Início
/
Notícias
/
Making the OWASP top ten in the vibe code era‌ ‍ ‍‍‌‍ ‌ ‍‌‍‍‌‌‍‌ ‌‍‍‌‌‍ ‍‍‍ ‍‍‍‍‌ ‌‍‌‌‍ ‍‌‍‍‌‌ ‌‌ ‍‌‍ ‍‌‍‍‌‌‍ ‍‍‍ ‍‍‌‍‍‌ ‍‌‍‌‌‌‍‌‍‍‍ ‍‍‍‍‌‍‍‌ ‌‌ ‌‌ ‌ ‍‍‍ ‍ ‌‍ ‌‍ ‌‌ ‍ ‍‌ ‌ ‌‌‍‌‌‍ ‌‍‍ ‌‍ ‌ ‌‍‌‍‌‌‌ ‍‌‍‌‍‌‍ ‌‍ ‌ ‌ ‍ ‍‌‍ ‌‍ ‍ ‌‍‍‌‌‍ ‍‌ ‌‌‍‌‌‌‍ ‍‌ ‌‍ ‌‍‌‌‌‍‌‌‍‍‌‌ ‌‍ ‌‍ ‌‌‍ ‌‍‌‌‍‌‌ ‌‌ ‌ ‍‌‍‌‌‌ ‌‍‌‌‌‍ ‍‌ ‌‌‍‌‌ ‌‌‍‍‌‌‍ ‌‍ ‍ ‍ ‌‍‍‌‌‍‌ ‌ ‍‌‍‌ ‌‍ ‍‌ ‌‍‌‍‍ ‌‍ ‌ ‍ ‌‌‍‌‍ ‍ ‌ ‌‌‍‌‌ ‌‌‌‍‌‌‍ ‌‌‍‌ ‌‍ ‌‍‍‍ ‌‌‍ ‌‌‌‍‌‌‌‍‌ ‍ ‌ ‌ ‌‍‌ ‍ ‍ ‌ ‍ ‌ ‌‌ ‍‌‌ ‌‍‌‌ ‌‌‍‍‌‍ ‌‍ ‌‍‌ ‌‌‌‍ ‌ ‌ ‌ ‍ ‌ ‌‍‌‌ ‌‌‍‍ ‌‌ ‌‌‍‍‌‌ ‌‌‍ ‌‍‌‌ ‌‍‍‌‍‌‌ ‌‍‌‌‌‌‌‌‌ ‍‌‍ ‌‌‍‍‌ ‌‌ ‌‌ ‌ ‍‌‌ ‌‌‍‌‌ ‍‌‌‍‍‌‌ ‍‌‌‍‌‍ ‌‍ ‌‌ ‍ ‍‌ ‌ ‌‌‍‌‌‍ ‌‍‍ ‌‍ ‌ ‌‍‌‍‌‌‌ ‍‌‍‌‍‌‍ ‌‍ ‌ ‌ ‍ ‍‌‍ ‌‍ ‍‌‍‌‍‍‌‌‍‌ ‌ ‍‌‍‌ ‌‍ ‍‌ ‌‍‌‍‍ ‌‍ ‌ ‍ ‌‌‍‌‍ ‍ ‌ ‌‌‍‌‌ ‌‌‌‍‌‌‍ ‌‌‍‌ ‌‍ ‌‍‍‍ ‌‌‍ ‌‌‌‍‌‌‌‍‌ ‍ ‌ ‌ ‌‍‌ ‍ ‍ ‌ ‍‌‍‌ ‌‌ ‍‌‌ ‌‍‌‌ ‌‌‍‍‌‍ ‌‍ ‌‍‌ ‌‌‌‍ ‌ ‌ ‌‍‌‍‌ ‌‍‌‌ ‌‌‍‍ ‌‌ ‌‌‍‍‌‌ ‌‌‍ ‌‍‌‌‍‌‍‌ ‌‍‌‌‌ ‍‌ ‌ ‌‍‌‌‌‍ ‌ ‌‌‍‍‌‌ ‌‍‌‍‌‌ ‌‌ ‌ ‌‌‌‍‍‌‍ ‌‍‍‌‌ ‌‍‍‌‍‌‌‌‍‌‍‍‌ ‌

Making the OWASP top ten in the vibe code era‌ ‍ ‍‍‌‍ ‌ ‍‌‍‍‌‌‍‌ ‌‍‍‌‌‍ ‍‍‍ ‍‍‍‍‌ ‌‍‌‌‍ ‍‌‍‍‌‌ ‌‌ ‍‌‍ ‍‌‍‍‌‌‍ ‍‍‍ ‍‍‌‍‍‌ ‍‌‍‌‌‌‍‌‍‍‍ ‍‍‍‍‌‍‍‌ ‌‌ ‌‌ ‌ ‍‍‍ ‍ ‌‍ ‌‍ ‌‌ ‍ ‍‌ ‌ ‌‌‍‌‌‍ ‌‍‍ ‌‍ ‌ ‌‍‌‍‌‌‌ ‍‌‍‌‍‌‍ ‌‍ ‌ ‌ ‍ ‍‌‍ ‌‍ ‍ ‌‍‍‌‌‍ ‍‌ ‌‌‍‌‌‌‍ ‍‌ ‌‍ ‌‍‌‌‌‍‌‌‍‍‌‌ ‌‍ ‌‍ ‌‌‍ ‌‍‌‌‍‌‌ ‌‌ ‌ ‍‌‍‌‌‌ ‌‍‌‌‌‍ ‍‌ ‌‌‍‌‌ ‌‌‍‍‌‌‍ ‌‍ ‍ ‍ ‌‍‍‌‌‍‌ ‌ ‍‌‍‌ ‌‍ ‍‌ ‌‍‌‍‍ ‌‍ ‌ ‍ ‌‌‍‌‍ ‍ ‌ ‌‌‍‌‌ ‌‌‌‍‌‌‍ ‌‌‍‌ ‌‍ ‌‍‍‍ ‌‌‍ ‌‌‌‍‌‌‌‍‌ ‍ ‌ ‌ ‌‍‌ ‍ ‍ ‌ ‍ ‌ ‌‌ ‍‌‌ ‌‍‌‌ ‌‌‍‍‌‍ ‌‍ ‌‍‌ ‌‌‌‍ ‌ ‌ ‌ ‍ ‌ ‌‍‌‌ ‌‌‍‍ ‌‌ ‌‌‍‍‌‌ ‌‌‍ ‌‍‌‌ ‌‍‍‌‍‌‌ ‌‍‌‌‌‌‌‌‌ ‍‌‍ ‌‌‍‍‌ ‌‌ ‌‌ ‌ ‍‌‌ ‌‌‍‌‌ ‍‌‌‍‍‌‌ ‍‌‌‍‌‍ ‌‍ ‌‌ ‍ ‍‌ ‌ ‌‌‍‌‌‍ ‌‍‍ ‌‍ ‌ ‌‍‌‍‌‌‌ ‍‌‍‌‍‌‍ ‌‍ ‌ ‌ ‍ ‍‌‍ ‌‍ ‍‌‍‌‍‍‌‌‍‌ ‌ ‍‌‍‌ ‌‍ ‍‌ ‌‍‌‍‍ ‌‍ ‌ ‍ ‌‌‍‌‍ ‍ ‌ ‌‌‍‌‌ ‌‌‌‍‌‌‍ ‌‌‍‌ ‌‍ ‌‍‍‍ ‌‌‍ ‌‌‌‍‌‌‌‍‌ ‍ ‌ ‌ ‌‍‌ ‍ ‍ ‌ ‍‌‍‌ ‌‌ ‍‌‌ ‌‍‌‌ ‌‌‍‍‌‍ ‌‍ ‌‍‌ ‌‌‌‍ ‌ ‌ ‌‍‌‍‌ ‌‍‌‌ ‌‌‍‍ ‌‌ ‌‌‍‍‌‌ ‌‌‍ ‌‍‌‌‍‌‍‌ ‌‍‌‌‌ ‍‌ ‌ ‌‍‌‌‌‍ ‌ ‌‌‍‍‌‌ ‌‍‌‍‌‌ ‌‌ ‌ ‌‌‌‍‍‌‍ ‌‍‍‌‌ ‌‍‍‌‍‌‌‌‍‌‍‍‌ ‌

Ryan welcomes back Tanya Janca, now part of the OWASP Top 10 team, to discuss what changed in the latest OWASP Top 10 release, how the list shifted from “outdated components” to a broader software supply chain focus, and why they added…

SegurançaStack Overflow BlogPublicado: 5 de junho de 2026

Segurança

Ler artigo original ↗← Notícias

Segurança

SegurançaDocker Blog4 de jun. de 2026Conteúdo no idioma original: inglês

Hardened Images Explained: Fewer CVEs, Smaller Attack Surface

When security teams scan their container environments for the first time, they often discover hundreds of known vulnerabilities, and almost none of them trace back to application code. The overwhelming majority come from packages that…

Ver resumo Ler artigo original ↗

Segurança

SegurançaDocker Blog3 de jun. de 2026Conteúdo no idioma original: italiano

What is Software Supply Chain Security?

Software supply chain attacks have accelerated faster than most security teams anticipated. Sonatype's 2026 State of the Software Supply Chain report identified more than 454,000 new malicious packages published to open source repositories…

Ver resumo Ler artigo original ↗

Frontend

FrontendInfoQ5 de jun. de 2026

TypeORM Reaches 1.0 After Nearly a Decade, Signalling Renewed Maintenance

TypeORM 1.0 is the first major release of the open-source TypeScript and JavaScript ORM since its inception in 2016. This version modernizes platform requirements, removes deprecated APIs, and introduces numerous bug fixes and new…

Ver resumo Ler artigo original ↗

Notícias relacionadas

Segurança

SegurançaDocker Blog4 de jun. de 2026Conteúdo no idioma original: inglês

Hardened Images Explained: Fewer CVEs, Smaller Attack Surface

Ver resumo Ler artigo original ↗

Segurança

SegurançaDocker Blog3 de jun. de 2026Conteúdo no idioma original: italiano

What is Software Supply Chain Security?

Ver resumo Ler artigo original ↗

Frontend

FrontendInfoQ5 de jun. de 2026

TypeORM Reaches 1.0 After Nearly a Decade, Signalling Renewed Maintenance

Ver resumo Ler artigo original ↗