingSecurityShopify SecuritySso AbuseSupabaseSupply ChainVibe CodingVibe Coding SecurityVishingWeb App SecurityWeb Hosting SecurityZero Day
VIBE-CODING-SECURITY
Gov Data Breach: A 15-Year-Old Arrested
A 15-year-old teenager compromised a French government agency in 2026. Discover the vulnerabilities exploited and how to avoid them in your apps.
May 1, 2026 · 5 min readRead article →
IDOR
ÉduConnect Breach: 7.2M School Records via IDOR
An IDOR flaw in ÉduConnect's API exposed 7.2 million school report cards. Incrementing a number in the URL was enough to access any student's data.
May 1, 2026 · 4 min readRead article →