Case Study6 min read
How a Stripe engineer accidentally leaked auth code via Claude Code
A deep-dive into how one unprotected API call exposed token-signing logic to a third-party LLM, and what controls would have stopped it.
Free weekly newsletter
Stay ahead of AI security threats
Weekly insights on AI coding security, compliance, and developer protection. 5 minutes or less.
Join 847 security-conscious developers
Subscribe free
No spam. Unsubscribe anytime. Delivered every Tuesday.
What subscribers get
- Weekly: 1 case study of real AI-related IP exposure — with technical breakdown
- Weekly: 1 compliance tip for SOC2, HIPAA, or GDPR in AI workflows
- Monthly: Pretense changelog + new mutation patterns detected across the community
- Occasional: Early access to new features before public release
Recent issues
Compliance4 min read
SOC2 checklist: 5 questions your auditor will ask about AI tools
Auditors are now probing AI usage in engineering workflows. Here are the exact questions we have seen on Type II reports and how to answer them.
HIPAA8 min read
The HIPAA compliance guide for teams using AI coding assistants
PHI can appear in variable names, comments, and test fixtures. This guide shows how mutation protects you even when developers are not thinking about it.
94%
of readers say it saves them time on compliance research