Conversation
Edited 3 months ago

Coding with LLMs and agents is a generational opportunity to throw the last decade's hard won lessons on secure coding and appsec out of the window. Definitely something that trust and safety teams, threat actors and possibly even your parents are seizing on with glee when they bypass all of your policies and procedures around installing new software, data governance, validated designs, code reviews, principles of least privilege and regular security assessments. Best of luck.

2
3
0
@timb_machine I'm even more concerned that we forget about basic maintainability too...
0
0
1

The thing I like about AI this week is all these folks showing up, prattling on about agentic AI identity like it's a new thing and that most agent based solutions aren't really just the web service model done really insecurely.

0
1
0