Se você curte segurança ofensiva, CTFs ou simplesmente quer testar suas habilidades contra outros participantes da região, vale a pena dar uma olhada. A competição é online, individual e traz desafios baseados em situações reais de segurança.
Inscrições e mais detalhes:
https://fluidattacks.com/pt/ctf
Alguém daqui vai participar?
Curious if anyone else in AppSec is starting to feel this.
The security problem with AIgenerated code doesn’t seem to be just “more code.” It’s that AI creates endless slightly different versions of the same insecure patterns across repos, services, and teams.
So even when teams are actively fixing vulnerabilities, it can still feel like overall risk keeps growing faster than remediation.
A few years ago, fixing the root issue often meant meaningful risk reduction. Now it feels more like vulnerability whack-a-mole at scale.
I’m wondering if this eventually becomes a non-linear problem for AppSec teams, especially in larger orgs already struggling with AI-assisted development workflows. Are people here already seeing this happen internally, or do you think better tooling/processes will keep this manageable?