Posts
Long-form posts on MCP security, agent best practices, and ecosystem analysis.
Claude Opus 4.8 Is Live: Dynamic Workflows, Effort Control, 3× Cheaper Fast Mode — What Changes for Claude Code Users
Anthropic shipped Claude Opus 4.8 on 2026-05-28. Headline numbers: SWE-bench Pro 69.2% (up from 64.3%), USAMO math 96.7% (up from 69.3%), GraphWalks 1M-token recall 68.1% (up from 40.3%). The bigger story is the new agentic primitives — Dynamic Workflows, explicit effort control, and a fast mode that's 2.5× faster and 3× cheaper. Here's the practical breakdown for anyone running Claude Code, Cursor, or an MCP-heavy stack.
2026-05-28
codexui-android: How a Codex 'Remote UI' npm Package Silently Stole 27k Devs' AI Tokens
A package called codexui-android sat clean on npm for a month, racked up 27,000 weekly downloads, then shipped an update that quietly siphoned every user's OpenAI Codex refresh token to sentry.anyclaw.store. The same author wrapped it in a Google Play app to bypass APK review. Here is the attack chain, the BrutalStrike connection, and what every Claude Code / Codex / Cursor user should do today.
2026-05-28
The Nx Console MCP Attack: How One VS Code Extension Stole GitHub's Tokens — and What It Means for Every Agent User
On 2026-05-18 a poisoned build of Nx Console disguised a credential stealer as a routine MCP setup task — siphoning GitHub tokens, AWS keys, Vault secrets, SSH keys, and Claude Code config from every developer who installed it. Two days later, the same tokens let attackers walk into GitHub's internal repos. Here is exactly what happened, why MCP-shaped attacks are now the standard playbook, and the concrete defenses every Claude Code / Cursor / Cline user should apply today.
2026-05-28