Static application security testing (SAST) has been a backbone of enterprise AppSec programs for more than a decade. But two back-to-back launches from Anthropic and OpenAI are exposing a structural limitation in pattern-matching scanners that no tuning or rule pack… Read More »LLM Reasoning vs. SAST: How Anthropic and OpenAI Just Rewrote AppSec Detection
As AI coding assistants race into mainstream use, a stark statistic is coming into focus: only a fraction of the code they generate is truly safe. Endor Labs, an application security startup backed by more than $208 million in venture… Read More »Endor Labs’ AURI Targets the Security Gap in AI-Generated Code
Introduction: Why OWASP Top 10 Mistakes Still Matter Even in 2025, I still see teams tripping over the same OWASP Top 10 mistakes that were already well-known a decade ago. Modern frameworks, cloud platforms, and security tooling have raised the… Read More »Top 7 OWASP Top 10 Mistakes Engineers Still Make in 2025