<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>VibeWShield — Security Blog &amp; News</title>
    <link>https://vibewshield.com</link>
    <description>Security guides and AI-curated cybersecurity news for developers building with AI tools.</description>
    <language>en-us</language>
    <lastBuildDate>Fri, 17 Jul 2026 21:52:21 GMT</lastBuildDate>
    <atom:link href="https://vibewshield.com/feed" rel="self" type="application/rss+xml"/>
    <item>
      <title><![CDATA[Fly.io Machines Exposing Internal Redis — One Network Flag Away]]></title>
      <link>https://vibewshield.com/blog/flyio-machines-exposed-internal-redis</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/flyio-machines-exposed-internal-redis</guid>
      <description><![CDATA[Fly's default networking lets machines in the same org talk to each other — and sometimes lets the public internet talk to them too. Redis on Fly is a common casualty.]]></description>
      <pubDate>Wed, 24 Jun 2026 05:30:01 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Clerk `auth().userId` Returns Truthy for Unauthenticated Users — Sometimes]]></title>
      <link>https://vibewshield.com/blog/clerk-authuserid-gotcha-app-router</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/clerk-authuserid-gotcha-app-router</guid>
      <description><![CDATA[Clerk's App Router helpers return a userId that looks truthy even when the caller isn't authenticated. Here's the trap and the right guard.]]></description>
      <pubDate>Thu, 04 Jun 2026 14:12:34 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[OpenAI Assistants API: Thread-ID Enumeration and Hijacking]]></title>
      <link>https://vibewshield.com/blog/openai-assistants-thread-hijacking</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/openai-assistants-thread-hijacking</guid>
      <description><![CDATA[Thread IDs in the Assistants API are long but predictable in vibe-coded chat UIs. A classic IDOR lets attackers read prior conversations by incrementing a counter on your side.]]></description>
      <pubDate>Thu, 04 Jun 2026 14:12:28 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Turborepo Remote Cache: How Poisoning Hits a Monorepo Team]]></title>
      <link>https://vibewshield.com/blog/turborepo-remote-cache-poisoning</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/turborepo-remote-cache-poisoning</guid>
      <description><![CDATA[Turborepo's shared remote cache is a productivity win — and a supply-chain attack surface. Any team member with write access can plant compromised outputs that get served to everyone.]]></description>
      <pubDate>Thu, 04 Jun 2026 14:12:24 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Inngest Webhook Auth: When `event.key` Isn't Enough]]></title>
      <link>https://vibewshield.com/blog/inngest-webhook-auth-event-key-gotcha</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/inngest-webhook-auth-event-key-gotcha</guid>
      <description><![CDATA[Inngest signed webhooks are great — if you verify them. Vibe-coded handlers often trust the `event.key` field without checking the signature, and the whole workflow becomes callable by anyone.]]></description>
      <pubDate>Sat, 09 May 2026 05:00:57 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Stripe Test Keys in Live Bundles — 30-Second Detection]]></title>
      <link>https://vibewshield.com/blog/stripe-test-keys-in-live-bundles</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/stripe-test-keys-in-live-bundles</guid>
      <description><![CDATA[Test-mode Stripe keys (sk_test_ / pk_test_) in a production bundle means your checkout never actually charges. A surprisingly common vibe-coded bug. Here's how to catch it.]]></description>
      <pubDate>Sun, 03 May 2026 21:43:03 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[QStash Tokens Leaked via NEXT_PUBLIC_ Prefix]]></title>
      <link>https://vibewshield.com/blog/qstash-tokens-leaked-next-public-prefix</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/qstash-tokens-leaked-next-public-prefix</guid>
      <description><![CDATA[Upstash QStash uses a bearer token for queue operations. Naming it `NEXT_PUBLIC_QSTASH_TOKEN` publishes it to every browser, and anyone can enqueue jobs — including paid ones.]]></description>
      <pubDate>Sun, 03 May 2026 21:42:59 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Sanity Studio Open to the Public: 4-Step Lockdown]]></title>
      <link>https://vibewshield.com/blog/sanity-studio-open-to-public-checklist</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/sanity-studio-open-to-public-checklist</guid>
      <description><![CDATA[Sanity Studio auto-deploys to `/studio` and is publicly reachable unless you opt in to authentication. Here's the four-step checklist to lock it down and the tell-tale signs it's already compromised.]]></description>
      <pubDate>Sun, 03 May 2026 21:42:53 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Next.js 15 Parallel Routes: The Authorization Gaps You Probably Have]]></title>
      <link>https://vibewshield.com/blog/nextjs-parallel-routes-authorization-gaps</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/nextjs-parallel-routes-authorization-gaps</guid>
      <description><![CDATA[Parallel routes render multiple pages at once. Your auth check runs on one of them. Guess what happens on the other.]]></description>
      <pubDate>Fri, 01 May 2026 04:04:56 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Server Components + Suspense: Rendering User Data to Everyone]]></title>
      <link>https://vibewshield.com/blog/rsc-suspense-boundary-user-data-leak</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/rsc-suspense-boundary-user-data-leak</guid>
      <description><![CDATA[Suspense boundaries cache at the layout level by default. When you render personal data inside one, the HTML streams once and serves every viewer.]]></description>
      <pubDate>Fri, 01 May 2026 04:04:53 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Supabase Realtime: When Anonymous Subscriptions Bypass Your RLS]]></title>
      <link>https://vibewshield.com/blog/supabase-realtime-rls-bypass-anonymous</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/supabase-realtime-rls-bypass-anonymous</guid>
      <description><![CDATA[Supabase Realtime subscriptions respect RLS — usually. Here are the three configurations where anonymous clients still receive row-level events they shouldn't see.]]></description>
      <pubDate>Fri, 01 May 2026 04:04:49 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Neon Branch Passwords Committed to Git — A Full Audit]]></title>
      <link>https://vibewshield.com/blog/neon-branch-passwords-committed-to-git</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/neon-branch-passwords-committed-to-git</guid>
      <description><![CDATA[Neon creates a new Postgres branch per preview environment, each with its own connection string. AI tools love to commit `.env.preview.neon` to fix build errors. Here's how to reclaim them all.]]></description>
      <pubDate>Sat, 25 Apr 2026 02:21:58 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[shadcn/ui Components: Where User-Controlled HTML Sneaks In]]></title>
      <link>https://vibewshield.com/blog/shadcn-ui-html-injection-patterns</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/shadcn-ui-html-injection-patterns</guid>
      <description><![CDATA[shadcn/ui is copy-paste components, which means you own them — and any sanitization they miss. Here are the three props that vibe-coded apps pass user content to and regret.]]></description>
      <pubDate>Sat, 25 Apr 2026 02:21:44 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Database Admin Ports Open on Production: The 10-Port Checklist]]></title>
      <link>https://vibewshield.com/blog/db-admin-ports-open-on-production</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/db-admin-ports-open-on-production</guid>
      <description><![CDATA[Drizzle Studio, Prisma Studio, pgAdmin, Adminer, phpMyAdmin, Hasura Console, Keystone Admin, Strapi, Directus, PocketBase. One port open = full database compromise.]]></description>
      <pubDate>Sat, 25 Apr 2026 02:21:33 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Why We Built VibeWShield]]></title>
      <link>https://vibewshield.com/blog/why-we-built-vibewshield</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/why-we-built-vibewshield</guid>
      <description><![CDATA[Every week we were reviewing AI-generated apps with the same bugs — exposed Supabase keys, client-side admin checks, Server Actions that trust the client. Traditional DAST tools didn't care. So we built a scanner that does.]]></description>
      <pubDate>Sat, 25 Apr 2026 02:21:10 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Cloudflare Workers: Bindings vs Env — Where Your Secret Actually Leaks]]></title>
      <link>https://vibewshield.com/blog/cloudflare-workers-bindings-vs-env</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/cloudflare-workers-bindings-vs-env</guid>
      <description><![CDATA[Cloudflare treats 'Environment Variables' and 'Secret Bindings' as different things. Vibe-coded Workers mix them up, and half the 'secret' values end up readable in the Worker's preview URL.]]></description>
      <pubDate>Fri, 24 Apr 2026 04:39:08 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Convex Auth: 5 Mistakes AI Tools Keep Making in Your Queries]]></title>
      <link>https://vibewshield.com/blog/convex-auth-mistakes-ai-tools-make</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/convex-auth-mistakes-ai-tools-make</guid>
      <description><![CDATA[Convex's reactive model makes authorization hide in plain sight. Cursor / Claude scaffold queries without auth checks, and the whole app leaks user data by default. Here are the five patterns to fix.]]></description>
      <pubDate>Fri, 24 Apr 2026 04:39:06 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Drizzle Kit Studio Exposed on Production: Silent Data Exfiltration]]></title>
      <link>https://vibewshield.com/blog/drizzle-studio-exposed-production</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/drizzle-studio-exposed-production</guid>
      <description><![CDATA[Drizzle Studio is a developer admin UI for your database. If your deploy pipeline accidentally ships it to prod, any visitor can read — and edit — every row.]]></description>
      <pubDate>Fri, 24 Apr 2026 04:38:05 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[What is VibeWShield? A 90-Second Explainer]]></title>
      <link>https://vibewshield.com/blog/what-is-vibewshield-90-second-explainer</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/what-is-vibewshield-90-second-explainer</guid>
      <description><![CDATA[VibeWShield is a free DAST scanner built specifically for apps generated by Cursor, Lovable, Bolt, Replit, and v0. Here's what it does, how it differs from traditional security tools, and why AI-generated code needs its own scanner.]]></description>
      <pubDate>Tue, 21 Apr 2026 03:23:02 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Inside VibeWShield: 65+ Scanners, AI Chaining, and the Browser Pass]]></title>
      <link>https://vibewshield.com/blog/inside-vibewshield-65-scanners-architecture</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/inside-vibewshield-65-scanners-architecture</guid>
      <description><![CDATA[Under the hood, VibeWShield is a Python orchestrator coordinating 65+ concurrent scanners, a headless Chromium browser pass, Claude AI enrichment, and an agentic AI pentester. Here's how the pipeline actually works.]]></description>
      <pubDate>Tue, 21 Apr 2026 03:22:32 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Your First VibeWShield Scan: A 5-Minute Walkthrough]]></title>
      <link>https://vibewshield.com/blog/your-first-vibewshield-scan-walkthrough</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/your-first-vibewshield-scan-walkthrough</guid>
      <description><![CDATA[What to expect from your first scan — choosing a mode, reading the results, and applying the fix prompts to your AI coding environment. Everything you need to go from 'scan started' to 'vulnerability patched' in one session.]]></description>
      <pubDate>Tue, 21 Apr 2026 03:20:44 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Resend API Keys in Lead Forms: Why You Need to Rotate Them Tomorrow]]></title>
      <link>https://vibewshield.com/blog/resend-api-keys-in-lead-forms</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/resend-api-keys-in-lead-forms</guid>
      <description><![CDATA[Resend, the transactional email API, is one of the most-leaked secrets in 2026 vibe-coded apps. The contact-form pattern Lovable/Bolt generate puts the key in the client. Here's the audit.]]></description>
      <pubDate>Tue, 21 Apr 2026 01:38:41 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Vercel's April 2026 Security Incident — What to Check in Your App Right Now]]></title>
      <link>https://vibewshield.com/blog/vercel-april-2026-incident-what-to-check</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/vercel-april-2026-incident-what-to-check</guid>
      <description><![CDATA[Vercel disclosed a security incident on April 19, 2026. If your vibe-coded app is hosted on Vercel, here are the five concrete checks to run today — and how VibeWShield surfaces them automatically.]]></description>
      <pubDate>Tue, 21 Apr 2026 01:38:25 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Next.js Server Actions: Security Risks When Vibe-Coding]]></title>
      <link>https://vibewshield.com/blog/nextjs-server-actions-security</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/nextjs-server-actions-security</guid>
      <description><![CDATA[AI tools generate Server Actions with mass assignment vulnerabilities. Learn how attackers inject admin privileges and how to fix it with Zod validation.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:23:34 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Quick Scan: 40+ Security Checks in Under 3 Minutes]]></title>
      <link>https://vibewshield.com/blog/quick-scan-explained</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/quick-scan-explained</guid>
      <description><![CDATA[VibeWShield Quick Scan runs 40+ security checks against your web app in under 3 minutes. No account needed. Here's exactly what it covers and what it skips.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:23:14 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[How ChatGPT and Claude Generate SSRF Vulnerabilities]]></title>
      <link>https://vibewshield.com/blog/ssrf-chatgpt-claude</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/ssrf-chatgpt-claude</guid>
      <description><![CDATA[AI often generates unsafe URL fetch code leading to Server-Side Request Forgery (SSRF). Learn why it happens and how to secure Next.js API routes.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:22:53 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Top 5 Security Vulnerabilities in AI-Generated Apps]]></title>
      <link>https://vibewshield.com/blog/top-vulnerabilities-vibe-coded-apps</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/top-vulnerabilities-vibe-coded-apps</guid>
      <description><![CDATA[AI coding assistants ship apps fast but create predictable security blind spots. The top 5 vulnerabilities in vibe-coded apps and how to fix each one.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:22:31 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[tRPC Procedure Authentication: Why AI-Generated Code Leaks User Data]]></title>
      <link>https://vibewshield.com/blog/trpc-auth-bypass-ai-generated</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/trpc-auth-bypass-ai-generated</guid>
      <description><![CDATA[AI coding tools scaffold tRPC routers without auth middleware. See the exact pattern attackers use to read other users' orders, invoices and messages — and how to fix it in one line.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:22:10 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Hacking a "Vibe-coded" App in 15 Minutes: A Real Case Study]]></title>
      <link>https://vibewshield.com/blog/vibe-coded-hack-15-minutes</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/vibe-coded-hack-15-minutes</guid>
      <description><![CDATA[A step-by-step breakdown of how an attacker can find an exposed database port and a .env file in AI-generated code. Demonstrating the critical need for external DAST scanning.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:21:49 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Vibe-Coding SaaS Security: The Ultimate Pre-Launch Checklist]]></title>
      <link>https://vibewshield.com/blog/vibe-coding-security-checklist</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/vibe-coding-security-checklist</guid>
      <description><![CDATA[Before you launch that AI-generated SaaS on Product Hunt, run through this 5-minute security checklist to avoid massive data leaks.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:21:28 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Agentic Scan: Your AI Pentester Running an OODA Loop]]></title>
      <link>https://vibewshield.com/blog/agentic-scan-explained</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/agentic-scan-explained</guid>
      <description><![CDATA[Agentic Scan deploys Claude AI as an autonomous pentester. It reads your scan results, forms attack hypotheses, sends targeted probes, and reports what scanners miss.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:21:07 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Aggressive Mode: Testing What Others Won't Touch]]></title>
      <link>https://vibewshield.com/blog/aggressive-scan-explained</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/aggressive-scan-explained</guid>
      <description><![CDATA[Aggressive Mode unlocks state-changing security tests — file upload attacks, mass assignment, prototype pollution, and more. Here's what it does and why it's safe.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:20:46 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[AI Chatbot Prompt Injection: 2026 Attack Patterns and Defense Playbook]]></title>
      <link>https://vibewshield.com/blog/ai-chatbot-prompt-injection-defense</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/ai-chatbot-prompt-injection-defense</guid>
      <description><![CDATA[Custom AI chatbots built with LangChain, Vercel AI SDK and the OpenAI API leak system prompts, tool secrets and user data daily. Here are the five prompt-injection patterns that work right now — and the defenses that actually hold.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:20:25 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Top 5 Automated Web Vulnerability Scanners (2026)]]></title>
      <link>https://vibewshield.com/blog/best-dast-scanners-2026</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/best-dast-scanners-2026</guid>
      <description><![CDATA[Comparing the best DAST scanners for Next.js, React, and GraphQL in 2026. Pricing, pros, cons, and which tool fits your team.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:20:04 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Bolt.new Security Audit: 7 Blind Spots in Every App You Ship]]></title>
      <link>https://vibewshield.com/blog/bolt-new-security-blind-spots</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/bolt-new-security-blind-spots</guid>
      <description><![CDATA[Bolt.new generates full-stack apps in minutes, but the default project template hides unsafe patterns. Here are the seven checks every Bolt app should pass before it goes to production.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:19:43 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Top 5 Security Flaws Cursor AI Writes in Next.js 15]]></title>
      <link>https://vibewshield.com/blog/cursor-ai-security-flaws</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/cursor-ai-security-flaws</guid>
      <description><![CDATA[Vibe-coding is fast but often sacrifices security. The top 5 vulnerabilities found in Next.js apps generated by Cursor AI and how to fix them.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:19:22 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Deep Scan: Full Security Audit with AI-Powered Analysis]]></title>
      <link>https://vibewshield.com/blog/deep-scan-explained</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/deep-scan-explained</guid>
      <description><![CDATA[Deep Scan runs 65+ scanners, browser runtime analysis, and Claude AI to find vulnerabilities, build attack chains, and generate fix prompts — free with a VibeWShield account.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:19:01 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[How Exposed API Keys End Up in Your JavaScript Bundle]]></title>
      <link>https://vibewshield.com/blog/detecting-exposed-api-keys</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/detecting-exposed-api-keys</guid>
      <description><![CDATA[API keys bundled into client-side JavaScript are the #1 critical finding in vibe-coded apps. How it happens and how to fix it.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:18:39 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[How to Properly Secure Supabase Row-Level Security]]></title>
      <link>https://vibewshield.com/blog/how-to-secure-supabase-rls</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/how-to-secure-supabase-rls</guid>
      <description><![CDATA[Supabase RLS is one of the most commonly misconfigured security features in vibe-coded apps. Here's a practical guide to getting it right.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:18:18 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Why Your Lovable App Is Probably Leaking User Data Right Now]]></title>
      <link>https://vibewshield.com/blog/lovable-app-security-vulnerabilities</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/lovable-app-security-vulnerabilities</guid>
      <description><![CDATA[Lovable generates apps fast but creates predictable security gaps. What leaks, why it happens, and how to fix it before attackers find it.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:17:57 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Why NextAuth (Auth.js) Doesn't Guarantee API Security]]></title>
      <link>https://vibewshield.com/blog/nextauth-api-security</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/nextauth-api-security</guid>
      <description><![CDATA[NextAuth handles authentication but not authorization. AI-generated apps consistently miss API endpoint protection. Here's how to fix missing access control.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:17:36 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[React Server Components (RSC): The Hidden Data Leak Risk]]></title>
      <link>https://vibewshield.com/blog/react-server-components-data-leaks</link>
      <guid isPermaLink="true">https://vibewshield.com/blog/react-server-components-data-leaks</guid>
      <description><![CDATA[Passing data blindly from Next.js Server Components to Client Components is causing severe API data leaks. Learn how to sanitize props.]]></description>
      <pubDate>Tue, 21 Apr 2026 00:17:14 GMT</pubDate>
      <category>Blog</category>
    </item>
    <item>
      <title><![CDATA[Everest Forms Pro Flaw Lets Hackers Take Over Sites]]></title>
      <link>https://vibewshield.com/news/everest-forms-pro-wordpress-plugin-vulnerability</link>
      <guid isPermaLink="true">https://vibewshield.com/news/everest-forms-pro-wordpress-plugin-vulnerability</guid>
      <description><![CDATA[A critical Everest Forms Pro WordPress plugin vulnerability is being actively exploited. Learn what's at risk and how to patch your site before attackers strike.]]></description>
      <pubDate>Fri, 05 Jun 2026 08:38:59 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[PCPJack Hijacks 230 Cloud Servers for SMTP Relay]]></title>
      <link>https://vibewshield.com/news/pcpjack-hijacks-230-cloud-servers-smtp-relay-network</link>
      <guid isPermaLink="true">https://vibewshield.com/news/pcpjack-hijacks-230-cloud-servers-smtp-relay-network</guid>
      <description><![CDATA[PCPJack malware has compromised 230 AWS, Google Cloud, and Azure servers to build a covert SMTP relay network. Here's what developers need to know.]]></description>
      <pubDate>Fri, 05 Jun 2026 05:34:19 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Claude Code GitHub Action Flaw: Repo Hijack Risk]]></title>
      <link>https://vibewshield.com/news/claude-code-github-action-flaw-repo-hijack</link>
      <guid isPermaLink="true">https://vibewshield.com/news/claude-code-github-action-flaw-repo-hijack</guid>
      <description><![CDATA[A flaw in the Claude Code GitHub Action let a single malicious issue hijack repositories. Here's how it works and what developers must do now.]]></description>
      <pubDate>Thu, 04 Jun 2026 15:15:26 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[CISA Adds Magento RCE CVE-2026-45247 to KEV Catalog]]></title>
      <link>https://vibewshield.com/news/cisa-magento-rce-cve-2026-45247-kev-catalog</link>
      <guid isPermaLink="true">https://vibewshield.com/news/cisa-magento-rce-cve-2026-45247-kev-catalog</guid>
      <description><![CDATA[CISA added exploited Magento RCE flaw CVE-2026-45247 to its KEV catalog. Here's what developers need to know and how to protect their stores now.]]></description>
      <pubDate>Thu, 04 Jun 2026 07:19:33 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[WhatsApp, Slack Notifications Hijack Google Gemini]]></title>
      <link>https://vibewshield.com/news/whatsapp-slack-notifications-hijack-google-gemini-android</link>
      <guid isPermaLink="true">https://vibewshield.com/news/whatsapp-slack-notifications-hijack-google-gemini-android</guid>
      <description><![CDATA[WhatsApp and Slack notifications can hijack Google Gemini on Android via prompt injection. Here's what developers need to know to protect their apps.]]></description>
      <pubDate>Wed, 03 Jun 2026 19:11:15 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Microsoft 365 Android Apps Leak Account Tokens]]></title>
      <link>https://vibewshield.com/news/microsoft-365-android-apps-account-token-theft-debug-flag</link>
      <guid isPermaLink="true">https://vibewshield.com/news/microsoft-365-android-apps-account-token-theft-debug-flag</guid>
      <description><![CDATA[A leftover debug flag in Microsoft 365 Android apps lets any installed app steal account tokens. Here's what developers need to know and do now.]]></description>
      <pubDate>Wed, 03 Jun 2026 14:56:35 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[HTTP/2 Bomb Vulnerability: DoS Risk on NGINX & Apache]]></title>
      <link>https://vibewshield.com/news/http2-bomb-vulnerability-remote-dos-nginx-apache-iss-envoy</link>
      <guid isPermaLink="true">https://vibewshield.com/news/http2-bomb-vulnerability-remote-dos-nginx-apache-iss-envoy</guid>
      <description><![CDATA[A new HTTP/2 bomb vulnerability lets attackers remotely crash NGINX, Apache, IIS, Envoy, and Cloudflare. Here's what developers need to know and do now.]]></description>
      <pubDate>Wed, 03 Jun 2026 08:33:35 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Oracle WebLogic CVE-2024-21182 Added to KEV]]></title>
      <link>https://vibewshield.com/news/oracle-weblogic-cve-2024-21182-kev-catalog</link>
      <guid isPermaLink="true">https://vibewshield.com/news/oracle-weblogic-cve-2024-21182-kev-catalog</guid>
      <description><![CDATA[Oracle WebLogic CVE-2024-21182 is now in CISA's KEV catalog after active exploitation. Learn what's at risk and how to patch before attackers hit your servers.]]></description>
      <pubDate>Tue, 02 Jun 2026 18:14:42 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[AI-Driven Exploitation Is Breaking Vulnerability Management]]></title>
      <link>https://vibewshield.com/news/ai-driven-exploitation-vulnerability-management</link>
      <guid isPermaLink="true">https://vibewshield.com/news/ai-driven-exploitation-vulnerability-management</guid>
      <description><![CDATA[AI is now discovering and exploiting vulnerabilities faster than teams can patch. Here's a practical 5-step framework to stay ahead of AI-driven attacks.]]></description>
      <pubDate>Tue, 02 Jun 2026 11:58:00 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Red Hat npm Packages Backdoored to Steal Dev Credentials]]></title>
      <link>https://vibewshield.com/news/red-hat-npm-packages-compromised-miasma-malware</link>
      <guid isPermaLink="true">https://vibewshield.com/news/red-hat-npm-packages-compromised-miasma-malware</guid>
      <description><![CDATA[30+ Red Hat npm packages under @redhat-cloud-services were backdoored with Miasma malware to steal AWS keys, SSH keys, and CI/CD tokens. Here's what you need to know.]]></description>
      <pubDate>Mon, 01 Jun 2026 21:38:29 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Miasma Attack Hits Red Hat npm Packages]]></title>
      <link>https://vibewshield.com/news/miasma-supply-chain-attack-red-hat-npm-packages</link>
      <guid isPermaLink="true">https://vibewshield.com/news/miasma-supply-chain-attack-red-hat-npm-packages</guid>
      <description><![CDATA[The Miasma supply chain attack compromised Red Hat npm packages with a credential-stealing worm. Here's what developers need to know and do right now.]]></description>
      <pubDate>Mon, 01 Jun 2026 17:40:28 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[OpenAI Codex Tokens Stolen in npm Supply Chain Attack]]></title>
      <link>https://vibewshield.com/news/openai-codex-tokens-stolen-codexui-android-npm-attack</link>
      <guid isPermaLink="true">https://vibewshield.com/news/openai-codex-tokens-stolen-codexui-android-npm-attack</guid>
      <description><![CDATA[Malicious npm package codexui-android stole OpenAI Codex authentication tokens. Here's what developers need to know and how to protect your projects.]]></description>
      <pubDate>Mon, 01 Jun 2026 09:31:15 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[WP Maps Pro Flaw Exploited to Create Admin Accounts]]></title>
      <link>https://vibewshield.com/news/wp-maps-pro-flaw-exploited-create-admin-accounts</link>
      <guid isPermaLink="true">https://vibewshield.com/news/wp-maps-pro-flaw-exploited-create-admin-accounts</guid>
      <description><![CDATA[A critical WP Maps Pro vulnerability is being actively exploited to create unauthorized admin accounts. Learn how it works and how to protect your site now.]]></description>
      <pubDate>Mon, 01 Jun 2026 08:45:29 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[WP Maps Pro Bug Lets Hackers Create Admin Accounts]]></title>
      <link>https://vibewshield.com/news/wp-maps-pro-bug-admin-account-exploit</link>
      <guid isPermaLink="true">https://vibewshield.com/news/wp-maps-pro-bug-admin-account-exploit</guid>
      <description><![CDATA[CVE-2026-8732 in WP Maps Pro allows unauthenticated admin account creation. Over 3,600 exploits blocked. Patch to version 6.1.1 immediately.]]></description>
      <pubDate>Sun, 31 May 2026 14:06:42 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[ChatGPhish: ChatGPT Web Summaries Enable Phishing]]></title>
      <link>https://vibewshield.com/news/chatgphish-chatgpt-web-summaries-phishing-vulnerability</link>
      <guid isPermaLink="true">https://vibewshield.com/news/chatgphish-chatgpt-web-summaries-phishing-vulnerability</guid>
      <description><![CDATA[ChatGPhish turns ChatGPT's web summary feature into a live phishing surface. Here's how the attack works and what developers need to do now.]]></description>
      <pubDate>Fri, 29 May 2026 18:07:12 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Marimo CVE-2026-39987: LLM Agents in Post-Exploit]]></title>
      <link>https://vibewshield.com/news/marimo-cve-2026-39987-llm-agent-post-exploitation</link>
      <guid isPermaLink="true">https://vibewshield.com/news/marimo-cve-2026-39987-llm-agent-post-exploitation</guid>
      <description><![CDATA[Attackers are chaining Marimo CVE-2026-39987 with LLM agents for post-exploitation. Here's what developers need to know to protect their apps now.]]></description>
      <pubDate>Fri, 29 May 2026 14:39:56 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[2,000 Vibe-Coded Apps Expose Security Stack Failures]]></title>
      <link>https://vibewshield.com/news/vibe-coded-apps-expose-security-stack-limits</link>
      <guid isPermaLink="true">https://vibewshield.com/news/vibe-coded-apps-expose-security-stack-limits</guid>
      <description><![CDATA[An analysis of 2,000 exposed vibe-coded apps reveals critical security stack blind spots. See what's failing and how to fix it before attackers do.]]></description>
      <pubDate>Fri, 29 May 2026 10:30:00 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Sicoob NuGet Package Steals Banking Credentials]]></title>
      <link>https://vibewshield.com/news/sicoob-nuget-malicious-package-banking-credentials</link>
      <guid isPermaLink="true">https://vibewshield.com/news/sicoob-nuget-malicious-package-banking-credentials</guid>
      <description><![CDATA[A malicious Sicoob NuGet package is stealing banking credentials while npm packages target cloud secrets. Here's what developers need to check right now.]]></description>
      <pubDate>Fri, 29 May 2026 09:11:25 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Claude Mythos-Class Models: Public Rollout Confirmed]]></title>
      <link>https://vibewshield.com/news/anthropic-claude-mythos-class-models-public-rollout</link>
      <guid isPermaLink="true">https://vibewshield.com/news/anthropic-claude-mythos-class-models-public-rollout</guid>
      <description><![CDATA[Anthropic confirms Claude Mythos-class models are coming to the public in weeks. Here's what developers need to know about the security risks and safeguards.]]></description>
      <pubDate>Fri, 29 May 2026 00:21:03 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Gogs RCE Flaw: Authenticated Users Run Arbitrary Code]]></title>
      <link>https://vibewshield.com/news/gogs-rce-vulnerability-authenticated-users-arbitrary-code</link>
      <guid isPermaLink="true">https://vibewshield.com/news/gogs-rce-vulnerability-authenticated-users-arbitrary-code</guid>
      <description><![CDATA[A critical Gogs RCE vulnerability lets any authenticated user execute arbitrary code. Learn how it works and how to protect your self-hosted Git server now.]]></description>
      <pubDate>Thu, 28 May 2026 17:24:44 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Claude Plugin, Azure Priv-Esc & MFA Bypass Threats]]></title>
      <link>https://vibewshield.com/news/claude-plugin-azure-priv-esc-kali365-mfa-bypass-fifa-scams</link>
      <guid isPermaLink="true">https://vibewshield.com/news/claude-plugin-azure-priv-esc-kali365-mfa-bypass-fifa-scams</guid>
      <description><![CDATA[Claude security plugin flaws, Azure privilege escalation, Kali365 MFA bypass, and FIFA scams dominate this week's threat bulletin. Here's what developers need to know.]]></description>
      <pubDate>Thu, 28 May 2026 13:33:16 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Malicious npm Package Stole Claude AI Files via GitHub]]></title>
      <link>https://vibewshield.com/news/malicious-npm-package-stole-claude-ai-files-github</link>
      <guid isPermaLink="true">https://vibewshield.com/news/malicious-npm-package-stole-claude-ai-files-github</guid>
      <description><![CDATA[A malicious npm package silently exfiltrated files from Claude AI's user directory and uploaded them to GitHub. Here's how it worked and what to do.]]></description>
      <pubDate>Wed, 27 May 2026 15:44:29 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Shadow AI Tools: 5 Steps to Manage Them Safely]]></title>
      <link>https://vibewshield.com/news/shadow-ai-tools-5-steps-manage-without-slowing-employees</link>
      <guid isPermaLink="true">https://vibewshield.com/news/shadow-ai-tools-5-steps-manage-without-slowing-employees</guid>
      <description><![CDATA[Shadow AI tools are spreading across your org unchecked. Here are 5 steps to manage the risk without killing developer productivity or velocity.]]></description>
      <pubDate>Wed, 27 May 2026 13:28:48 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[GlassWorm Malware Takedown Hits Supply Chain]]></title>
      <link>https://vibewshield.com/news/glassworm-malware-takedown-developer-supply-chain</link>
      <guid isPermaLink="true">https://vibewshield.com/news/glassworm-malware-takedown-developer-supply-chain</guid>
      <description><![CDATA[GlassWorm malware infrastructure has been dismantled, exposing how developer supply chain attacks operated. Here's what you need to know to stay protected.]]></description>
      <pubDate>Wed, 27 May 2026 11:48:37 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Gitea Vulnerability Exposes Private Container Images]]></title>
      <link>https://vibewshield.com/news/gitea-vulnerability-exposes-private-container-images</link>
      <guid isPermaLink="true">https://vibewshield.com/news/gitea-vulnerability-exposes-private-container-images</guid>
      <description><![CDATA[A Gitea vulnerability lets unauthenticated users pull private container images. Learn how it works, what's at risk, and how to protect your registry now.]]></description>
      <pubDate>Wed, 27 May 2026 10:06:32 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[KnowledgeDeliver Zero-Day Exploited to Drop Web Shells]]></title>
      <link>https://vibewshield.com/news/knowledgedeliver-zero-day-web-shell-cve-2026-5426</link>
      <guid isPermaLink="true">https://vibewshield.com/news/knowledgedeliver-zero-day-web-shell-cve-2026-5426</guid>
      <description><![CDATA[A hardcoded ASP.NET machine key in KnowledgeDeliver LMS let attackers exploit CVE-2026-5426 without auth to deploy Godzilla web shells. Here's what you need to know.]]></description>
      <pubDate>Tue, 26 May 2026 20:07:31 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[SharePoint RCE CVE-2026-45659 Patched by Microsoft]]></title>
      <link>https://vibewshield.com/news/sharepoint-rce-cve-2026-45659-microsoft-patch</link>
      <guid isPermaLink="true">https://vibewshield.com/news/sharepoint-rce-cve-2026-45659-microsoft-patch</guid>
      <description><![CDATA[Microsoft patches critical SharePoint RCE flaw CVE-2026-45659 across server versions. Learn how it works, what's at risk, and how to protect your deployment.]]></description>
      <pubDate>Tue, 26 May 2026 11:49:53 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[CERT-In 12-Hour Patch Mandate: AI Attacks Drive Rules]]></title>
      <link>https://vibewshield.com/news/cert-in-12-hour-patching-mandate-ai-assisted-attacks</link>
      <guid isPermaLink="true">https://vibewshield.com/news/cert-in-12-hour-patching-mandate-ai-assisted-attacks</guid>
      <description><![CDATA[CERT-In now mandates 12-hour patching for internet-facing vulnerabilities as AI-assisted attacks shrink response windows. Here's what developers must do now.]]></description>
      <pubDate>Tue, 26 May 2026 09:13:02 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[CISA Orders Patch for Exploited Drupal SQL Injection]]></title>
      <link>https://vibewshield.com/news/cisa-patch-drupal-sql-injection-cve-2026-9082</link>
      <guid isPermaLink="true">https://vibewshield.com/news/cisa-patch-drupal-sql-injection-cve-2026-9082</guid>
      <description><![CDATA[CISA added CVE-2026-9082, an actively exploited Drupal SQL injection flaw, to its KEV catalog. Federal agencies must patch by May 27. Here's what developers need to know.]]></description>
      <pubDate>Tue, 26 May 2026 08:46:45 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Claude Mythos Model: AI Cyberattack Risks Explained]]></title>
      <link>https://vibewshield.com/news/claude-mythos-model-coming-to-claude-code</link>
      <guid isPermaLink="true">https://vibewshield.com/news/claude-mythos-model-coming-to-claude-code</guid>
      <description><![CDATA[Anthropic's Claude Mythos model may soon hit Claude Code. It can auto-generate professional cyberattacks. Here's what developers need to know now.]]></description>
      <pubDate>Mon, 25 May 2026 17:07:33 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Ghost CMS CVE-2026-26980: 700+ Sites Hijacked]]></title>
      <link>https://vibewshield.com/news/ghost-cms-cve-2026-26980-clickfix-attacks</link>
      <guid isPermaLink="true">https://vibewshield.com/news/ghost-cms-cve-2026-26980-clickfix-attacks</guid>
      <description><![CDATA[Ghost CMS CVE-2026-26980 is being actively exploited to hijack sites for ClickFix attacks. Learn how it works and how to protect your install now.]]></description>
      <pubDate>Mon, 25 May 2026 12:02:46 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[TrapDoor Supply Chain Attack Hits npm, PyPI, CratesIO]]></title>
      <link>https://vibewshield.com/news/trapdoor-supply-chain-attack-npm-pypi-cratesio</link>
      <guid isPermaLink="true">https://vibewshield.com/news/trapdoor-supply-chain-attack-npm-pypi-cratesio</guid>
      <description><![CDATA[TrapDoor malware spreads credential-stealing payloads across npm, PyPI, and CratesIO. Learn how the supply chain attack works and how to protect your projects.]]></description>
      <pubDate>Mon, 25 May 2026 05:59:13 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Ghost CMS SQL Injection CVE-2026-26980 Exploited]]></title>
      <link>https://vibewshield.com/news/ghost-cms-sql-injection-cve-2026-26980-clickfix</link>
      <guid isPermaLink="true">https://vibewshield.com/news/ghost-cms-sql-injection-cve-2026-26980-clickfix</guid>
      <description><![CDATA[CVE-2026-26980 in Ghost CMS is being actively exploited in a ClickFix campaign hitting 700+ domains. Here's what happened and how to protect your site.]]></description>
      <pubDate>Sun, 24 May 2026 14:12:32 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Laravel Lang Packages Hijacked: Credential Malware]]></title>
      <link>https://vibewshield.com/news/laravel-lang-packages-hijacked-credential-stealing-malware</link>
      <guid isPermaLink="true">https://vibewshield.com/news/laravel-lang-packages-hijacked-credential-stealing-malware</guid>
      <description><![CDATA[Attackers hijacked Laravel Lang Composer packages via tag rewrites to deploy a cross-platform credential stealer. Here's what happened and how to respond.]]></description>
      <pubDate>Sat, 23 May 2026 20:48:23 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[npm 2FA Publishing Controls Block Supply Chain Attacks]]></title>
      <link>https://vibewshield.com/news/npm-2fa-publishing-controls-supply-chain-attacks</link>
      <guid isPermaLink="true">https://vibewshield.com/news/npm-2fa-publishing-controls-supply-chain-attacks</guid>
      <description><![CDATA[npm now gates package publishing behind 2FA and adds install controls. Here's what developers need to configure to protect their supply chain.]]></description>
      <pubDate>Sat, 23 May 2026 16:35:10 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[AI Finds 10,000 High-Severity Flaws in Software]]></title>
      <link>https://vibewshield.com/news/claude-mythos-ai-finds-10000-high-severity-flaws</link>
      <guid isPermaLink="true">https://vibewshield.com/news/claude-mythos-ai-finds-10000-high-severity-flaws</guid>
      <description><![CDATA[Claude Mythos AI discovered 10,000 high-severity vulnerabilities in widely used software. Here's what developers need to know about AI-driven flaw detection.]]></description>
      <pubDate>Sat, 23 May 2026 11:55:35 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Laravel-Lang PHP Packages Hit by Credential Stealer]]></title>
      <link>https://vibewshield.com/news/laravel-lang-php-packages-credential-stealer</link>
      <guid isPermaLink="true">https://vibewshield.com/news/laravel-lang-php-packages-credential-stealer</guid>
      <description><![CDATA[Laravel-Lang PHP packages were compromised to deliver a cross-platform credential stealer. Here's what developers need to know and how to protect your apps.]]></description>
      <pubDate>Sat, 23 May 2026 09:51:13 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Drupal Core SQL Injection Bug Hits CISA KEV]]></title>
      <link>https://vibewshield.com/news/drupal-core-sql-injection-cisa-kev-exploited</link>
      <guid isPermaLink="true">https://vibewshield.com/news/drupal-core-sql-injection-cisa-kev-exploited</guid>
      <description><![CDATA[A Drupal core SQL injection vulnerability is actively exploited and added to CISA's KEV catalog. Here's what developers need to patch right now.]]></description>
      <pubDate>Sat, 23 May 2026 07:23:48 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Drupal CVE-2026-9082: Critical SQL Injection Now Exploited]]></title>
      <link>https://vibewshield.com/news/drupal-cve-2026-9082-critical-sql-injection-exploited</link>
      <guid isPermaLink="true">https://vibewshield.com/news/drupal-cve-2026-9082-critical-sql-injection-exploited</guid>
      <description><![CDATA[Hackers are actively exploiting Drupal's critical SQL injection flaw CVE-2026-9082. Learn which versions are affected and how to patch immediately.]]></description>
      <pubDate>Fri, 22 May 2026 13:14:40 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Megalodon GitHub Attack Hits 5,561 Repos via CI/CD]]></title>
      <link>https://vibewshield.com/news/megalodon-github-attack-malicious-cicd-workflows</link>
      <guid isPermaLink="true">https://vibewshield.com/news/megalodon-github-attack-malicious-cicd-workflows</guid>
      <description><![CDATA[The Megalodon GitHub attack injected malicious CI/CD workflows into 5,561 repos. Learn how it works and how to protect your pipelines now.]]></description>
      <pubDate>Fri, 22 May 2026 11:55:24 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[CISA KEV: Langflow & Trend Micro Apex One Flaws]]></title>
      <link>https://vibewshield.com/news/cisa-kev-langflow-trend-micro-apex-one-vulnerabilities</link>
      <guid isPermaLink="true">https://vibewshield.com/news/cisa-kev-langflow-trend-micro-apex-one-vulnerabilities</guid>
      <description><![CDATA[CISA added actively exploited Langflow and Trend Micro Apex One vulnerabilities to its KEV catalog. Here's what developers need to patch now.]]></description>
      <pubDate>Fri, 22 May 2026 05:47:33 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Cisco Patches CVSS 10.0 REST API Flaw in Secure Workload]]></title>
      <link>https://vibewshield.com/news/cisco-cvss-10-secure-workload-rest-api-flaw</link>
      <guid isPermaLink="true">https://vibewshield.com/news/cisco-cvss-10-secure-workload-rest-api-flaw</guid>
      <description><![CDATA[Cisco's Secure Workload has a CVSS 10.0 REST API vulnerability that allows full data access. Learn what's exposed and how to protect your systems now.]]></description>
      <pubDate>Fri, 22 May 2026 05:36:18 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[When Identity Becomes the Attack Path: What to Know]]></title>
      <link>https://vibewshield.com/news/when-identity-is-the-attack-path</link>
      <guid isPermaLink="true">https://vibewshield.com/news/when-identity-is-the-attack-path</guid>
      <description><![CDATA[Attackers are using identity as the primary attack vector. Learn how credential abuse and IAM flaws let threats bypass security entirely.]]></description>
      <pubDate>Thu, 21 May 2026 10:30:00 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[GitHub Repos Breached via Malicious Nx Console Extension]]></title>
      <link>https://vibewshield.com/news/github-breach-malicious-nx-console-vscode-extension</link>
      <guid isPermaLink="true">https://vibewshield.com/news/github-breach-malicious-nx-console-vscode-extension</guid>
      <description><![CDATA[A malicious Nx Console VS Code extension was used to breach GitHub internal repositories. Here's how the attack worked and what developers must do now.]]></description>
      <pubDate>Thu, 21 May 2026 04:27:01 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Critical Drupal Core Flaw: PostgreSQL RCE Risk]]></title>
      <link>https://vibewshield.com/news/drupal-core-flaw-postgresql-rce-vulnerability</link>
      <guid isPermaLink="true">https://vibewshield.com/news/drupal-core-flaw-postgresql-rce-vulnerability</guid>
      <description><![CDATA[A highly critical Drupal core vulnerability exposes PostgreSQL-backed sites to remote code execution. Learn what's affected and how to patch now.]]></description>
      <pubDate>Thu, 21 May 2026 03:44:11 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Microsoft Open-Sources RAMPART and Clarity for AI Security]]></title>
      <link>https://vibewshield.com/news/microsoft-rampart-clarity-open-source-ai-agent-security</link>
      <guid isPermaLink="true">https://vibewshield.com/news/microsoft-rampart-clarity-open-source-ai-agent-security</guid>
      <description><![CDATA[Microsoft releases RAMPART and Clarity as open-source tools to help developers secure AI agents during development. Here's what they do and why it matters.]]></description>
      <pubDate>Wed, 20 May 2026 17:06:54 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Grafana GitHub Breach: TanStack npm Attack Exposed]]></title>
      <link>https://vibewshield.com/news/grafana-github-breach-tanstack-npm-attack</link>
      <guid isPermaLink="true">https://vibewshield.com/news/grafana-github-breach-tanstack-npm-attack</guid>
      <description><![CDATA[Grafana's GitHub was breached via a malicious TanStack npm package. Learn how the supply chain attack worked and how to protect your repositories.]]></description>
      <pubDate>Wed, 20 May 2026 05:12:06 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[GitHub Breached: 3,800+ Internal Repos Exfiltrated]]></title>
      <link>https://vibewshield.com/news/github-breached-employee-device-hack-repos-exfiltrated</link>
      <guid isPermaLink="true">https://vibewshield.com/news/github-breached-employee-device-hack-repos-exfiltrated</guid>
      <description><![CDATA[A GitHub employee device hack led to the exfiltration of 3,800+ internal repos. Here's what happened, what was exposed, and how to protect your org.]]></description>
      <pubDate>Wed, 20 May 2026 04:01:15 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[OAuth Consent Attacks: Bypassing MFA with Phishing]]></title>
      <link>https://vibewshield.com/news/oauth-consent-phishing-bypasses-mfa</link>
      <guid isPermaLink="true">https://vibewshield.com/news/oauth-consent-phishing-bypasses-mfa</guid>
      <description><![CDATA[OAuth consent phishing lets attackers bypass MFA entirely by hijacking app permissions. Learn how the attack works and how to defend your users now.]]></description>
      <pubDate>Tue, 19 May 2026 11:30:00 GMT</pubDate>
      <category>News</category>
    </item>
    <item>
      <title><![CDATA[Nx Console 18.95.0: Compromised VS Code Extension]]></title>
      <link>https://vibewshield.com/news/nx-console-18-95-0-compromised-vs-code-credential-stealer</link>
      <guid isPermaLink="true">https://vibewshield.com/news/nx-console-18-95-0-compromised-vs-code-credential-stealer</guid>
      <description><![CDATA[Nx Console 18.95.0 was hijacked to steal developer credentials via VS Code. Learn what happened, who's at risk, and how to protect your environment now.]]></description>
      <pubDate>Tue, 19 May 2026 07:49:23 GMT</pubDate>
      <category>News</category>
    </item>
  </channel>
</rss>