Claude Mythos Just Changed Cybersecurity
Anthropic just did something nobody expected. They built a model so good at finding security vulnerabilities that they're scared to release it publicly.
Read article →
AI Agent Lens Blog ·
Runtime security and compliance for the AI agent era.
The Complete Engineer's Guide to AI Agents
I've been building software for over 20 years. And I'll be honest — when the term "AI agent" started flooding my LinkedIn feed in 2023, I rolled my eyes. It felt like a rebranding of chatbots with better PR. Little could I have predicted…
Read article →
The Noise Is the Problem
I run an AI security company. I'm supposed to tell you AI risk is manageable — that with the right governance framework and a good dashboard, you'll sleep fine.
Read article →
Your MCP Server Can Read Your iMessages
This post is about the files on your Mac that MCP servers can access — the ones most developers don't know are exposed — and what you can do about it.
Read article →
From Vibe-Coded App to SOC 2 Audit in 60 Seconds
Vibe coding is real now. Developers are shipping entire services by describing what they want to Claude Code or Cursor. I've done it. You've probably done it. The output is surprisingly good.
Read article →
MCP Is Everywhere. So Are Its Attack Surfaces.
Model Context Protocol has had a remarkable run. In under a year, it became the default way to wire AI agents to external tools — databases, APIs, file systems, cloud services, crypto wallets. Cursor, Windsurf, Claude Code, and most…
Read article →
Securing AI Agents: From Code Scanning to Runtime Enforcement
AI agents aren't experimental anymore. They write code, run shell commands, call external APIs, and orchestrate complex workflows — usually with the same OS privileges as the developer who launched them. That convenience is real. So is…
Read article →