@ktamarapalli

Kalyan Tamarapalli

@ktamarapalli

Security Researcher

Joined February 2026

About

Nothing here yet.

Available for

Nothing here yet.

Kalyan Tamarapalli's blogs

Kalyan Tamarapalli | Security Researchktamarapalli.hashnode.dev18 posts

Articles Threads Comments

Recently published

KTKalyan Tamarapalliktamarapalli.hashnode.dev

Merkle Manifests: Why Build Servers Cannot Be Trusted

4d ago · 8 min read · Introduction: The Build Server Is Not a Source of Truth Most CI/CD security models assume one thing without stating it directly: If the build server produced the artifact, the artifact must reflect t

Join discussion

KTKalyan Tamarapalliktamarapalli.hashnode.dev

The Duress Protocol: Designing CI/CD Security for Human Coercion

May 23 · 6 min read · Introduction: Security Usually Assumes Voluntary Participation Most security systems assume one thing without saying it explicitly: If a human authorizes an action, they intended to authorize it. Th

Join discussion

KTKalyan Tamarapalliktamarapalli.hashnode.dev

The Neural Risk Engine: Why Not All Deployments Deserve the Same Friction

May 16 · 4 min read · Introduction: Static Friction Is a Design Failure Most CI/CD systems treat all approvals equally. Every deployment: looks the same costs the same effort requires the same action This seems fair.

Join discussion

KTKalyan Tamarapalliktamarapalli.hashnode.dev

The Physical Sentinel: Designing an Isolated Approval Terminal

May 9 · 10 min read · Introduction: The Browser Cannot Be Trusted to Display Truth Most modern approval flows assume the machine requesting an action can also be trusted to display what is being approved. That assumption i

Join discussion

KTKalyan Tamarapalliktamarapalli.hashnode.dev

The Forensic Black Box: Logs That Cannot Be Deleted

May 2 · 10 min read · Introduction: Prevention Fails. Forensics Must Not. Most security architectures are built around prevention. That instinct is understandable. Teams invest in: access controls secrets management net

Join discussion

Kalyan Tamarapalli

About

Available for

Kalyan Tamarapalli's blogs

Recently published

Merkle Manifests: Why Build Servers Cannot Be Trusted

The Duress Protocol: Designing CI/CD Security for Human Coercion

The Neural Risk Engine: Why Not All Deployments Deserve the Same Friction

The Physical Sentinel: Designing an Isolated Approval Terminal

The Forensic Black Box: Logs That Cannot Be Deleted

Search Hashnode

Kalyan Tamarapalli

About

Available for

Kalyan Tamarapalli's blogs

Recently published

Merkle Manifests: Why Build Servers Cannot Be Trusted

The Duress Protocol: Designing CI/CD Security for Human Coercion

The Neural Risk Engine: Why Not All Deployments Deserve the Same Friction

The Physical Sentinel: Designing an Isolated Approval Terminal

The Forensic Black Box: Logs That Cannot Be Deleted