Tag
account-security
Safeguard articles tagged "account-security" — guides, analysis, and best practices for software supply chain and application security.
2 articles
AI Security
The Security Chores Agents Should Handle Themselves
Enabling 2FA, rotating a password, revoking a stale session, minting a scoped key — the account-hygiene tasks everyone postpones. When an agent can do them through MCP, 'later' becomes 'now.'
Jul 9, 20264 min read
Open Source Security
PyPI 2FA Lessons Two Years In
PyPI mandated 2FA for all maintainers in 2024. Two years in, account takeovers dropped — but attackers shifted to OIDC tokens, abandoned packages, and maintainer devices.
Mar 6, 20267 min read