Feel free to reach out if you wanna chat AI/ML security. Contact info on my website: sshussain.me
Hi! My name is Suha Sabi Hussain. I'm an AI/ML security engineer.
sshussain.me
September 12, 2025 at 12:10 AM
Feel free to reach out if you wanna chat AI/ML security. Contact info on my website: sshussain.me
It was wonderful to help AI/ML security at the company evolve from a summer internship project to an established practice. Not only did I get to work on impactful and interesting audits, research, and engineering projects, but I also got to learn from some truly brilliant people.
September 12, 2025 at 12:10 AM
It was wonderful to help AI/ML security at the company evolve from a summer internship project to an established practice. Not only did I get to work on impactful and interesting audits, research, and engineering projects, but I also got to learn from some truly brilliant people.
it delegates to the code execution agent via the orchestrator! delegation is done by the web surfing agent to the orchestrator then to the code execution agent. we should make that sentence less confusing! earlier in the post, mas hijacking is defined as prompt injection targeting MAS control flow.
August 18, 2025 at 4:35 AM
it delegates to the code execution agent via the orchestrator! delegation is done by the web surfing agent to the orchestrator then to the code execution agent. we should make that sentence less confusing! earlier in the post, mas hijacking is defined as prompt injection targeting MAS control flow.
Reposted by Suha
(someone used a carefully crafted branch name to inject a crypto miner into a popular Python package: github.com/ultralytics/...)
Discrepancy between what's in GitHub and what's been published to PyPI for v8.3.41 · Issue #18027 · ultralytics/ultralytics
Bug Code in the published wheel 8.3.41 is not what's in GitHub and appears to invoke mining. Users of ultralytics who install 8.3.41 will unknowingly execute an xmrig miner. Examining the file util...
github.com
December 6, 2024 at 3:28 AM
(someone used a carefully crafted branch name to inject a crypto miner into a popular Python package: github.com/ultralytics/...)
Reposted by Suha
Specifically, int.to_bytes and int.from_bytes default to big-endian, since py3.11. Previously, you had to explicitly specify which you wanted.
I wanted LE but forgot to specify, and my code failed in really non-obvious ways...
I wanted LE but forgot to specify, and my code failed in really non-obvious ways...
November 30, 2023 at 3:45 PM
Specifically, int.to_bytes and int.from_bytes default to big-endian, since py3.11. Previously, you had to explicitly specify which you wanted.
I wanted LE but forgot to specify, and my code failed in really non-obvious ways...
I wanted LE but forgot to specify, and my code failed in really non-obvious ways...