Recursos

I Built a Production-Ready App in 20 Minutes with Claude Opus 4.6

My boss dropped a bombshell at 4:00 PM: build a secure, production-ready app from scratch by tomorrow morning. Instead of panicking, I put Claude Opus 4.6 to the test.

GPT-5.3 Codex vs. Claude Opus 4.6: Which AI Builds Apps Better?

Can OpenAI’s new GPT-5.3 Codex take the crown from Anthropic’s Opus 4.6? In this video, I put Codex to the test by rebuilding the same app I recently tackled with Opus 4.6.

The AI Security Crisis in Your Python Environment | Snyk

SAST vs. DAST vs. IAST vs. RASP: Understanding Application Security Testing Methods

Navigate the key differences between SAST, DAST, IAST, and RASP. This guide explains how to integrate these testing methods throughout the software development lifecycle to eliminate blind spots and block real-time attacks.

BOLA: The API Vulnerability Hiding in Plain Sight

Discover why Broken Object Level Authorization (BOLA) is the #1 OWASP API risk. Learn why traditional testing tools fail to test this "hidden" flaw properly and how Snyk’s AI-powered DAST provides the context needed to stop data breaches.

AppSec Governance Playbook: Building Guardrails for AI-Accelerated Development

Intercepting AI Risk: The Secure at Inception Workflow

In several videos reviewing models outputs for security with Snyk we point out how the dependencies they choose can sometimes be problematic (like with csurf).

GLM 4.7 vs. The Giants: Is This the New King of AI Coding?

Can a lesser-known model compete with the likes of OpenAI, Google, and Anthropic? In this video, we put Z.ai’s GLM 4.7 to the ultimate test.

Testing MiniMax M2.1 for AI Coding: The Results Might Surprise You

Can "lesser-known" AI models actually keep up with the giants like Google, OpenAI, and Anthropic? In today’s video, we put MiniMax M2.1 to the ultimate test: building a production-ready, secure Node.js note-taking application from a single prompt.

How AI Agents Still Break Security When Nothing Is Broken

AI agents can fail security without any bugs or vulnerabilities. Learn why agent behavior breaks trust boundaries and how threat modeling mitigates risk.

AI Agents Don’t Ask Permission: Building an AI-BOM for Visibility & Control

Watch this hands-on session to learn how to generate an AI-BOM and secure your AI-native apps.

4 Reasons Why Dynamic Security Testing Is Critical For All Your Assets

Attackers don't just target your crown jewels; they look for the weakest link in your entire application footprint. Limiting dynamic security testing to tier-one apps leaves dangerous blind spots across forgotten APIs and internal tools. Discover why universal DAST is critical for modern risk management and how it helps teams uncover hidden vulnerabilities before they become entry points for a breach.

Inside the 'clawdhub' Malicious Campaign: AI Agent Skills Drop Reverse Shells on OpenClaw Marketplace

Snyk security researchers have uncovered the clawdhub malicious campaign targeting the ClawHub AI marketplace with Trojanized skills that drop reverse shells. This sophisticated attack uses social engineering and obfuscated scripts to compromise hosts via AI agent capabilities on Windows and macOS. Learn how to identify these threats and secure your AI supply chain against evolving agentic workflow risks.

2026 State of Agentic AI Adoption

From SKILL.md to Shell Access in Three Lines of Markdown: Threat Modeling Agent Skills

Discover the lethal trifecta of AI agent security risks. Learn how malicious OpenClaw Skills and supply chain attacks like ClawHavoc put your data at risk. Threat model your AI agents and secure them with Snyk Evo.

From Shift Left to Secure at Inception: The Evolution of AppSec in the Age of AI

From First Prompt to Final Fix: How Snyk Secures AI-Driven Development

Your Clawdbot (OpenClaw) AI Assistant Has Shell Access and One Prompt Injection Away from Disaster

Is your personal AI assistant secure? Dive into the agentic security risks of Clawdbot: prompt injection, supply chain, and network exposure. Discover Snyk's tools to secure your agents.

DAST vs RASP: Understanding the Differences in Application Security

Understand the critical differences between DAST and RASP to build a robust application security strategy. This guide explores how DAST proactively identifies vulnerabilities before deployment while RASP provides real-time protection during runtime. Learn how to leverage both technologies to create a layered defense for your modern software stack.

Unifying Control for Agentic AI With Evo By Snyk

OWASP AI Exchange: a practical, “one-stop” guide to securing AI (not just GenAI)

The OWASP AI Exchange is a comprehensive open source guide for securing all AI systems, bridging the gap between traditional AppSec and modern machine learning threats. Use this practical resource to implement the G.U.A.R.D. starter plan and scale your AI security program with confidence.

Building and Operating an AI-BOM: Discover, Assess, and Govern Your AI Assets

A New Era for AI Coding? GPT 5.2 vs. Security Vulnerabilities

The End of Human-Speed Security: Defense in the Age of AI Agents

Discover why 97% of security leaders are calling for AI security mandates and how to bridge the gap between autonomous AI adoption and machine-speed defense.