Activity
Timeline of blog posts, project updates, trending content, and milestones.
53 activities • Last updated Mar 1, 2026
Try: tag:typescript source:blog -github
53 of 53 activities
New /open-source page showcasing all published npm packages in the @dcyfr/ai ecosystem.
New /ai landing page covering the full framework — plugin architecture, multi-provider support, delegation, CLI, RAG, and code-gen.
Plugin marketplace with trust scoring, audit tracking, TLP classification, and sandbox isolation now live.
Eight adversarial security scenario mitigations (CS2–CS10) shipped: HMAC identity verification, TLP clearance enforcement, rate limiting, content policy scanning, chain depth guards, and reputation-gated access.
Plugin catalog launched with trust scoring engine, audit trail, TLP classification, Docker sandbox isolation, and automated CVE scanning.
Introducing RIVET: a systematic framework for enhancing blog content with 8 interactive components. Real implementation data from 4 blog posts with 181 component instances, 97 passing tests, and measurable engagement improvements.
Real-time monitoring via Axiom — request traces, Web Vitals, delegation events, and automation logs all stream to structured datasets.
Delegation framework with reputation engine, SLA contracts, TLP clearance enforcement, and 8 security scenario mitigations shipped to npm.
Code generation toolkit for structured TypeScript, tests, and documentation scaffolding published to npm.
On January 13, 2026, Node.js released security patches for 8 vulnerabilities (3 HIGH, 4 MEDIUM, 1 LOW) affecting all active release lines. This post breaks down each CVE, explains who is affected, and provides actionable remediation guidance.
OWASP's first Top 10 for Agentic Applications (2026): Learn the 10 critical security risks facing autonomous AI systems—from goal hijacking to rogue agents. Expert analysis with real-world CVEs and mitigation strategies.
Implement event-driven architecture with Inngest for instant API responses, automatic retries, and production-grade background processing. Real code from a live portfolio.
CVE-2025-55182 (React2Shell) is a critical RCE vulnerability in React Server Components under active exploitation since December 3, 2025 (within hours of disclosure). This post explores the vulnerability, confirmed botnet integration, attack patterns, detection methods, and why upgrading is essential.
RAG library for semantic search and document retrieval with vector store integrations published to npm.
CLI tools for AI workflows: agent scaffolding, plugin management, delegation monitoring, and workspace automation published to npm.