Thoughts on application security, AI-assisted testing, DevSecOps, and the gap between what vendors promise and what practitioners actually need.
Anthropic recently launched Claude Code Security — an AI-powered vulnerability scanner that can analyse your codebase, trace data flows across files, find bugs, and even propose patches. It represents a meaningful advance in how developers can get security insights earlier in the development process. But does a smart scanner replace an AppSec programme?
Read on LinkedIn →The last few weeks have been loud. Anthropic's research found thousands of unknown vulnerabilities in weeks. The hype cycle is in full swing. But before you rip out your SAST tooling and replace it with an AI model, there are three questions the conversation keeps skipping — and they matter more than the headlines.
Read on LinkedIn →