Esbuild XSS Bug That Survived 5B Downloads and Bypassed HTML Sanitizationdepthfirst.com2 points·by ponderwonder·8 miesięcy temu·0 comments
Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419)depthfirst.com11 points·by ponderwonder·9 miesięcy temu·4 comments
LLM security agent finds vulnerability in LLM engineering platformdepthfirst.com1 points·by ponderwonder·9 miesięcy temu·0 comments
ponderwonder·9 miesięcy temu·discussI pointed it at the library's git and let it run from there! I validated all the output (vuln description, risk assessment, exploit poc, patch) before reporting to maintainers