https://sentinel-blog.cherrypod.org/tags/security/Recent content in Security on Sentinelhttps://sentinel-blog.cherrypod.org/images/social-preview.pnghttps://sentinel-blog.cherrypod.org/images/social-preview.pngHugo -- 0.147.0en-gbSun, 15 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/46-security-audit/Sun, 15 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/46-security-audit/A systematic audit of every API endpoint, middleware layer, and frontend component. Seventy-eight findings. Some embarrassing. All fixable.https://sentinel-blog.cherrypod.org/posts/45-multi-user/Sat, 14 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/45-multi-user/Sentinel was built for one person. Making it work for multiple users meant rethinking auth, isolation, and how the system tracks who’s who.https://sentinel-blog.cherrypod.org/posts/37-trust-laundering/Fri, 06 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/37-trust-laundering/The injection benchmark found 11 exploits. All shared the same root cause — files in the workspace inherited trusted status regardless of who put them there.https://sentinel-blog.cherrypod.org/posts/36-the-injection-benchmark/Thu, 05 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/36-the-injection-benchmark/A custom-built injection benchmark with real email, real calendars, real web pages. No simulated backends. 130 tests designed to break the trust architecture.https://sentinel-blog.cherrypod.org/posts/35-the-stress-test/Wed, 04 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/35-the-stress-test/38 hours, 1,588 probes, zero human intervention. The first comprehensive validation with everything deployed.https://sentinel-blog.cherrypod.org/posts/34-tightening-the-screws/Tue, 03 Feb 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/34-tightening-the-screws/The features were built. Now came the hardening — FP reduction, credential scanner expansion, metadata enrichment, and 600 new tests before the big run.https://sentinel-blog.cherrypod.org/posts/30-multi-user/Fri, 30 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/30-multi-user/JWT authentication, per-user trust levels, encrypted credentials, and proof that two users can’t see each other’s data.https://sentinel-blog.cherrypod.org/posts/28-bug-hunt-three/Wed, 28 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/28-bug-hunt-three/The third full security audit. 13 batches of fixes, from API hardening to dead code removal.https://sentinel-blog.cherrypod.org/posts/27-hardening-the-database/Tue, 27 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/27-hardening-the-database/Row-level security, role separation, and a red team that tried SQL injection, LISTEN/NOTIFY attacks, and privilege escalation through PL/pgSQL.https://sentinel-blog.cherrypod.org/posts/21-the-second-audit/Wed, 21 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/21-the-second-audit/199 findings across 7 units. 19 fix batches. 7 systemic improvements. The most thorough review the codebase has ever had.https://sentinel-blog.cherrypod.org/posts/18-the-false-positive-problem/Sun, 18 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/18-the-false-positive-problem/Without a human to override scanners, false positives become functional failures. Risk decay was the fix.https://sentinel-blog.cherrypod.org/posts/16-the-sandbox-wasnt-real/Fri, 16 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/16-the-sandbox-wasnt-real/Every sandbox field was snake_case. Podman’s API requires PascalCase. HTTP 201 Created. Zero containment.https://sentinel-blog.cherrypod.org/posts/15-the-red-team/Thu, 15 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/15-the-red-team/Four attack scenarios, including a simulated compromised planner. Six clean runs before trusting it.https://sentinel-blog.cherrypod.org/posts/12-the-trust-ladder/Mon, 12 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/12-the-trust-ladder/Five trust levels, from full human approval to autonomous execution. Each one its own project.https://sentinel-blog.cherrypod.org/posts/10-the-sandbox/Sat, 10 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/10-the-sandbox/Every shell command runs in a disposable container. No state leaks, no network, no capabilities. Or so I thought.https://sentinel-blog.cherrypod.org/posts/07-the-bug-hunt/Wed, 07 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/07-the-bug-hunt/99 findings from a systematic security audit of my own code. Zero critical — but 16 high-severity.https://sentinel-blog.cherrypod.org/posts/05-three-out-of-five/Mon, 05 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/05-three-out-of-five/A security system that scores 3/5 on security is failing. The score became a to-do list.https://sentinel-blog.cherrypod.org/posts/03-why-sentinel-exists/Sat, 03 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/03-why-sentinel-exists/From a custom PC build to containers, local LLMs, and the paper that started it all — CaMeL.https://sentinel-blog.cherrypod.org/posts/01-the-privacy-panic/Thu, 01 Jan 2026 00:00:00 +0000https://sentinel-blog.cherrypod.org/posts/01-the-privacy-panic/How a Google Maps feature turned a close protection worker into a privacy obsessive — and laid the foundation for everything that came after.