Agent Tooling Supply Chain Security: OWASP Agentic Top 10 and the pentagi Threat Model
Trivy got compromised. Autonomous pentest agents are trending. The OWASP Agentic Top 10 warned us.
Mar 22, 20267 min read
Command Palette
Search for a command to run...
#owasp
Articles tagged with #owasp
Agent Tooling Supply Chain Security: What the Trivy Compromise Teaches Us
The aquasecurity/trivy ecosystem got hit this week. Supply chain compromise - a tool that 50,000+ organizations rely on for vulnerability scanning had its own supply chain briefly weaponized. The irony isn't lost on anyone. 65 points on Hacker News, ...
Mar 22, 20264 min readBuild Your Own MCP Allowlist: Enterprise Security Template (2026)
OWASP published the MCP Top 10. Azure shipped CVE-2026-26118. CISOs need answers. Here's the enterprise allowlist template.
Mar 12, 20264 min read12Build Your Own MCP Allowlist: Enterprise Security Template (2026)
OWASP just published the MCP Top 10. Azure got hit with CVSS 8.8 SSRF. Here's the allowlist template your security team needs.
Mar 12, 20264 min read