AI Wisdom

Tag

security

10 articles tagged with “security

AIAI-SearchAPI-gatewayASP.NET-CoreAzure-APIMAzure-OpenAICIClaudeCoTCopilotCosmos-DBCursorDORAEvent-GridGPTGemmaGitFlowGitHubHPAICLJSONJSON-modeLLMLLM-securityMCPMistralModel-Context-ProtocolOIDCOmitPartialPhiPickPineconeQdrantRAGReActRecordSDKSLISLMSLOSemantic-KernelService-BusWindsurfa-staragentsaggregationaiai-gatewayaksalertingalgorithmsapi-designapi-gatewayapi-versioningapimapp-routerapp-serviceappsecarchitecturearm-templatesaspnet-coreaspnetcoreasyncauditauthenticationauthorizationautomationazureazure-front-doorazure-functionsazure-openaiazure-policyazure-storagebddbenchmarksbest-practicesbfsbicepbinary-searchbranchingbstcache-componentscachingcap-theoremchain-of-thoughtchatbotci-cdci-optimizationcicdclean-architecturecloudcloud-securitycloudeventscode-reviewcoding-agentscomparisoncompliancecomposeconcurrencyconcurrent-renderingconditional-typesconsistencyconsistent-hashingconstraintsconsumer-drivencontainerscontextcontract-testingcosmos-dbcost-controlcost-optimizationcoveragecqrscsharpcvecypressdapperdastdata-fetchingdatabasesdataloaderddddecision-frameworkdependency-injectiondependency-scanningdeployment-slotsdeploymentsdeprecationdesign-patternsdevopsdfsdijkstradiscriminated-unionsdistributivedockerdocumentationdotnetdotnet-9drift-detectiondynamic-programminge2e-testingef-coreef-core-9embeddingsengineeringenvironmentserror-budgetevaluationevent-drivenevent-gridevent-hubseventingexamplesfeature-flagsfederationfew-shotfiberfine-tuningflaky-testsflex-consumptionfrontendfunction-callinggenericsgitgithub-actionsgolden-signalsgpt-4ographgraphqlgrpchclhealth-checksheaphookshotchocolatehttphttp2http3hybridcacheiacidempotencyidentityin-context-learningindexesinferinferenceinfrastructureintegrationintegration-testingintrosortisolationjailbreakjestjoinsjotaijsonbjwtk8skey-remappingkey-vaultkiotaknapsackknowledge-basekuberneteslanguagelegacy-codelinqload-balancinglower-boundmanaged-identitymapped-typesmaterialized-viewsmemoizationmemorymergemessage-queuemessagingmetricsmicroservicesminimal-apismockingmocksmodel-routingmodulesmongodbmonitoringmswmulti-agentmulti-stage-buildsmulti-tenantmvccnarrowingnetwork-securitynextjs-16normalizationnosqloauthoauth2observabilityoidcopaopenapiorchestrationoutput-formatowasppaaspactpactflowpage-objectsparsingpartitioningperformancepersonal-AIpgvectorpineconepipelineplanningplaywrightpluginspolicy-as-codepollypostgresqlproductionprompt-designprompt-engineeringprompt-injectionprotobufpulumipythonqualityquality-gatesquantizationqueuesragrate-limitingreactreact-19react-compilerreact-internalsreact-queryreact-server-componentsrealtimereasoningrecursionrecursive-typesred-blackred-green-refactorred-teamingredisregression-testingrelease-managementresource-limitsrestreusable-workflowsrlsrolling-updatesruntime-safetysaga-patternsastsbomscaleschemaschema-designsdlcsecrets-managementsecuritysecurity-testingself-consistencyserializableserver-actionsserverlessservice-busshardingshortest-pathsignalrsnapshot-testingsoftware-designsortingspiessqlstabilitystate-managementstreamsstridestructured-outputstubssupertestsupply-chainsystem-designtail-calltanstack-querytask-framingtddtemplate-literalsterraformtest-architecturetest-doublestest-pyramidtestcontainerstestingtesting-patternstesting-strategythreat-modelingtoken-buckettoken-economicstokenstool-callingtool-usetopological-sorttransactionstreestrietrunk-basedtype-guardstype-predicatestype-systemtype-transformstypescriptunit-testingutility-typesvalidationvalkeyvaultvector-dbvector-searchversion-controlvisual-regressionvitestvulnerabilitiesweaviateweb-apiweb-securitywebsocketswindow-functionswiremockworkload-identityworkspacesxunityarpzero-shotzero-trustzodzustand
Infrastructure as Code
Secrets Management in IaC: No More Hardcoded Credentials

Secrets Management in IaC: No More Hardcoded Credentials

Intermediate

Azure Key Vault integration, Terraform sensitive variables, Pulumi secrets, and CI/CD secret injection patterns.

11 min
Read →
Security Engineering
OWASP Top 10: The Developer's Security Checklist

OWASP Top 10: The Developer's Security Checklist

Foundational

A practical guide to the OWASP Top 10 — injection, broken authentication, XSS, IDOR, security misconfigurations, and how to prevent each vulnerability class.

14 min
Read →
Security Engineering
JWT Authentication: From Basics to Best Practices

JWT Authentication: From Basics to Best Practices

Intermediate

How JSON Web Tokens work, signing algorithms (HS256 vs RS256), common vulnerabilities (algorithm confusion, none attack), token storage, and refresh token patterns.

13 min
Read →
Security Engineering
OAuth 2.0 & OIDC: Authorization and Identity Explained

OAuth 2.0 & OIDC: Authorization and Identity Explained

Intermediate

OAuth 2.0 grant types, PKCE, OpenID Connect layers, access vs ID tokens, token introspection, and securing SPAs and APIs with modern auth flows.

15 min
Read →
Security Engineering
Zero Trust Architecture: Never Trust, Always Verify

Zero Trust Architecture: Never Trust, Always Verify

Intermediate

Core principles of Zero Trust, microsegmentation, identity-centric security, BeyondCorp, continuous verification, and implementing Zero Trust in cloud environments.

13 min
Read →
Security Engineering
Dependency Scanning: Securing Your Software Supply Chain

Dependency Scanning: Securing Your Software Supply Chain

Intermediate

Supply chain attacks, CVE scoring, SBOMs, transitive vulnerabilities, lockfile integrity, dependency confusion, Sigstore, and tools like Snyk and Dependabot.

13 min
Read →
Security Engineering
Secrets Management: Keeping Credentials Out of Code

Secrets Management: Keeping Credentials Out of Code

Intermediate

Vault patterns, dynamic secrets, automated rotation, git secret scanning, HashiCorp Vault, Azure Key Vault, envelope encryption, and incident response for leaked secrets.

13 min
Read →
Security Engineering
Threat Modeling for Developers: STRIDE, DREAD & Beyond

Threat Modeling for Developers: STRIDE, DREAD & Beyond

Intermediate

STRIDE threat categories, data flow diagrams, trust boundaries, attack trees, DREAD scoring, PASTA methodology, and integrating threat modeling into the SDLC.

14 min
Read →
DevOps & CI/CD
Docker for Production: Multi-Stage Builds, Security, and Compose

Docker for Production: Multi-Stage Builds, Security, and Compose

Intermediate

Multi-stage builds that cut image size by 80%, non-root users, read-only filesystems, health checks, and Compose patterns for local development parity.

12 min
Read →
Prompt Engineering
Prompt Injection: Attack Vectors and Defence in Production

Prompt Injection: Attack Vectors and Defence in Production

Intermediate

Direct injection, indirect injection via retrieved content, jailbreaks, and the defence-in-depth architecture that keeps LLM applications secure.

13 min
Read →