Esbuild XSS Bug That Survived 5B Downloads and Bypassed HTML Sanitizationdepthfirst.com2 points·by ponderwonder·8 mesi fa·0 comments
Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419)depthfirst.com11 points·by ponderwonder·9 mesi fa·4 comments
LLM security agent finds vulnerability in LLM engineering platformdepthfirst.com1 points·by ponderwonder·10 mesi fa·0 comments
ponderwonder·9 mesi fa·discussI pointed it at the library's git and let it run from there! I validated all the output (vuln description, risk assessment, exploit poc, patch) before reporting to maintainers