%term

Why Restricting AI Code Security Tools Is the Wrong Answer - and What AppSec Programs Actually Need

Jun 17, 2026 By Chris Wysopal In Veracode

I signed the Free Fable letter at freefable.org. I want to explain why — and why the reasoning behind it matters for AI code security beyond any single AI model. Cybersecurity defenders are not just critics of technology. We are the builders and operators of the systems that keep real organizations running under pressure.

Read Post

Veracode

Read more about Why Restricting AI Code Security Tools Is the Wrong Answer - and What AppSec Programs Actually Need

We wrote the docs

Jun 17, 2026 By Todd H. Gardner In CertKit

Most security vendors hide their documentation behind a login. Some don’t write it at all. You get a sales page, a demo, and a request to install an agent on your servers, and you’re expected to trust that the thing does what the marketing says. That’s backwards. So we wrote the docs, and we put all of them at certkit.io/docs. No login, no account gate, no “contact us for details.” You can read every page before you create an account.

Read Post

CertKit

Read more about We wrote the docs

The Howler Episode 31 - Trisha Farrow

Jun 17, 2026 By Arctic Wolf Networks In Arctic Wolf

This month, we sit down with Trisha Farrow, our Senior Vice President of People and Facilities. In this episode, Trisha Farrow shares the heart behind her leadership—why human connection, courage, and curiosity matter more than ever in a fast-changing world. From building inclusive cultures to navigating AI in HR, she offers a powerful perspective on what it really means to lead people, not just processes.

View Video

Arctic Wolf

Read more about The Howler Episode 31 - Trisha Farrow

Riscosity AI governance Overview

Jun 17, 2026 By Riscosity In Riscosity

Find out how to easily layer AI governance and data flow posture management on data being used by employees, applications and systems with AI services, models and agents.

View Video

Riscosity

Read more about Riscosity AI governance Overview

AI Attack Scenarios - Realistic Threats for Organizations #cybersecuritycompany #cybersec

Jun 17, 2026 By Astra Security In Astra

View Video

Astra

Read more about AI Attack Scenarios - Realistic Threats for Organizations #cybersecuritycompany #cybersec

Map Every Non-Human Identity In Your Environments

Jun 17, 2026 By GitGuardian In GitGuardian

Read the full report here: https://www.gitguardian.com/state-of-secrets-sprawl-report-2026

View Video

GitGuardian

Read more about Map Every Non-Human Identity In Your Environments

The Hidden Security Risk in AI Extensions!

Jun 17, 2026 By KnowBe4 | Securing Humans & Agents In KnowBe4

AI add-ons can automate everything from travel to banking—but are they opening backdoors to your private data? Here is what to look for before granting permissions.

View Video

KnowBe4

Read more about The Hidden Security Risk in AI Extensions!

Inside CVE-2026-53435: Authenticated Deserialization to Full Controller Takeover in Jenkins via config.xml

Jun 17, 2026 By foresiet In Foresiet

How a low-privileged account turns an XML configuration upload into arbitrary file read, user impersonation, and remote code execution — and how to detect and stop it. Published 16 June 2026 · Fact-checked against the official project advisory and government vulnerability databases.

Read Post

Foresiet

Read more about Inside CVE-2026-53435: Authenticated Deserialization to Full Controller Takeover in Jenkins via config.xml

1Password + Kiro: Trusted Access for AI-Powered Development

Jun 17, 2026 By Dennis Kromhout van der Meer and Scott Lougheed In 1Password

AI agents now write code, fix bugs, and ship to production. But in order to do useful work, agents require credentials. At 1Password, one of our core AI security principles is that raw credentials should never be directly exposed to LLMs, but all too often, that’s exactly what happens: most teams sacrifice security for speed and hand agents secrets in plaintext.

Read Post

1Password

Read more about 1Password + Kiro: Trusted Access for AI-Powered Development

Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue

Jun 17, 2026 By Thomas Gauvin In Cloudflare

2026 is the year agent harnesses go to production. The software that controls the model’s access to the outside world — harnesses like Codex, Claude Code, OpenCode, Pi, and Project Think — has matured to the point where teams are deploying agents as real, load-bearing infrastructure, not just prototypes. But building agents that survive production is hard.

Read Post

Cloudflare

Read more about Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Why Restricting AI Code Security Tools Is the Wrong Answer - and What AppSec Programs Actually Need

We wrote the docs

The Howler Episode 31 - Trisha Farrow

Riscosity AI governance Overview

AI Attack Scenarios - Realistic Threats for Organizations #cybersecuritycompany #cybersec

Map Every Non-Human Identity In Your Environments

The Hidden Security Risk in AI Extensions!

Inside CVE-2026-53435: Authenticated Deserialization to Full Controller Takeover in Jenkins via config.xml

1Password + Kiro: Trusted Access for AI-Powered Development

Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue

Monthly Archive

Follow Us