/1 🚨 mega-thread on exploiting MCP servers via prompt injection, buckle up 👇

/16 Quick security checklist if you got MCP servers: ✅ Audit EVERY server you install (yes, really read the code) ✅ Run them in Docker containers minimum ✅ Never trust user input, even through an LLM ✅ Disable tools you don't actively use ✅ Monitor for suspicious calls

/17 For developers building MCP servers: STOP USING os.system() STOP TRUSTING FILE PATHS STOP FETCHING ARBITRARY URLS START USING PARAMETER VALIDATION START THINKING LIKE AN ATTACKER This isn't rocket science. It's Security 101.

In the next version of Bun `Bun.secrets` makes it easy for CLI tools to securely store credentials using the operating system instead of plaintext config files

Who grabs GOTY this year? 😮

Good morning, Twitter. How has your week been so far?

It's fun going back and completing old Advent of Cybers on TryHackMe, 2019, and now 2020 is done. 🔥 Onward to completing Advent of Cyber 3, 2021. 👍

In case you missed one of the other Warp and OpenAI livestreams, today is another. 👏 The stream will demo GPT-5's capabilities and more. A promo code for Warp is shared at the end of the event, or use mine for $5 off the first month of Warp PRO. THINKVERSEPRO

This opens up so many possibilities! 🔥 Like using 1Pass to dynamically add API tokens when starting an MCP server in Warp. Thanks for the awesome tip Brian Morrison II! ❤️

Pest v4 is here — now with browser testing! ✨ Browser tests that feel like unit tests: Laravel-ready, Playwright-powered, parallel-fast, with smoke & visual regression built in.

Morning Twitter! Happy Thursday, almost time for the weekend. ☁️

Looking for a new challenge? 💼 GameBoost is hiring a Fullstack Laravel Developer. Dive into an exciting role and work with a passionate team! Apply now: larajobs.com/job/3688 #laravel

Success isn’t magic. 🪄 It’s a process. That’s how we help clients hit their goals; every time. Just launched a page that shows exactly how it works. Click the link below 👇

🚨 THIS WEEKEND! Certificates.dev’s Official Vue.js Free Weekend is LIVE August 23–24! Get 48 hours of FREE access to the Vue.js Mid-Level Developer Certification Training, endorsed by Evan You. What’s in it? 💻 Real-world Vue 3 challenges 🧠 Guides on Composition API, Vue