MMakroumiinmakroumi.hashnode.devSQLFluff vs Squawk vs SlowQL: Choosing the Right SQL Static Analyzer for Your StackThere are three serious open source SQL static analyzers worth knowing about in 2026. Most engineers have heard of SQLFluff. Fewer know Squawk. SlowQL is newer. They solve different problems and the d15h ago·7 min read
AFAtif Farrukhindevopsunlocked.hashnode.devThe Terraform State Time Bomb: How to Defuse it Before Your Infra CollapsesThe Call You Don't Want to Get at 2 AM I've walked into this exact situation twice in my career, and it's the same story both times. A promising startup, six engineers, moving fast. Terraform was intr5h ago·15 min read
BVBhavani Vuduthalainbhavaniiam.hashnode.devUnderstanding IAM: Core Concepts with a Real ScenarioIntroduction In modern organizations, employees need access to different systems, applications, and data to perform their daily tasks. Managing who can access these resources is very important for sec8m ago·4 min read
Oohmygodindreamworksecurity.hashnode.devThe DeFi OpSec Playbook: 7 Lessons From $135M in 2026 Protocol HacksSmart contracts aren't the weakest link anymore — your team is. In Q1 2026, DeFi protocols lost over $135 million to hacks. But here's the uncomfortable truth: the majority of these losses had nothing to do with smart contract bugs. Step Finance ($4...12m ago·6 min read
ABAlon Baradincvereports.hashnode.devCVE-2026-31833: CVE-2026-31833: Stored XSS in Umbraco CMS UFM Rendering Pipeline via Permissive DOMPurify ConfigurationCVE-2026-31833: Stored XSS in Umbraco CMS UFM Rendering Pipeline via Permissive DOMPurify Configuration Vulnerability ID: CVE-2026-31833 CVSS Score: 6.7 Published: 2026-03-11 Umbraco CMS versions 16.2.0 to 16.5.0 and 17.0.0 to 17.2.1 contain a stor...54m ago·2 min read
OMOleg Mukhininolegmukh.inDepth vs breadth: the two kinds of AI agent security testingGartner predicts up to 40% of enterprise apps will feature AI agents by end of 2026, up from less than 5% in 2025. That could sharply expand the agent attack surface in a single year. And there is no 11h ago·7 min read
ABAlon Baradincvereports.hashnode.devCVE-2026-31834: CVE-2026-31834: Vertical Privilege Escalation in Umbraco CMS User Group ManagementCVE-2026-31834: Vertical Privilege Escalation in Umbraco CMS User Group Management Vulnerability ID: CVE-2026-31834 CVSS Score: 7.2 Published: 2026-03-11 A vertical privilege escalation vulnerability in Umbraco CMS allows authenticated backoffice u...1h ago·2 min read
ABAlon Baradincvereports.hashnode.devCVE-2026-31839: CVE-2026-31839: Striae Integrity Bypass in Digital Confirmation WorkflowCVE-2026-31839: Striae Integrity Bypass in Digital Confirmation Workflow Vulnerability ID: CVE-2026-31839 CVSS Score: 8.2 Published: 2026-03-11 Striae versions prior to 3.0.0 suffer from a high-severity integrity bypass vulnerability in the digital...1h ago·2 min read
ABAlon Baradincvereports.hashnode.devCVE-2026-31857: CVE-2026-31857: Authenticated Remote Code Execution in Craft CMS via Server-Side Template InjectionCVE-2026-31857: Authenticated Remote Code Execution in Craft CMS via Server-Side Template Injection Vulnerability ID: CVE-2026-31857 CVSS Score: 8.1 Published: 2026-03-11 Craft CMS versions 4.x and 5.x are vulnerable to a high-severity Server-Side ...2h ago·2 min read
ABAlon Baradincvereports.hashnode.devGHSA-G3HP-VVQF-8VW6: GHSA-G3HP-VVQF-8VW6: Stored Cross-Site Scripting in Craft CMS User Permissions PageGHSA-G3HP-VVQF-8VW6: Stored Cross-Site Scripting in Craft CMS User Permissions Page Vulnerability ID: GHSA-G3HP-VVQF-8VW6 CVSS Score: 3.5 Published: 2026-03-11 Craft CMS versions prior to 5.8.22 contain a Stored Cross-Site Scripting (XSS) vulnerabi...2h ago·2 min read
719
585
350
331
231
214
209
202
188
173
143
137
133
