🐂 牛哥精选

GitLab发布紧急安全更新 修复高危XSS与API拒绝服务漏洞

GitLab紧急修复四项高危漏洞，XSS与API拒绝服务风险需立即升级

Do Coding Agents Understand Least-Privilege Authorization?

探讨编码代理在安全部署中如何理解最小权限授权，确保任务权限最小化以降低安全风险。

arXiv:2605.14859v1 Announce Type: cross Abstract: As coding agents gain access to shells, repositories, and user files, least-privilege authorization …