Olivia
Online
DevArmor
@devarmorHQ
We automate threat modeling. AI-native. Dev-first. AppSec that keeps up with your shipping speed.
San Francisco
Joined August 2025
112 Following
14 Followers
64 Posts
@NightmareJS Good stuff! Thanks for sharing
@SaraDiscovers Start from console.log("Hello, World!");
@myselfshubhendu CTM on this table is the one that matters most and gets the least attention. most teams pick a methodology and run it once. the ones that actually work make it continuous, tied to how the architecture changes not how the calendar moves.
This is what we work on at DevArmor!
@SCAuditStudio @aviggiano @monad minimal prompts work when you're hunting known bug patterns. but for design-level flaws (broken access control, missing trust boundaries) the AI needs more context not less. it needs to understand the architecture. the prompt is basically the threat model.
@aviggiano @SCAuditStudio @monad @Fried_rice the threat modeling part is key. without it, AI agents just find the same implementation bugs scanners already catch. the design-level flaws (broken trust boundaries, missing auth paths) need business context that only a threat model provides. thats where the real signal is.
@marcobravoram @LinkedIn the rejected-alternatives section of the ADR is genuinely underrated. most threat models capture what you decided but not what you explicitly said no to.. that's usually where the real security reasoning lives. we think about this a lot at DevArmor.
Check out my latest article: 5 Practices for Threat Modeling at DevSecOps Speed https://t.co/GWhoTq9V4W via @LinkedIn
@Americanfort_io the attack didn't exploit a bug in the code. it exploited a gap in the design. no trust boundaries between what the agent received and what it could execute.. this is why we think threat modeling agents at design time isn't optional anymore.
@AndrewLarson17 @Americanfort_io this isnt an input validation failure. it's an architecture failure. the agent's trust model treated every input as instructions with full authority. no amount of input filtering fixes a design where the agent can't distinguish commands from data.
@nagarjuncreates @MarcelVelica Second that!
We are building the AI-native control plane for AppSec
Secure-by-design for the agentic era.
@alver1301 @dac_chain "quantum-proof" is a marketing property. not a security property. the right frame is exactly what you said: per-layer threat models with explicit assumptions about what holds today and what needs a migration path. most projects cant answer that honestly yet.
Check out our work!
We are concluding penetration tests on @SpursOfficial trophy cabinet firewall. Good news: threat modeling suggests the assets inside have been air-gapped from the rest of the #EPL since 1961,so data loss risk remains completely negligible
@D1Olu @Arsenal big congrats to @Arsenal on the title. naturally we pivoted our pentest to @SpursOfficial trophy cabinet firewall.. threat modeling suggests the assets inside have been air-gapped from the #EPL since 1961, so data loss risk remains completely negligible
@avisre @kiransing @just_adev @levelsio @TermiusHQ glad someone said threat modeling and not just 'more tests.' tests validate the code does what you told it to. threat modeling validates you told it the right thing. when AI writes the code that's the part that matters most, and its where we focus @devarmorHQ
@RealJohnnyTime Well said! 'what assumption failed' is the most underrated question in security. controls and signals are implementation fixes. the assumption is the design mistake, and thats where the real money is lost every time.
That's what we're trying to solve at DevArmor.
@studiojin_dev Check this blog post:
https://t.co/127ip0nzVm
@studiojin_dev the model dependence part is the real takeaway. rules give you structure but the ceiling is always how much context about the actual system the tool can work with.. curious how it handles business logic and auth flows vs code-level patterns.
We have a blog post about this:
Last Seen Users on Sotwe
Haider Al-Basrawi
Seen from Egypt
🏳️🌈🔞Gay Porn Videos🔞🏳️🌈
Seen from Turkey
Karaoğlan17
Seen from Turkey
Masti Khan
Seen from Brazil
Numan Jubran
Seen from United Kingdom
SejuAI 
Seen from Netherlands
zaryab khan
burak alioğlu
Seen from Germany
อ้วนน้อย
Seen from Thailand
shemale jadzia
Seen from United Kingdom
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers