Tag

#oauth

2 posts tagged #oauth.

Analysis · May 3, 2026 · Colten Anderson

50 CVEs in 18 months is not a growing pain. It's a design choice the industry keeps making.

MCP went from unknown to default AI integration in under two years. The vulnerability count, the OWASP Top 10, and the simultaneous client failures tell a story about what happens when adoption is the only metric.
Analysis · May 1, 2026 · Colten Anderson

The Vercel breach is the Heroku/Travis CI playbook, rerun through an AI tool

A compromised OAuth token at a small AI productivity company gave attackers a path into Vercel's internal systems. The structural pattern is four years old. AI tools are making it worse.