Curious if anyone else in AppSec is starting to feel this.
The security problem with AIgenerated code doesn’t seem to be just “more code.” It’s that AI creates endless slightly different versions of the same insecure patterns across repos, services, and teams.
So even when teams are actively fixing vulnerabilities, it can still feel like overall risk keeps growing faster than remediation.
A few years ago, fixing the root issue often meant meaningful risk reduction. Now it feels more like vulnerability whack-a-mole at scale.
I’m wondering if this eventually becomes a non-linear problem for AppSec teams, especially in larger orgs already struggling with AI-assisted development workflows. Are people here already seeing this happen internally, or do you think better tooling/processes will keep this manageable?