
Want AI Agents That Don't Spill Secrets? Don't Give Them Secrets
Some time ago, I reviewed an AI agent implementation and found an API key in the system prompt. The...

Author profile
Software Engineer and Technical Author, i.e., Continuous Learner Current interests: #programming, #dotnet #javascript, #web, #developerexperience #identity #iam
Browse the latest writing surfaced through DevArt.

Some time ago, I reviewed an AI agent implementation and found an API key in the system prompt. The...

The redirect-based OAuth 2.0 flows assume one thing: the user has a browser on the same device where...

Most developers face the need for token exchange when their architecture outgrows its initial...

I remember being very confused when I first heard about an LLM's ability to request code execution....

Everyone seems to be building AI agents now. But ask ten developers what an AI agent actually is, and...

Since I published my overview of the Backend for Frontend (BFF) pattern, the questions I've received...

“The limits of my language are the limits of my world.” – Ludwig Wittgenstein We often hear that...

For some time now, I've been interested in FAPI from both an Identity practitioner's and a...

As the Model Context Protocol (MCP) gains traction, the transition from "localhost" experimentation...

OAuth 2.0 has long been the cornerstone of modern authorization. It is a consolidated technology that...

Someone: "What’s your job?" Me: "I'm a developer advocate." Someone: "Oh, cool! Like... what do you...

I was looking at results of the Stackoverflow Developer Survey 2025, and one aspect caught my...

I'm not an expert desktop and mobile developer. My experience in this field is from a while ago,...

Dear Blazor, I met you when you were still in your infancy. I started playing with you when you could...

Since its first official release in .NET 3.0, Blazor has made a solemn promise to .NET developers:...

You may have heard that .NET 9.0 brings Pushed Authorization Requests (PAR) support in ASP.NET Core....

Does dealing with tokens eliminate the need for cookie-based sessions? You will find plenty of...

If you are a .NET developer and have been using Auth0 by Okta's authentication and authorization...

When I was a kid, my grandfather used to tell me about his wartime adventures. He served in both...

Ten rules that guides you to become an extreme functional developer

A defensive argument on the alleged oddities of JavaScript, one of the most common and misunderstood programming languages

The class construct is very handy, but it may lead to serious misconceptions about the Object-Oriented nature of JavaScript.
Advertisement