Home
Tech News
Dev Tools
Free APIs
AI Models
Projects

Main

Home Tech News Dev Tools Free APIs AI Models Projects

Explore More

Articles Videos Jobs Podcasts Reddit Stack Overflow Events Dashboard Collections Roadmaps Compare Tech Challenges AI Tools Salary Polls Code Explainer Resume AI My Profile

Tools & Fun

Portfolio Gen Interview Coach JSON Formatter Open Source Tech Glossary Dev Memes

TechForDev

Your daily source for tech news, AI tools, developer articles, and trending projects. Auto-updated, always fresh.

Explore

Tech News
AI Tools
Free APIs
AI Models
Articles
Projects

More

Videos
Remote Jobs
Reddit
Events
Roadmaps
Challenges
Salary Data
Dev Polls
Compare Tech
My Profile

Other

Extensions
Mobile App
Premium
Community
Integrations
Settings

Connect

/ searchAlt+D themen newsr roadmapsc challenges? help

📧 Newsletter

Get weekly tech updates in your inbox

© 2026 TechForDev. All rights reserved.

Privacy Policy Terms of Service Cookie Policy

👋 Need help with code?

Back to Articles

'Just' Is the Word That Lets Them In

"It's just a small endpoint." "It's just a debug flag." "It's just internal." Just is how things get...

'Just' Is the Word That Lets Them In

"It's just a small endpoint."
"It's just a debug flag."
"It's just internal."

Just is how things get in.

The attacker doesn't care how small.
Only that it's open.

Drop the word.
Treat every door like a door.

– Serguey Asael Shinder

Tags

#security #softwareengineering #mindset

Share:

Read the original article and join the discussion on Dev.to

Author

Serguey Asael Shinder

@sergueyasaelshinder

Stats

Reactions0

Comments0

Read Time1 min

Published

You Might Also Like

👾 Server Access Logs with GoAccess

Anna Villarreal3d ago • 2 min read

👾 Server Access Logs with GoAccess

Part 1: Self-hosting on Jetson Orin Nano 👽 Jetson Orin Nano Web Server Follow-up...

#security#webdev#learning#linux

20 9

AI found 300 WordPress plugin zero-days in 72 hours. I build plugins. Here's what changed for me.

Rapls2d ago • 5 min read

AI found 300 WordPress plugin zero-days in 72 hours. I build plugins. Here's what changed for me.

Before I released my own AI chatbot plugin, I ran it through a security review. It came back with 35...

#wordpress#security#webdev#ai

21 7

'Just' Is the Word That Lets Them In | TechForDev

June 25, 2026

How My AI Agent Hacked Its Own Permissions (And What It Taught Me)

Alexander Tyutin1d ago • 2 min read

How My AI Agent Hacked Its Own Permissions (And What It Taught Me)

Have you ever tried to build an automation that works so well it bypasses the very rules you set for...

#ai#security#agents#automation

13 10

Next.js 16 Server Actions Security: The Auth Check Most Developers Miss

Shubhra Pokhariya21h ago • 8 min read

Next.js 16 Server Actions Security: The Auth Check Most Developers Miss

I keep seeing it on code reviews. Proxy solid. Auth on every Server Component. Header direction...

#nextjs#security#webdev#javascript

15 11

Don't use an LLM to decide what your AI agent is allowed to do

Brian Hall3d ago • 4 min read

Don't use an LLM to decide what your AI agent is allowed to do

I'm in a group called AARM. It's a bunch of people trying to work out how you actually secure what a...

#ai#agents#security#llm

10 11

How I Used Automated Red Teaming to Evaluate My AI Agent's Safety

Morgan Willis19h ago • 10 min read

How I Used Automated Red Teaming to Evaluate My AI Agent's Safety

I gave an AI agent the vended bash tool from Strands and asked it to read my AWS credentials file. A...

#agents#ai#security#aws

10 5