Security Articles

This post analyzes CVE-2026-2441, a high-severity Use After Free (UAF) vulnerability in Chrome's Blink CSS engine that allowed remote code execution inside a sandbox.

Articles

news

security

HashiCorp

06 min read

Security•2026-02-25

Secure remote access without the ‘portal tax’: Boundary vs other vendors

This post introduces HashiCorp Boundary's approach to secure remote access and compares it to traditional PAM vendors that impose a 'portal tax' on developers.

GitLab

02 min read

Security•2026-02-25

Passkeys now available for passwordless sign-in and 2FA on GitLab

GitLab now supports passkeys for passwordless sign-in and phishing-resistant two-factor authentication.

Vercel

19 min read

Security•2026-02-24

Security boundaries in agentic architectures

This post explains how to design security boundaries in agentic AI systems to prevent credential theft and misuse via prompt injection.

Vercel

22 min read

Security•2026-02-23

Safely inject credentials in HTTP headers with Vercel Sandbox

Vercel Sandbox supports HTTP header injection for outbound requests, keeping API credentials outside the sandbox VM.

Cloudflare

21 min read

Security•2026-02-23

Cloudflare One is the first SASE offering modern post-quantum encryption across the full platform

Cloudflare One becomes the first SASE platform to support modern post-quantum encryption across its entire platform, including Secure Web Gateway, Zero Trust, and WAN use cases.

Track vulnerability remediation with the updated GitLab Security Dashboard

GitLab's updated Security Dashboard provides application security teams with actionable insights to prioritize and track vulnerability remediation across projects.

GitLab

046 min read

Security•2026-02-19

GitLab Threat Intelligence Team reveals North Korean tradecraft

GitLab's Threat Intelligence Team exposes North Korean nation-state threat actor operations, including the Contagious Interview malware campaign and IT worker activity observed on their platform in 2025.

HashiCorp

03 min read

Security•2026-02-17

HCP Packer adds SBOM vulnerability scanning

HCP Packer introduces SBOM vulnerability scanning in public beta, enabling platform teams to identify security risks in image artifacts earlier in the deployment pipeline.

Vercel

21 min read

Security•2026-02-17

Automated security audits now available for skills.sh

skills.sh has introduced automated security audits for its 60,000+ skills catalog, built in partnership with Gen, Socket, and Snyk.

HashiCorp

06 min read

Security•2026-02-16

Vault Radar 2025 recap: Expanding visibility, deepening integration, and simplifying security

This post recaps HCP Vault Radar's 2025 milestones in secrets discovery and remediation across development and cloud environments.

HashiCorp

06 min read

Security•2026-02-13

Vault certificates and secrets inventory reporting: Improve visibility and audit readiness

HCP Vault Dedicated introduces secrets and certificates inventory reporting (beta) to improve visibility and audit readiness for security teams.