Tag
erlang-otp
Safeguard articles tagged "erlang-otp" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Security Guides
Elixir and Phoenix Security Best Practices: BEAM Footguns and the Hex Supply Chain
Phoenix is safe by default, but the BEAM has its own footguns — binary_to_term, atom exhaustion, dynamic eval — and the Erlang/OTP runtime beneath it shipped a CVSS 10.0 pre-auth SSH RCE in 2025.
Jul 6, 20266 min read
Industry Analysis
Erlang/OTP atom exhaustion and deserialization risks in E...
How the elixir atom exhaustion vulnerability lets attackers crash BEAM nodes via unsafe binary_to_term calls, and how Safeguard catches the pattern before it ships.
Feb 1, 20267 min read