“I wasn’t sure if this is indeed a security risk”: Data-driven Understanding of Security Issue Reporting in GitHub Repositories of Open Source npm Packages
Authors: Rajdeep Ghosh, Shiladitya De, Mainack Mondal | Published: 2025-06-09
API Security
Auditing Black-Box LLM APIs with a Rank-Based Uniformity Test
Authors: Xiaoyuan Zhu, Yaowen Ye, Tianyi Qiu, Hanlin Zhu, Sijun Tan, Ajraf Mannan, Jonathan Michala, Raluca Ada Popa, Willie Neiswanger | Published: 2025-06-08 | Updated: 2025-06-11
Tarallo: Evading Behavioral Malware Detectors in the Problem Space
Authors: Gabriele Digregorio, Salvatore Maccarrone, Mario D'Onghia, Luigi Gallo, Michele Carminati, Mario Polino, Stefano Zanero | Published: 2025-06-03
JavaSith: A Client-Side Framework for Analyzing Potentially Malicious Extensions in Browsers, VS Code, and NPM Packages
Authors: Avihay Cohen | Published: 2025-05-27
JULI: Jailbreak Large Language Models by Self-Introspection
Authors: Jesson Wang, Zhanhao Hu, David Wagner | Published: 2025-05-17 | Updated: 2025-05-20
Unveiling the Landscape of LLM Deployment in the Wild: An Empirical Study
Authors: Xinyi Hou, Jiahao Han, Yanjie Zhao, Haoyu Wang | Published: 2025-05-05
Are You Getting What You Pay For? Auditing Model Substitution in LLM APIs
Authors: Will Cai, Tianneng Shi, Xuandong Zhao, Dawn Song | Published: 2025-04-07
Enterprise API Security and GDPR Compliance: Design and Implementation Perspective
Authors: Fatima Hussain, Rasheed Hussain, Brett Noye, Salah Sharieh | Published: 2019-09-17