Tanya Janca on AI Slop, Vibe Coding, & the Future of AppSec
Tanya Janca discusses the impact of AI on application security during a conversation with Kate Holterhoff. She highlights the rapid pace of software development and the lack of security training for developers. Janca also addresses the challenges of integrating AI into existing security frameworks and the future of secure coding standards in Canada.
- ▪Tanya Janca describes the current state of application security as reckless, likening it to driving under the influence at high speeds.
- ▪AI is increasingly writing significant portions of production code, while many developers lack training in security code review.
- ▪Janca argues that the bug bounty economy is facing potential collapse and emphasizes the need for new security tools rather than retrofitting AI onto legacy systems.
Opening excerpt (first ~120 words) tap to expand
Conversations Tanya Janca on AI Slop, Vibe Coding, & the Future of AppSec RedMonk Video Share via Twitter Share via Facebook Share via Linkedin Share via Reddit Get more video from Redmonk, Subscribe! RedMonk Video RedMonk Tech Events Kate Holterhoff sits down with Tanya Janca, Secure Coding and AI Trainer at SheHacksPurple, to talk about what AI is doing to application security. Tanya’s take: we’re driving a car at three times the speed limit after 25 beers. AI writes huge portions of production code, most developers were never taught to review code for security in the first place, and release velocity keeps climbing.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at RedMonk.
Discussion
0 commentsMore from RedMonk
