The Academy

cmdev Academy

Your honest guide through the AI and cloud-security alphabet soup. SOC 2, NIS2, MCP, RAG, AIWPM, AI Act — the acronyms multiply weekly. We cut through the noise with concrete patterns, real production trade-offs, and the kind of advisory analysis that an auditor will sign off and a CISO will trust.

106 articles

Instructions Are Not a Boundary: A Least-Privilege Architecture for AI-Assisted Secure Code Review
AI Security

Instructions Are Not a Boundary: A Least-Privilege Architecture for AI-Assisted Secure Code Review

A security agent can read source. It can also install packages, compile binaries, run test suites, generate exploit payloads, modify files, start services, send network requests, and create or delete artifacts. The system prompt that tells it not to is not a security boundary — it is a polite request to a workload that does whatever its tools permit. This piece walks through the three-agent role split (discovery, verification, remediation), the technical scopes that enforce each role, the verification-by-disproof pattern that catches false positives, and the blocked-capabilities catalogue that every AI-assisted secure-code-review architecture needs before the first finding ships to a pull request.

Samuel A.18m