Tag
Security
5essays ·All tags
Zero-Trust Ingest: Why You Should Retire Your Static DSNs
Static write-only telemetry endpoints are an attack runway for agentic systems. Replace them with an ephemeral JWT gate in front of your collector.
Secret Rotation Patterns for Local/Edge Agents
Long-lived ENV secrets turn a host compromise into a platform breach. Bootstrap once, exchange for short-lived Vault or edge credentials, and never let the agent hold a permanent secret.
Why Every Release You've Ever Published Can Be Silently Changed — And How to Fix It
A practical guide to permanent, verifiable, machine-readable software releases using Arweave, Radicle, IPFS, and a manifest format your CI pipeline — and your agents — can reason about.
The Kernel Said No: How to Actually Contain AI Coding Agents on macOS
What the Matt Shumer incident reveals about agent trust boundaries, how macOS Seatbelt works at the kernel, and how to lock Claude Code, Codex, Cursor, and OpenCode to your work directory in under five minutes.
The Twelve Layers of LLM Cost: Why One Optimization Is Never Enough
Context bloat is a reasoning failure, not just a bill — and a compounding stack from Code Mode to a fine-tuning flywheel cuts agent tokens by ~99.8% while restoring model performance.