What is Agent-as-a-Service pentesting?

Agent-as-a-Service (AaaS) pentesting lets you chat with autonomous pentesting agents that scan your application on demand. Instead of waiting weeks for a manual engagement, you talk to specialized agents — pen-scout (recon and surface mapping), pen-recon (deeper enumeration), pen-triage (validates and prioritizes findings), pen-fixer (remediation guidance), and pen-compliance (OWASP/standards mapping). Findings are validated with proof-of-concept and re-test, not just flagged. You start with 150 free credits, no credit card.

What are credits and how do they work?

Credits are how you run agent scans. Each scan or agent action consumes credits based on its depth. New accounts get 150 free credits with no card required. After that you can buy one-time credit packs ($29, $79, or $199) for pay-as-you-go use, or subscribe to a monthly tier ($49, $149, or $399/mo) for continuous, on-demand pentesting. The agents pen-scout, pen-recon, pen-triage, pen-fixer and pen-compliance all draw from the same credit balance.

Yes. Every new account gets 150 free credits with no credit card required — enough to chat with the pentesting agents and run real scans against your app. There is also a free security headers scan at sable.somoswilab.com/free-scan and a sample report at sable.somoswilab.com/sample-report. The free tier runs on OpenRouter models so you can evaluate the autonomous agents before paying.

What is penetration testing for startups?

Penetration testing (pentesting) is a simulated cyberattack against your application to find security vulnerabilities before real attackers do. For startups, we focus on the issues that matter most at your stage: authentication flaws, data exposure, API security, and common mistakes in modern stacks like Next.js, Supabase, and Firebase.

How much does a pentest cost?

Traditional pentests cost $10,000-$50,000+. SableOffensive starts at $29 for a Pre-Launch Check covering OWASP Top 10 and secrets detection. Founder Shield ($79) adds IDOR testing, auth bypass, and a debrief call. Scale Secure ($199) is a full-scope assessment. Every plan includes a professional report with remediation steps.

How long does a security scan take?

Pre-Launch Check reports are delivered within 24-48 hours. Founder Shield and Scale Secure may take 2-3 business days depending on the complexity of your application.

What do I need to provide?

At minimum, just your application URL. For more comprehensive testing, we may ask for staging credentials, API documentation, or GitHub repository access. We sign NDAs for all engagements.

What is OWASP Top 10?

OWASP Top 10 is the industry standard list of the most critical web application security risks. It includes injection attacks, broken authentication, cross-site scripting (XSS), server-side request forgery (SSRF), and security misconfigurations. Every SableOffensive assessment tests against the full OWASP Top 10.

Do you test AI-generated code?

Yes. Code generated by AI tools like Cursor, GitHub Copilot, and v0 often contains subtle security issues: hardcoded secrets, missing input validation, insecure API patterns, and overly permissive access controls. We have specific testing procedures for AI-generated codebases.

How do you secure Supabase and Firebase apps?

For Supabase, we audit Row Level Security (RLS) policies, test for direct table access, and check for exposed service keys. For Firebase, we review security rules, test Firestore/RTDB access patterns, and check Cloud Functions for vulnerabilities.

What if you find zero vulnerabilities?

50% money back guarantee. If our scan finds zero security issues, you get half your money back.

Is there a free pentesting option?

Yes. SableOffensive offers a free security headers scan at sable.somoswilab.com/free-scan. It instantly checks your website for 8 critical security headers (HSTS, CSP, X-Frame-Options, and more) and gives you an A-F grade with copy-paste fixes. No signup or payment required.

Can I get a free vulnerability scan?

Our free security headers check scans your website instantly and grades your security posture. For a deeper free assessment, contact us — we occasionally offer complimentary scans for early-stage startups and open source projects.

Chrome 146 Zero-Days: The Skia and V8 Attack Surface, 2026 Edition

Browser engines are the most widely deployed attack surface in the world — and in 2026, they remain stubbornly difficult to harden. Google's emergency update for Chrome 146 patched two zero-days with confirmed in-the-wild exploitation: CVE-2026-3909, an out-of-bounds write in the Skia graphics library, and CVE-2026-3910, a type-confusion bug in V8's Maglev JIT compiler. Both carry a CVSS of 8.8. Both were discovered by Google's own Threat Analysis Group, the unit that tracks nation-state and advanced persistent threat actors.

We covered the immediate patch advisory earlier (Dos Zero-Days en Chrome con Exploits Activos). This piece takes the 2026-roundup angle: why do Skia and V8 keep producing critical vulnerabilities, what does the broader browser engine attack surface look like this year, and what defenses reduce real exposure for organizations?

The Two Vulnerabilities: What They Are and Why They're Dangerous

CVE-2026-3909 — Skia out-of-bounds write (CVSS 8.8). Skia is the 2D graphics engine Chrome uses to render everything on screen — text, images, SVG, CSS visual effects. An out-of-bounds write in Skia means an attacker can craft a malicious page (or an ad served through a legitimate site) that triggers the renderer to write data past the end of an allocated buffer. The write lands in adjacent memory, potentially overwriting control structures that redirect code execution. This class of bug — CWE-787 — is the single most common vulnerability type in the 2025 and 2026 CWE Top 25, and its persistence in graphics-heavy codebases like Skia reflects the fundamental difficulty of safe bounds-checking at high rendering throughput.

CVE-2026-3910 — V8 Maglev JIT type confusion (CVSS 8.8). V8 is Chrome's JavaScript engine; Maglev is its mid-tier optimizing JIT compiler, introduced to fill the performance gap between Sparkplug (fast, no optimization) and TurboFan (slow to compile, heavily optimized). The Phi untagging step in Maglev is where the compiler infers the runtime types of values at control-flow merge points and strips the tag bits for performance. When that inference is wrong — an attacker can craft JavaScript that makes the compiler believe a value is an integer when it is actually a pointer — you get type confusion. Type confusion in a JIT compiler is a well-understood pathway to arbitrary code execution within the sandbox, and it is the class of bug that has powered most V8 exploitation in the last four years.

What makes the combination notable is the attack chain potential. A Skia out-of-bounds write typically achieves code execution in the renderer process, which runs in a sandbox. Escaping that sandbox in modern Chrome requires a separate privilege-escalation primitive. A V8 JIT confusion can provide both the initial compromise and the sandbox escape if the two bugs can be chained. Google's Threat Analysis Group discovering both simultaneously raises the possibility that they were being used as a chain in targeted campaigns before discovery.

2026: The State of Browser Engine Security

Chrome is not uniquely vulnerable to this class of bug. Skia and V8 are Chromium components, which means Edge, Brave, Opera, Vivaldi, and every other Chromium-based browser shares the same attack surface. Firefox's SpiderMonkey and WebKit (Safari) have their own JIT engines with their own histories of type-confusion exploitation. The structural problem is not Chrome-specific — it is a property of high-performance browser engine design.

Modern browser engines face a fundamental tradeoff: they need to execute arbitrary code (JavaScript) and render arbitrary visual descriptions (HTML/CSS/SVG) at high throughput, in a constrained environment, where the input is controlled by potentially adversarial parties. Every optimization that improves throughput — JIT compilation, speculative type inference, ahead-of-time memory allocation for graphics operations — creates opportunities for exploitable edge cases.

Several trends are worth tracking in 2026:

Memory-safe rewrites are progressing but incomplete. Google's project to rewrite Chrome components in Rust has produced meaningful results in lower-level components, but Skia and the V8 JIT pipeline remain primarily C++. The engineering effort required to safely migrate a high-performance JIT compiler is substantial, and the timeline is measured in years, not months.
Sandbox escape remains the critical second step. Chrome's multi-process sandbox architecture means a renderer compromise alone is insufficient for full device access. The 2026 exploitation pattern — using two bugs to chain renderer compromise with sandbox escape — reflects attackers adapting to this architecture. Defender focus should be on detecting and disrupting the chain, not just individual stages.
V8 sandboxing is a live mitigation project. Google is actively working on V8 Sandbox, a hardware-assisted isolation layer for the JavaScript heap. This would raise the bar for converting V8 type confusion into arbitrary code execution significantly. It is not yet shipping in stable Chrome as a complete mitigation.
TAG attribution signals targeted exploitation. The Threat Analysis Group primarily tracks advanced persistent threats and nation-state actors. When TAG finds and reports zero-days, it typically means the bugs were being used in targeted campaigns against high-value individuals — journalists, executives, dissidents, government officials — not mass exploitation. The patch benefits everyone, but the original attack targets were likely specific.

What Organizations Should Actually Do

Patch Chrome. That is the non-negotiable first step. But patch management for browsers in enterprise environments is more complex than it sounds:

Verify the update is installed and the browser has been restarted. Chrome updates in the background, but the patch does not apply until the browser restarts. In environments where users keep Chrome open for days at a time, this creates a window. Enterprise deployments using Chrome Browser Cloud Management can verify version deployment across the fleet.
Chromium-based browsers need separate updates. Edge, Brave, and Opera share the vulnerable Skia and V8 codebase. Microsoft typically patches Edge quickly after Chromium updates. Brave is also fast. Opera has historically been slower. If your organization uses a Chromium-based browser other than Chrome or Edge, verify the patch timeline explicitly — do not assume it shipped simultaneously.
Content Security Policy reduces Skia exploit delivery surface. Skia exploits typically require rendering malicious visual content — SVG with crafted path geometry, CSS with specific filter combinations, WebGL operations. A strict Content Security Policy that limits the sources from which your web properties load content reduces the attack surface for web-delivered Skia exploits. This does not patch the vulnerability but limits the delivery vectors.
Site isolation limits blast radius. Chrome's Site Isolation feature (enabled by default in desktop Chrome) gives each site its own renderer process. This means a Skia compromise on malicious.example.com cannot directly read memory from your-bank.example.com in the same browser session. Verify Site Isolation is enabled — particularly in enterprise Chrome configurations where it is sometimes disabled for compatibility reasons.
Monitor for indicators of post-compromise browser activity. A successfully exploited browser vulnerability followed by a sandbox escape will typically result in a child process spawned from the browser's renderer or GPU process — something that is anomalous and detectable in endpoint telemetry. Watch for cmd.exe, powershell.exe, or shell processes spawned by chrome.exe child processes.

The Bigger Picture: Browser Bugs in 2026

The velocity of browser engine zero-day exploitation has increased over the past three years. Browsers are attractive targets for three reasons that are not going away: they run on virtually every device with network connectivity, they execute arbitrary code by design, and they are trusted entry points to authenticated sessions across every application category.

The defenses that matter most are not exotic: patch fast, verify patches are applied across the fleet, understand the Chromium-derived attack surface spans multiple browsers, and build endpoint detection that can identify post-exploitation behavior from a compromised browser process. The zero-days will keep coming — the question is how quickly they are patched and how quickly defenders can verify that patching has actually happened.

For the original emergency advisory and patch instructions, see our earlier coverage: Dos Zero-Days en Chrome con Exploits Activos: Actualiza Ahora. For Sable's browser security assessment methodology, see our engagement options.