Security
16 posts
Governance in AI Agent Security
Why prompt injection defenses keep failing and what enterprise AI deployments actually need to detect the lethal trifecta.
SQL Injection Detection with Bandit Rule B608: Beyond the Basics
Learn how Bandit's B608 rule detects SQL injection vulnerabilities in Python. Understand common patterns, secure alternatives, and defense strategies.
Advanced Bandit Configuration: Custom Rules and Team Workflows
Master advanced Bandit features including custom rules, baseline configurations, and team-wide security policies for enterprise Python development.
Ghost Letters: The Hidden Signatures AI Leaves in Your Text
From fancy punctuation to zero-width characters, here's how AI tools leave their calling cards in your content-and what you can do about it.
Bandit Severity Levels: Understanding High, Medium, and Low Findings
Master Bandit's severity and confidence classification system. Learn how to prioritize security findings and build effective remediation workflows.
Bandit's Hardcoded Password Detection: Rules B105-B107 in Practice
Learn how Bandit detects hardcoded passwords in Python code with rules B105, B106, and B107. Includes real examples and secure alternatives.
Bandit Security Rules: Complete Python Vulnerability Guide
Master Python security with this comprehensive guide to Bandit's security rules. Learn what each rule detects and how to fix common vulnerabilities.
Building Your Digital Vault: Secure Document Organization Made Simple
A step-by-step guide to creating a secure, organized digital vault for your important documents: a core family office practice that anyone can implement.
Silos to Shared Libraries: Guide to Inner Source Adoption
Guide for transitioning from team-specific code to shared libraries, covering governance models, security, and standardized development practices.
Secure Coding Practices for Python Library Developers
Beyond tools, what principles guide secure Python library development? Explore essential practices: input validation, least privilege, error handling, and more.