Something’s Missing I’ve been at RSAC 2026 this week [edit: well, last week but work and travel got in the way of posting], and in the numerous sessions, talks, and … Continue reading “The Unmonitored Layer”
Tagged As:
ai
The Real Cost of Vibe Coding: When to Stop Futzing (Part 3 of 3)
In part one of the blog series, I introduced Glyph Lefkowitz’s “Futzing Fraction” and discussed how vibe coding is likely inefficient across all skill levels of development tasks. In part … Continue reading “The Real Cost of Vibe Coding: When to Stop Futzing (Part 3 of 3)”
The Call Came…
Cybernews published an example of agentic AI acting like an insider threat with Replit’s AI tooling wiping a production database, ignoring a code-freeze, inventing user data, then lying about it … Continue reading “The Call Came…”
The Call Is Coming From Inside the Model
A breakdown of Anthropic’s agentic misalignment research and what it means for agentic AI in critical systems TL;DRAnthropic, one of the leading AI labs, just published a paper showing that … Continue reading “The Call Is Coming From Inside the Model”
Tokenization: yet another thing to worry about in your AI stack
Over the past few months, I’ve been knee-deep building an LLM-powered assistant with memory, long-term context, RAG, and the uncanny ability to break every time I so much as look … Continue reading “Tokenization: yet another thing to worry about in your AI stack”
So What?
Have you ever sat through a security briefing, heard the words, “This CVE has a critical CVSS score of 9.8!” and thought to yourself, “Okay, great… but what does that … Continue reading “So What?”
Secure the Vibe
Vibe coding is a rising trend in software development where programmers rely on intuition over established practices, documentation, and security checks. This approach, likened to improvisational jazz, has become popular in the era of generative AI tools that suggest code without thorough understanding, leading to insecure applications. Although it may appear efficient, vibe coding often results in bugs, security breaches, and technical debt, as foundational practices like testing and threat modeling are overlooked. Both development and security teams have fallen into similar traps, prioritizing speed over safeguard measures, necessitating a collaborative shift towards disciplined coding practices for better security outcomes.
The Real Cost of AI Isn’t Just the Price Tag
OpenAI’s rumored plan to charge $20,000 a month for “PhD-level” AI agents is making headlines, but the real concern isn’t the price—it’s the implications. This leak feels like a market … Continue reading “The Real Cost of AI Isn’t Just the Price Tag”
Playing with ChatGPT
Like everyone else with a browser, free time, and an interest in AI I’ve been playing with ChatGPT, an text-generating AI engine by OpenAI, the folks that created DALL-E, that … Continue reading “Playing with ChatGPT”