DEV Community

# owasp

Discussions related to the OWASP Foundation, its projects, and Top 10 lists.

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Understanding OWASP Mobile Top 10 (2025): A Guide for Android & iOS Developers

Understanding OWASP Mobile Top 10 (2025): A Guide for Android & iOS Developers

4 min read
Build a Secure API with Rails 8 - Part-4: SSL, CSRF & Serialization

Build a Secure API with Rails 8 - Part-4: SSL, CSRF & Serialization

10 min read
From Single Files to Scenario Suites: Batch Validation in the OWASP Agent Security Regression Harness

From Single Files to Scenario Suites: Batch Validation in the OWASP Agent Security Regression Harness

2
3 min read
OWASP Secure Coding Checklist for Node Express APIs 2026

OWASP Secure Coding Checklist for Node Express APIs 2026

9
11 min read
CVE Lite CLI: The Dependency Scanner That Actually Tells You What to Run (Not Just What’s Broken)

CVE Lite CLI: The Dependency Scanner That Actually Tells You What to Run (Not Just What’s Broken)

14 min read
Build a Secure API with Rails 8 - Part-3: Auth Controllers

Build a Secure API with Rails 8 - Part-3: Auth Controllers

15 min read
Promptfoo: LLM Red Teaming Against OWASP Top 10

Promptfoo: LLM Red Teaming Against OWASP Top 10

9 min read
The Complete API Security Checklist (A Defense-in-Depth Approach)

The Complete API Security Checklist (A Defense-in-Depth Approach)

75
16 min read
Auditing an MCP Server Against the OWASP MCP Top 10

Auditing an MCP Server Against the OWASP MCP Top 10

1
5 min read
A pragmatic threat model for AI coding agents, with controls you can ship today

A pragmatic threat model for AI coding agents, with controls you can ship today

6 min read
Build a Secure API with Rails 8 - Part-2: Authentication Foundations

Build a Secure API with Rails 8 - Part-2: Authentication Foundations

9 min read
Prompt Injection in 2026: Still OWASP's Number One LLM Vulnerability

Prompt Injection in 2026: Still OWASP's Number One LLM Vulnerability

13 min read
CI/CD con GitHub Actions, Terraform y AWS desplegando OWASP Juice Shop

CI/CD con GitHub Actions, Terraform y AWS desplegando OWASP Juice Shop

3 min read
I Built a SAST Scanner From Scratch — Here's Every Design Decision I Made

I Built a SAST Scanner From Scratch — Here's Every Design Decision I Made

7 min read
Threat modeling LLM apps with the CIA triad and OWASP Top 10

Threat modeling LLM apps with the CIA triad and OWASP Top 10

4 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.