Dailog #2
https://ian.sh/fia
Hacking Formula 1: Accessing Max Verstappen's passport and PII through FIA bugs
an interesting blog post explains the importance of endpoint level validations. they exploited the put request to gain escalated privileges, in this case ADMIN privilege.
Good. Reading.
https://ian.sh/mcdonalds
another good read from the same authors. interesting.
https://joshmoody.org/blog/programming-with-less-than-nothing/
Couldn't understand what is going on here. But was interesting. I will check on it later or sometime later.
https://quesma.com/blog/local-llms-security-paradox/
Good blog regarding llm safety.