Tags · #security

Snyk embeds Claude across AppSec, ships Evo for prompt injection and MCP supply-chain attacks

Snyk embeds Claude in its AI Security Platform and ships Evo — the first AppSec tool for prompt injection, MCP supply-chain attacks, and agent tool calls.

08 MAY 3 MIN READ Practitioner note security anthropic mcp agents

MCP security crisis — 200,000 servers exposed to arbitrary command execution

200,000+ MCP servers allow OS command execution via unsanitized STDIO; 36.7% are SSRF-vulnerable. CoSAI published a 12-category MCP threat taxonomy.

04 MAY 3 MIN READ Practitioner note mcp agents security research

Anthropic previews Mythos + Project Glasswing — autonomous cyber capability

Anthropic Red previewed Mythos, a frontier model that autonomously chains zero-days and writes exploits. Project Glasswing applies it defensively.

07 APR 3 MIN READ Practitioner note anthropic security research