Tanya Janca | SheHacksPurple 
What are you biggest concerns for Application Security next year? Tell me everything!
Danny 
@SheHacksPurple Your your biggest congest?
@deliverance oh man. Sorry
FennixThe proliferation of AI coding "assistants" is reintroducing the few somewhat solved vulnerability classes. We have a hard enough time with ../ -- we don't need to bring back SQL injection en masse.
Importantly, newer memory safe languages may be harmed by virtue of being less represented leading to, roughly: "I'm just less productive in Rust than C because my AI assistant can't help me as much".
Graham Sutherland / Polynomial@SheHacksPurple having to put up with seeing people barrel forward into pointlessly using generative technologies despite them apparently understanding the negative impacts and just ignoring them anyway.
Henrik Kramselund - kramse 🍉@SheHacksPurple that the current trend continues
Newcomers learn to program in the same languages, make the same mistakes, ever increasing software landscapes
Having the exact same problems as the Morris worm, some 36 years ago
2024 has seen SQL injections ian.sh/tsa, soooo many path injections, security companies that SHOULD know better pump out extremely bad code. Fortinet lol , Crowd strike, Microsoft RDP 9.8 CVSS score every hmm 5 years
Software was a mistake perhaps, happy new year
@kramse sometimes I feel that too. 💔
Raphael@SheHacksPurple Hard to spot hallucinations included in production code. *looks sideways at OP image*
@OmegaPolice it's terrible. I'm making the rest myself
@SheHacksPurple Is what everyone says after a year with code-gen? 😬😉