Tag: security

• posts

• TIL: September 29, 2025 - Weekly Reading: Security, Programming, and AI

  Sep 28, 2025

  • weekly-reading
  • security
  • programming
  • ai
  Security From MCP to Shell – Stephen Xu, Cayden Liao, Raymond, Jayden Yet another method for exploiting Model Context Protocol (MCP) servers to get arbitrary code execution on the local machine. This seems to be mostly an issue f...

• TIL: August 10, 2025 - Weekly Reading: AI, HTTP/1.1 request smuggling, and Life Advice

  Aug 9, 2025

  • weekly-reading
  • AI
  • security
  Artificial Intelligence Enough AI copilots! We need AI HUDs – Geoffrey Litt Geoffrey Litt writes that, rather than conversational AI agents that talk to you and grab your attention, we should create improved interfaces that enhan...

• TIL: July 23, 2025 - Weekly Reading: AI, Go, and Security

  Jul 22, 2025

  • ai
  • security
  • weekly-reading
  Artificial Intelligence AI Engineer World’s Fair: The New Code – Sean Grove, OpenAI I felt very weird watching this talk. It suggests a lot of things that are very unproductive like storing prompts in source control instead of code...

• TIL: July 13, 2025 - Weekly Reading: MCP Server security, Bespoke Agents

  Jul 12, 2025

  • weekly-reading
  • AI
  • security
  MCP Server security Getting Authentication Right is Critical to Running MCP Servers – Juan Antonio Osorio, Stacklok After finding out about ToolHive last week, I took a closer look at it this week. Authentication, Authorization, an...

• TIL: July 6, 2025 - Weekly Reading: AI, Go's greentea GC, and OSS Security

  Jul 5, 2025

  • AI
  • go
  • security
  • weekly-reading
  Artificial Intelligence Who are your MCP servers talking to? - Stacklok Stacklok introduces their project toolhive which is a project that runs MCP servers in containers with strict network policies to prevent MCP servers f...

• TIL: May 26, 2025 - Weekly Reading: Go, Security, AI

  May 25, 2025

  • programming
  • AI
  • security
  • weekly-reading
  Go What’s New In Go - Cameron Balahan, Marc Dougherty (Google) A very basic presentation of new features in Go 1.24. It looks like it was done for Google I/O 2025 but it’s not one of the in-person sessions. It covers the improvem...

• TIL: May 19, 2025 - Weekly Reading: The Go Scheduler, CNCF/NATS Drama, and Signalgate

  May 19, 2025

  • programming
  • go
  • security
  • weekly-reading
  Here are some of the things I was reading this last week or two. Go Go Scheduler - Nguyen Trong Nghia This is a really good write up of how the Go scheduler works. It covers the GMP model, Goroutine creation, the schedule loop and...