Yevhenii Stuzhuk

Yevhen Stuzhuk - Personal Portfolio

I am a Senior Software Engineer

  • Home
  • About
  • Resume
  • Portfolio
  • Services
  • Blog
  • Contact
  • Sign in
  • 🇬🇧
    🇷🇺🇺🇦
← All posts

Tag

security

All blog posts with this tag.

  • 15 Jun 2026

    npm and pnpm Introduce Staged Package Publishing

    Staged publishing lets you upload to the registry, verify, then promote — reducing supply-chain blast radius. Plus pnpm 11.3 trustLockfile and npm 12 prerelease.

    NewsNode.jssecurity
  • 4 Jun 2026

    Three SQL Injection Patterns That Still Ship in Node.js

    Concatenation, template literals, and innocent-looking sql variables — why reviews miss them and how eslint-plugin-pg catches them statically.

    BackendNewsNode.jssecurity
  • 1 Jun 2026

    Sandbox security for agentic AI: Docker, microVMs, and CVE-2026-31431

    40% of teams cite security as the top barrier to scaling agentic AI. Docker Sandboxes, Engine hardening, and governance for autonomous code.

    AINewssecurity
  • 29 May 2026

    Stateful monitoring catches distributed agent attacks across accounts

    arXiv preprint: attackers split harmful tasks across benign-looking sessions — clustering weak signals catches misuse ~30% earlier with negligible latency for most traffic.

    researchsecurity
  • 17 May 2026

    npm supply chain attacks: hardening installs at project level

    ignore-scripts, npm ci, provenance, and lockfile review—layered defenses when node_modules holds thousands of transitive packages.

    NewsNode.jssecurity