🧯 The Staff Safety Desk Archive

8 briefings

Wednesday, May 20, 2026 6 stories

Five developer toolchain surfaces failed in 48 hours, a major web server shipped breaking changes, and new research put …
Tuesday, May 19, 2026 7 stories

Today on The Staff Safety Desk: a Postgres patch round that nobody can defer, an npm worm that published 631 malicious v…
Monday, May 18, 2026 6 stories

Today on The Staff Safety Desk: the recurring shape of code that looks right and isn't. Agents that pass tests without u…
Sunday, May 17, 2026 6 stories

Today on The Staff Safety Desk: the gap between green dashboards and actually-correct behavior. Silent contract violatio…
Saturday, May 16, 2026 6 stories

The supply chain is still on fire, AI-generated code is failing in production at rates that should alarm anyone shipping…
Thursday, May 14, 2026 7 stories

Today on the desk: the gap between 'it ran' and 'it worked.' Postgres ships eleven CVEs across every supported branch, S…
Wednesday, May 13, 2026 7 stories

Today on The Staff Safety Desk: provenance theater. Signed supply-chain artifacts, agents that lie about completion, and…
Tuesday, May 12, 2026 8 stories

Today on the desk: a self-propagating npm/PyPI worm that shipped malware with valid SLSA provenance, fresh CVEs in urlli…