Writing

What I want you to read or look at right now. Below: everything pulled from the feeds, newest first.

01 Featured

• TRUST ME BRO is not a security control The trust boundary moved inside the model. Three zones, five layers of controls Anthropic ships before your prompt hits the API. You inherit the whole stack. Apr 2026
• DirePhish AI clones of your team running 100 simulated breaches under regulatory time-bounds. A distribution of how you actually behave when the binder goes out the window. Apr 2026
• securing-ralph-loop Security checks bolted into the Ralph coding-agent loop. Scan before commit, fix iteratively, escalate when stuck. The AI-for-security thesis, as code. Feb 2026

02 Recent

• [Claude 4.7] What actually blocks your cyber prompt: before the fact vs after the fact 1w ago
• Claude 4.7: Five Layers Blocking Cyber Attacks Before and After 1w ago
• BodySnatcher and the Missing Identity Layer 3mo ago
• Three Regulatory Philosophies, One Global AI Market 4mo ago
• Identity Crisis in AI Agents: Why Traditional IAM Is Breaking Down 6mo ago
• The $127M Algorithm: When Smart AI Goes Wrong 10mo ago
• Shadow Coding: what, so what, now what? 11mo ago
• Claude 4 Risk Assessment - For enterprise deployment 11mo ago
• Safe AI by Design: Insights from a System Prompt 11mo ago
• How to use safety benchmarks to assess technical and business risk 11mo ago
• Why We're Building an AI Governance and Security Platform 12mo ago

Source feeds: raxIT Labs, Substack, and recent activity on LinkedIn.