security 22

• plugin marketplaces are the new endpoint policy for coding agents Jun 26, 2026
• VEX turns container scanning into queue discipline Jun 25, 2026
• agent sandboxes are the new enterprise desktop Jun 23, 2026
• container escape is becoming an agent workload Jun 22, 2026
• your CI agent is reading more than your prompt Jun 20, 2026
• coding agents made repositories the security boundary Jun 10, 2026
• permission prompts are not an agent security strategy Jun 8, 2026
• the developer laptop is the first production environment for agents Jun 5, 2026
• some Kubernetes vulnerabilities do not have patches Jun 1, 2026
• github's agent audit api is the boring feature that matters May 25, 2026
• Watch out - that recruiter profile might be a scam. Check here first. May 20, 2026
• How to safely inspect a repository before running anything on your machine May 20, 2026
• Watch out, your recruiter might be a scam May 20, 2026
• containers are becoming policy wrappers for ai agents May 13, 2026
• From capital one to unreviewed AI code the same ssrf, different decade May 11, 2026
• github failed at the only thing they should do: git Apr 29, 2026
• nodes/proxy Was Never a Monitoring Permission Apr 28, 2026
• User Namespaces Are a Bigger Container Milestone Than Most Docker Headlines Apr 27, 2026
• MCP Adoption Is Accelerating Faster Than Agent Governance Apr 23, 2026
• AI Agent Governance Is Becoming the Real Internal Platform Apr 18, 2026
• MicroVMs Are Becoming the New Container Boundary for AI Work Apr 17, 2026
• The LiteLLM Supply Chain Attack — What AI-Dependent Codebases Should Audit Apr 6, 2026