The AISafe Blog
March 26, 2026
CVE-2026-29772: Memory DoS in Astro Server Islands
A single POST request can exhaust your server's memory. The vulnerable endpoint is registered by default, even if you don't use Server Islands.
March 16, 2026
"Please perform a comprehensive security audit" - and why it doesn't work
How Claude Code or Codex won't secure your application, and why AISafe found 7 CVEs in a file hosting app where they couldn't.