<?xml version="1.0" encoding="UTF-8"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9">
  <url>
    <loc>https://hackyjs.com/posts/from-code-commit-to-security-report-running-pentestcode-in-your-cicd-workflow</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-18T00:00:00.000Z</news:publication_date>
      <news:title>From Code Commit to Security Report: Running PentestCode in Your CI/CD Workflow</news:title>
      <news:keywords>cybersecurity, ci-cd, penetration-testing, devsecops</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/how-to-test-your-nodejs-api-like-an-external-attacker</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-18T00:00:00.000Z</news:publication_date>
      <news:title>How to Test Your Node.js API Like an External Attacker</news:title>
      <news:keywords>nodejs, api-security, black-box-testing, penetration-testing</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/what-the-uk-water-sector-can-teach-us-about-hardening-mongodb-deployments</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-18T00:00:00.000Z</news:publication_date>
      <news:title>What the UK Water Sector Can Teach Us About Hardening MongoDB Deployments</news:title>
      <news:keywords>mongodb, cybersecurity, critical-infrastructure, database-hardening, water-sector</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/how-splunks-path-traversal-and-info-disclosure-flaws-teach-developers-to-harden-file-operations-in-enterprise-apps</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T00:00:00.000Z</news:publication_date>
      <news:title>How Splunk&apos;s Path Traversal and Info Disclosure Flaws Teach Developers to Harden File Operations in Enterprise Apps</news:title>
      <news:keywords>splunk, path-traversal, information-disclosure, enterprise-security</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/inc-ransomwares-sonicwall-sma-exploit-developer-oriented-analysis-and-immediate-hardening-steps</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T00:00:00.000Z</news:publication_date>
      <news:title>Inc Ransomware’s SonicWall SMA Exploit: Developer-Oriented Analysis and Immediate Hardening Steps</news:title>
      <news:keywords>cybersecurity, ransomware, sonicwall, incident-response</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/testing-pentestcode-an-ai-agent-that-automates-penetration-testing-from-recon-to-exploit</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T00:00:00.000Z</news:publication_date>
      <news:title>Testing PentestCode: An AI Agent That Automates Penetration Testing from Recon to Exploit</news:title>
      <news:keywords>cybersecurity, penetration-testing, ai-agent, vulnerability-assessment</news:keywords>
    </news:news>
  </url>
  <url>
    <loc>https://hackyjs.com/posts/the-tp-link-camera-flaw-wasnt-an-exotic-attackit-was-a-missing-certificate-check</loc>
    <news:news>
      <news:publication>
        <news:name>Hacky JS</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-17T00:00:00.000Z</news:publication_date>
      <news:title>The TP-Link Camera Flaw Wasn&apos;t an Exotic Attack—It Was a Missing Certificate Check</news:title>
      <news:keywords>tp-link, cameras, mitm, certificate-validation, cybersecurity</news:keywords>
    </news:news>
  </url>
</urlset>
