Dan Kennedy    

This AI stuff narrative with respect to the stock market is getting so dumb...

https://seekingalpha.com/news/4554814-cybersecurity-stocks-fall-after-anthropic-unveils-claude-code-security

None of those companies are doing what Claude Code Security is trying to accomplish. The public companies that do AST/SCA have it as a small part of their offering. The others are all private (PE, VC).

Even if you could somehow weave some 'there will be less firefighting if code is perfect' fantasy, it falls down immediately when you consider the significant percentage of security incidents that don't start with a code vulnerability.

Feb 21 at 3:21amWeb
Show threadChester Wisniewski 🇨🇦Feb 21
@danielkennedy74 Not to mention the amount of vulnerabilities being introduced by AI far exceeds any bugs being closed.
Show threadDan Kennedy    Feb 21

@chetwisniewski Absolutely, and interestingly they're adding different classifications of vulnerabilities in volume than human code authors do.

In other words, an exponentially larger pile of slightly different shit, pardon my french, for app sec practitioners to deal with.