Esbuild XSS Bug That Survived 5B Downloads and Bypassed HTML Sanitizationdepthfirst.com2 points·by ponderwonder·8 месяцев назад·0 comments
Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419)depthfirst.com11 points·by ponderwonder·9 месяцев назад·4 comments
LLM security agent finds vulnerability in LLM engineering platformdepthfirst.com1 points·by ponderwonder·10 месяцев назад·0 comments
ponderwonder·9 месяцев назад·discussI pointed it at the library's git and let it run from there! I validated all the output (vuln description, risk assessment, exploit poc, patch) before reporting to maintainers