Blog

Insights, tutorials, and best practices for secure development

owaspweb-securitydevelopers+2 more

Cryptographic Failures: OWASP Top 10 (2026)

Learn what cryptographic failures are, why they expose sensitive data, and how to avoid weak encryption in your apps.

Jan 27, 20262 min read

owaspweb-securitydevelopers+2 more

Vulnerable and Outdated Components: OWASP Top 10 (2026)

Outdated libraries like Log4j caused massive breaches. Learn how to protect your app from vulnerable components.

Jan 27, 20264 min read

ai-securityemergentgithub+2 more

How to Run a 5-Minute Security Audit on Your Emergent App (2026)

Learn how to run a free five-minute security audit on your Emergent project using Rafter. Secure your AI-generated code, fix vulnerabilities fast, and ship safely.

Jan 27, 20267 min read

securityai-securitydevelopment+2 more

Vibe Coding Is Great — Until It Isn't: Why Security Matters

Vibe coding makes building faster than ever — but it comes with risks. Learn why security can't be an afterthought, and how Rafter keeps builders safe.

Jan 27, 202615 min read

ai-securityjailbreaksllm-security+2 more

Real-World AI Jailbreaks: How Innocent Prompts Become Exploits

Jailbreak vulnerabilities are turning innocent prompts into security exploits. Explore real-world AI jailbreak examples, their techniques, and how to defend your stack.

Jan 26, 20267 min read

ai-securityllm-securityprompt-injection+2 more

AI Builder Security: 7 Attack Surfaces You Need to Know (2026)

AI app security isn't like traditional web security. Learn the 7 new attack surfaces introduced by LLMs, agents, and vector DBs—and how to defend against them.

Jan 26, 20269 min read

api-keysweb-securitydevelopers+2 more

Stripe API Keys: Test vs Live and Secure Use

Learn the difference between Stripe test and live API keys, why security matters, and best practices to keep your payment integration safe.

Jan 26, 20265 min read

owaspweb-securitydevelopers+2 more

Broken Access Control: OWASP Top 10 (2026)

Learn what Broken Access Control is, why it's #1 on the OWASP Top 10, and how to prevent authorization failures in your web apps.

Jan 26, 20264 min read

owaspweb-securitydevelopers+2 more

SSRF Attacks: OWASP Top 10 (2026)

SSRF lets attackers trick servers into making internal requests. Learn how SSRF works and how to prevent it.

Jan 26, 20265 min read

ai-securitybolt-newgithub+2 more

Run a 5-Minute Security Audit on Your Bolt.new App (2026)

Learn how to run a free 5-minute security audit on your Bolt.new project using Rafter. Secure your AI-generated code, fix vulnerabilities fast, and ship safely.

Jan 26, 20266 min read

testingvibe-codingai-security+3 more

How to Thoroughly Test Your Vibe-Coded App

Vibe coding ships fast, but testing often gets skipped. Learn how to comprehensively test AI-generated code from security to functionality, ensuring production quality without killing your momentum.

Jan 26, 202616 min read

Showing 181–191 of 191 posts