Remediation Ballet Is a Pas de Deux of Patch and Performance
AI-generated code promises quicker fixes for vulnerabilities, but ultimately developers and security teams must balance competing interests.
You May Also Enjoy
Agent Compromised by Agent To Deploy an Agent
Yesterday (Feb 17, 2026, 12:18AM ET) Cline released an advisory about an unauthorized npm publication. For 8 hours, anyone installing Cline CLI from their of...
Raptor Finds Root Cause of Cline’s Supply-Chain Compromise
Edit (2/19 2:30AM ET): This blog post was written during an ongoing investigation. It shows a messy research process. If you want to learn what happened wit...
First Public Confirmation of Threat Actors Targeting AI Systems
Over the past year I’ve been asking people the same question over and over again: when our AI systems are targeted, will you know?
Make Real Progress In Security From AI
I gave a talk at the AI Agent Security Summit by Zenity Labs on October 8th in San Francisco. I’ll post a blog version of that talk here shortly.