📰 Dev.to · Josh Waldrep
16 articles · Updated every 3 hours · View all reads
All
Articles 87,119Blog Posts 108,004Tech Tutorials 21,573Research Papers 18,623News 14,387
⚡ AI Lessons
Dev.to · Josh Waldrep
3w ago
Per-Pod NetworkPolicy in Practice: Migrating Five Agents in a Day
A working cluster ran five AI agents, each with an in-pod Pipelock sidecar scanning their traffic....
Dev.to · Josh Waldrep
1mo ago
Three Things "Set HTTPS_PROXY" Cannot Stop
Three bypass shapes for HTTPS_PROXY-only agent egress controls. The kernel does not enforce any of...
Dev.to · Josh Waldrep
1mo ago
Capture and Replay: Testing Security Policy Without Production Risk
You cannot change a security policy in production without breaking somebody's workflow somewhere....
Dev.to · Josh Waldrep
1mo ago
Pipelock Agent Egress Control: the missing CI primitive for AI agents
TL;DR. Pipelock Agent Egress Control is a GitHub Action. It runs an agent script inside a Linux...
Dev.to · Josh Waldrep
1mo ago
Politeness vs Enforcement: Why "Set HTTPS_PROXY" Isn't a Security Control
If your agent egress story is "we set HTTPS_PROXY to point at the proxy," the proxy is asking nicely....
Dev.to · Josh Waldrep
1mo ago
What Pipelock Inspects, And What Tool Policy Inspects Instead
A wire-only proxy scans wire bytes. Opaque media bytes pass through the wire layer untouched. Anyone...
Dev.to · Josh Waldrep
1mo ago
Block-Reason Headers: Make Your Security Proxy Tell You Why
When a security proxy blocks an agent's request, the agent sees a 4xx and has to guess what happened....
Dev.to · Josh Waldrep
1mo ago
subPath ConfigMap Mounts Don't Hot-Reload: Silent Drift in Kubernetes
A Pipelock instance running in a Kubernetes cluster watched its config file for hours while four...
Dev.to · Josh Waldrep
1mo ago
The Three-UID Containment Pattern for AI Agents on Linux
A correct AI agent containment model on a Linux workstation needs three Linux UIDs, not two. Two UIDs...
Dev.to · Josh Waldrep
🤖 AI Agents & Automation
⚡ AI Lesson
1mo ago
Webhook vs Egress: Two Architectures for AI Agent Security
Two architectures keep showing up in AI agent runtime security in 2026. Both promise to stop bad...
Dev.to · Josh Waldrep
2mo ago
Why Domain Allowlists Aren't Enough for AI Agent Security
If you run AI agents in production, you have probably been told to put them behind a domain...
Dev.to · Josh Waldrep
2mo ago
The State of MCP Security 2026: Incidents, Attack Patterns, and Defense Coverage
Why this report exists Every vendor with an MCP security product has an opinion about MCP...
Dev.to · Josh Waldrep
2mo ago
Why AI Guardrails Aren't Enough for Agent Security
If you have spent any time reading about AI security in the last two years, you have been told to add...
Dev.to · Josh Waldrep
2mo ago
The AI Agent Security Acquisition Wave: What It Means for Buyers
Six deals announced in a handful of months. Five closed. One pending. Most of the startups on my...
Dev.to · Josh Waldrep
2mo ago
Best AI Agent Security Tools 2026: 15 Options Compared
The AI agent security market went from a handful of projects to a crowded field in about twelve...
Dev.to · Josh Waldrep
3mo ago
Guardrails deleted, now what?
Safety guardrails are supposed to be the first line of defense. The model refuses harmful requests,...
DeepCamp AI