Mastodawn

SHADID.IO (@shadid_io)

스텔스로 개발한 '세계 최초의 Confidential Development Environment(CDE)' 출시(또는 발표) 소식입니다. 해당 CDE는 ollm_ai 위에 구축되었고, cursor_ai 등과 달리 프라이버시 약속을 넘어 민감한 코드에 대해 암호학적으로 안전한 개발 환경을 제공한다고 주장합니다.

https://x.com/shadid_io/status/2020860717734490210

#cde #ollm_ai #securedevelopment #privacy #cryptography

SHADID.IO 🇶🇦 (@shadid_io) on X

We’ve been in stealth building: the world’s first Confidential Development Environment (CDE) a core product on top of @ollm_ai While other tools like @cursor_ai only promise privacy, we built a platform for the most sensitive code on Earth. it creates a cryptographically secure

X (formerly Twitter)

Show thread

agile Feb 9

Why this works
Treat security like IKEA treats furniture: simple, affordable, and user-focused. This approach helps small teams stay agile while keeping devices safe. Try it on your next project and see how it changes your development cycle.

#HardwareSecurity #AgileDevelopment #IKEAFactor #SmallTeams #EdTech #OpenSource #UserCenteredDesign #SecureDevelopment #FrugalInnovation #IoTsecurity (6/6)

ActiveState Dec 4

With 97% of developers now using AI coding tools at work, the question isn’t if AI is in your codebase. It’s where.

We take a closer look at how AI-generated code can alter your software supply chain, sometimes in ways you won’t notice until it's too late.

👉 See our thoughts on managing AI-driven risk with confidence.

🔗 https://bit.ly/3Xyi5bH

#SoftwareSupplyChain #AIinEngineering #DevSecOps #OpenSourceSecurity #SoftwareSecurity #AIGeneratedCode #SecureDevelopment #ActiveState

TechNadu Nov 25

UK lawmakers are urging a shift toward software liability, arguing that the current model externalizes the cost of insecurity onto users and national infrastructure. Recommendations include developer liability, stronger cyber-resilience incentives, and mandatory incident reporting.

💬 What impact would a liability regime have on secure development and supply-chain risk?

Source: https://therecord.media/software-companies-liable-britain-security

Follow @technadu for more InfoSec-focused updates.

#InfoSec #CyberSecurity #SoftwareSecurity #TechPolicy #CyberResilience #RiskManagement #SecureDevelopment #NCSC #CyberAwareness

jpmellojr Sep 17

If you train ML models, they can learn to write more secure code. But the quality of the training data is only as good as your AppSec tooling. #AICoding #SecureDevelopment #CodeSecurity #SoftwareDevelopment
https://jpmellojr.blogspot.com/2025/09/how-ai-coding-tools-can-learn-to.html

diesUndDasMitTassen 🇺🇦Aug 17, 2025

Gleich auf der #froscon 13:45 Develop Secure Software - The DevGuard Project

#softwaredevelopment #itsecurity #securedevelopment

https://programm.froscon.org/froscon2025/talk/0bb18762-1aa0-4008-80b6-eb9b8cee9fcd/

auch im stream

https://streaming.media.ccc.de/froscon2025/HS6

FrOSCon 2025

Schedule, talks and talk submissions for FrOSCon 2025

Hazardius 🡗🡗🡗 🏳️‍🌈🏳️‍⚧️Jun 5, 2025

With my eyes on the next year's planning of competency growth at work I have a question to anyone working in #Security and/or #SecureDevelopment .

What are the good ways I could try to help the team that I'm the part of to improve how it's handling security (in general and in development)?

I have a few ideas, but it might be nice to see what other smart(er) brains can think of.

#CyberSecurity #SecurityChampion

OWASP Foundation Apr 28, 2025

Join Dag Flachet at OWASP Global AppSec EU 2025 in Barcelona for a powerful session on building better AppSec programs—one small step at a time.

🔄 Kaizen for Your AppSec Program: Turning Big Problems into Small Steps
📅 Thursday, May 29, 2025
⏰ 3:30 PM – 4:15 PM CEST

🔗 Register: https://owasp.glueup.com/event/123983/register/

Perfect for AppSec managers and anyone looking to build sustainable, human-centered security practices.

#OWASP #AppSecEU2025 #DevSec #AppSec #SecureDevelopment #Barcelona

Registration ⇽ OWASP Global AppSec EU 2025 | The OWASP Foundation Inc.

Glue Up

Hacker News Apr 20, 2025

MCP Containers – Easily and securely run MCP servers locally

https://github.com/metorial/mcp-containers

#HackerNews #MCPContainers #LocalServers #SecureDevelopment #ContainersInnovation

GitHub - metorial/mcp-containers: Containerized versions of hundreds of MCP servers 📡 🧠

Containerized versions of hundreds of MCP servers 📡 🧠 - metorial/mcp-containers

GitHub

Marco Ciappelli🎙️✨

Mar 6, 2025

It’s always a great pleasure to spend time with Jim Manico and learn from his expertise! 🧐✨📚

Turning #Developers into #Security Champions: The Business Case for Secure Development | A Manicode Security Brand Story with Jim Manico

In this insightful episode, hosted by @seanmartin and @Marcociappelli on @ITSPmagazine, Jim shares how enabling developers to embrace secure coding practices can elevate them into true security champions.

He explains why secure development isn’t just about writing safer code—it’s a transformative approach that strengthens #business resilience, protects critical data, and fosters a company-wide culture of security-first thinking.

📺 Watch the full episode here:
https://youtu.be/OJXD_cS1JJM?si=KGwqwmZPd5Qilfl8

🎧Listen and subscribe here:
https://brand-stories-podcast.simplecast.com/episodes/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico

Follow this link to listen, watch, or read the episode—whichever works best for you.

📚 https://www.itspmagazine.com/their-stories/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico

#SecureDevelopment #SoftwareSecurity #Manicode #ITSPmagazine #Cybersecurity #infosec #infosecurity #owasp #appsec

Turning Developers into Security Champions: The Business Case for Secure Development Manicode Story

YouTube