https://blog.rajpoot.dev/tags/security/ Recent content in Security on Manvendra Rajpoot https://blog.rajpoot.dev/img/personal/cover.png https://blog.rajpoot.dev/img/personal/cover.png Hugo en Manvendra Rajpoot Sun, 17 May 2026 17:50:46 +0530 https://blog.rajpoot.dev/cheatsheets/docker/06-security-cheatsheet/ Fri, 22 May 2026 06:50:00 +0530 https://blog.rajpoot.dev/cheatsheets/docker/06-security-cheatsheet/ Docker security cheatsheet — non-root, capabilities, secrets, scanning. https://blog.rajpoot.dev/cheatsheets/nginx/08-security-cheatsheet/ Sun, 24 May 2026 07:10:00 +0530 https://blog.rajpoot.dev/cheatsheets/nginx/08-security-cheatsheet/ Nginx security headers — CSP, HSTS, frame, content-type. https://blog.rajpoot.dev/cheatsheets/kubernetes/09-rbac-cheatsheet/ Sat, 23 May 2026 07:20:00 +0530 https://blog.rajpoot.dev/cheatsheets/kubernetes/09-rbac-cheatsheet/ Kubernetes RBAC — Roles, ClusterRoles, ServiceAccounts. https://blog.rajpoot.dev/cheatsheets/mongodb/13-security-cheatsheet/ Thu, 28 May 2026 08:00:00 +0530 https://blog.rajpoot.dev/cheatsheets/mongodb/13-security-cheatsheet/ MongoDB security — auth, roles, TLS, encryption. https://blog.rajpoot.dev/cheatsheets/kubernetes/14-security-cheatsheet/ Sat, 23 May 2026 08:10:00 +0530 https://blog.rajpoot.dev/cheatsheets/kubernetes/14-security-cheatsheet/ Kubernetes security — PSA, network policies, OPA Gatekeeper, image scan. https://blog.rajpoot.dev/cheatsheets/ai-llm/15-security-cheatsheet/ Tue, 26 May 2026 08:20:00 +0530 https://blog.rajpoot.dev/cheatsheets/ai-llm/15-security-cheatsheet/ LLM security — prompt injection, data leaks, jailbreaks. https://blog.rajpoot.dev/cheatsheets/linux/16-hardening-cheatsheet/ Mon, 25 May 2026 08:30:00 +0530 https://blog.rajpoot.dev/cheatsheets/linux/16-hardening-cheatsheet/ Linux hardening — SSH, firewall, fail2ban, kernel. https://blog.rajpoot.dev/posts/devops/secrets-rotation-2026/ Fri, 01 May 2026 06:30:00 +0530 https://blog.rajpoot.dev/posts/devops/secrets-rotation-2026/ How to rotate secrets in 2026 without breaking production — overlap windows, dual-secret support, automated rotation, and the patterns from compliance-mature teams. https://blog.rajpoot.dev/posts/devops/sbom-software-bill-of-materials-2026/ Fri, 01 May 2026 03:20:00 +0530 https://blog.rajpoot.dev/posts/devops/sbom-software-bill-of-materials-2026/ How to generate, store, and use SBOMs in 2026 — CycloneDX, SPDX, syft, grype, and the patterns from compliance-mature teams. https://blog.rajpoot.dev/posts/postgresql/postgres-row-level-security-2026/ Thu, 30 Apr 2026 22:10:00 +0530 https://blog.rajpoot.dev/posts/postgresql/postgres-row-level-security-2026/ Postgres row-level security in 2026 — policies, tenant isolation, performance, and the patterns that prevent cross-tenant leaks. https://blog.rajpoot.dev/posts/devops/secrets-management-vault-eso-2026/ Thu, 30 Apr 2026 17:50:00 +0530 https://blog.rajpoot.dev/posts/devops/secrets-management-vault-eso-2026/ Secrets management for production in 2026 — Vault, External Secrets Operator, AWS / GCP secret managers, rotation, and the patterns that keep secrets out of Git. https://blog.rajpoot.dev/posts/ai/sandboxed-code-execution-agents-e2b-modal-2026/ Thu, 30 Apr 2026 13:30:00 +0530 https://blog.rajpoot.dev/posts/ai/sandboxed-code-execution-agents-e2b-modal-2026/ How AI agents run code safely in 2026 — E2B, Modal, Daytona, microVMs, and the patterns for sandboxed execution with internet access. https://blog.rajpoot.dev/posts/ai/llm-security-prompt-injection-2026/ Thu, 30 Apr 2026 12:50:00 +0530 https://blog.rajpoot.dev/posts/ai/llm-security-prompt-injection-2026/ How to defend against LLM-specific attacks in 2026 — prompt injection, indirect injection, data exfiltration, jailbreaks, and the layered defenses that work. https://blog.rajpoot.dev/posts/backend/authentication-2026-passkeys-oauth-oidc/ Wed, 29 Apr 2026 09:30:00 +0530 https://blog.rajpoot.dev/posts/backend/authentication-2026-passkeys-oauth-oidc/ Modern authentication for backend developers in 2026 — passkeys (WebAuthn), OAuth 2.1, OIDC, sessions vs JWTs, and how to pick a stack for FastAPI, Django, Hono, and Next.js. https://blog.rajpoot.dev/posts/devops/software-supply-chain-security-sbom-slsa-sigstore/ Tue, 28 Apr 2026 18:10:00 +0530 https://blog.rajpoot.dev/posts/devops/software-supply-chain-security-sbom-slsa-sigstore/ Software supply chain security explained — SBOM (CycloneDX/SPDX), SLSA levels, signing builds with Sigstore, attestations, and how to wire the whole thing into your CI without theatre. https://blog.rajpoot.dev/posts/devops/linux-server-hardening-for-app-deployers/ Tue, 28 Apr 2026 15:35:00 +0530 https://blog.rajpoot.dev/posts/devops/linux-server-hardening-for-app-deployers/ A practical Linux hardening checklist for app developers deploying to a VPS — SSH, users, firewall, fail2ban, automatic updates, and the basics that stop 95% of attacks. https://blog.rajpoot.dev/posts/fastapi/jwt-authentication-in-fastapi/ Tue, 28 Apr 2026 13:50:00 +0530 https://blog.rajpoot.dev/posts/fastapi/jwt-authentication-in-fastapi/ Build secure JWT authentication in FastAPI from scratch — password hashing, token issuing, refresh tokens, dependency-injected current user, and the security pitfalls to avoid.