12 articles
This post addresses CVE-2026-31431 ("Copy Fail"), a security vulnerability in Docker Engine, offering guidance on mitigation strategies.
This collection addresses security challenges and solutions for AI coding agents in enterprise infrastructure.
NIST introduced a prioritized enrichment model for the NVD, limiting CVSS scores and metadata to critical CVEs only.
Docker AI Governance addresses the security gap created by AI agents running outside traditional enterprise controls like CI/CD pipelines and VPCs.
Slack migrated 700+ SSH-based data pipeline jobs to REST-based architecture using Quarry and YARN Distributed Shell.
This blog post celebrates the one-year milestone of Docker Hardened Images and shares key achievements and development insights.
This article explores managing context in long-running multi-agent AI systems to maintain coherence in complex investigations.
This post covers secure execution of AI agents using NanoClaw and Docker-based sandboxing environments.
This post analyzes CVE-2026-2441, a high-severity Use After Free (UAF) vulnerability in Chrome's Blink CSS engine that allowed remote code execution inside a sandbox.
Slack's Security Engineering team built an AI agent system to automate and improve security alert investigations at scale.
This post introduces Slack's Anomaly Event Response (AER), a proactive security system that automatically terminates user sessions upon detecting suspicious behavior.
The article introduces Microsoft's Common Annotated Security Key (CASK) standard, an open format for minting identifiable security tokens that improve secret detection accuracy.
CSS-Tricks
Microsoft