Beware of PII in Testing Data: The Security Iceberg and Where PII Actually Hides
Using 'production-similar' data in pre-production is a major security risk. Learn why traditional masking fails, where hidden PII hides, and how to fix it.
Posts about security
Browse 11 posts in this category
Fixing 403 auth errors when you replay traffic
Replay an authenticated flow and the protected calls fail with 403. Here is how proxymock recommendations fix the expired bearer token in one click.
We won't train on your data is not a security architecture
MSA clauses and contractual guarantees aren't an architecture. If your production traffic leaves your cloud, you're trusting a policy, not a system.
What the Warp Terminal Sends Home
We recorded Warp traffic to see what gets sent back to the home base. Spoiler: It's everything.
Production Data Access for Developers: RBAC and DLP
RBAC and DLP let developers access production data safely—without configuration drift or PII exposure. Here's how to design it right.
DLP, Traffic Replay, and the Missing Link to Software Quality
DLP applied to production traffic enables safe observability and realistic traffic replay, closing the gap between testing and production for faster.
How AI Coding Is Breaking Synthetic Data Generation
AI codingagents are accelerating the breakdown of synthetic data generation approaches.
Why Your Company Will Be Running OpenClaw Next Year
OpenClaw is the new model for AI agents in the enterprise. Here's why it's a security nightmare and who's building the governed version.
The PII Testing Dilemma
Software is hard to test when production data contains PII and AI systems are causing an explosion in bugs.