Security

The Dependency You Forgot About

25 May 2026·1238 words·6 mins

Photograph By Jon Tyson

Blog Software Engineering Security

Your lockfile has 847 packages in it. You chose 12. The other 835 are a trust exercise.

Why Postman Works But Your Browser Doesn't

17 April 2026·1360 words·7 mins

Photograph By Mick Haupt

Blog Web Development Security

CORS isn’t your server blocking requests — it’s your browser protecting users. Here’s what’s actually happening.

Top 10 Greatest Hits of 2025

11 January 2026·1457 words·7 mins

Photograph By Matt Botsford

Blog Software Engineering Security

The OWASP Top 10 for 2025, explained with code examples and practical fixes

Who Goes There

14 December 2025·909 words·5 mins

Photograph By Mediamodifier

Blog Software Engineering Security

Sessions, JWTs, OAuth, and SSO — what they are and when to use each