Research
Vulnerability research on AI-generated SaaS. Published after coordinated disclosure or after a 7-day non-response window with the vendor. Paid engagements are referenced only when the client has approved publication. New writeups roughly twice a month.
A MITM attacker on the network can silently execute arbitrary shell commands on a Clicky user's machine by forging a single AI tool call in the response stream. No sandbox, no approval prompt, no indication to the user. Plus six more findings, including undisclosed conversation surveillance to a third-party analytics platform.
Four findings, two of them High, sharing one architectural root cause: authorization enforced in the Next.js app layer, missing from the database tier and from several public API routes. An unauthenticated attacker can hijack a victim's Notion publishing pipeline without ever signing into Outrank.
Four findings on an AI assistant for live interviews and meetings — including SSRF via DNS rebinding, CORS null-origin with credentials, and a TOCTOU race on a quota-gated creation flow. Reported privately and fixed under coordinated disclosure. The detailed writeup is embargoed by agreement until approximately August 2026, when it will be republished in full on this site.
Want this for your product?
A hand-driven audit of your AI-coded SaaS, delivered in 7 days. Starting at $1,500. Find a High or Critical or you don't pay.