kief.dev
← All posts

Security

Atomic Arch: How the AUR Attack Actually Worked, and How to Lock Your System Down

Atomic Arch: How the AUR Attack Actually Worked, and How to Lock Your System Down

A hands-on technical breakdown of the June 2026 AUR supply-chain attack — the real PKGBUILD payload chain, how to hunt for it on your box, and how to scan before you build.

Kief Studio · 4 min read
Security Headers Graded: We Checked 100 Developer Tool Sites

Security Headers Graded: We Checked 100 Developer Tool Sites

Over half the tools you use to build software scored a C or worse on their own security headers.

Kief Studio · 5 min read
OSV.dev: The Free Vulnerability Database You Should Be Using

OSV.dev: The Free Vulnerability Database You Should Be Using

NVD is drowning in backlog. OSV.dev aggregates 24 sources, tracks malicious packages, and doesn't need a government contract to stay alive.

Kief Studio · 5 min read