Google bad ux. And you'll get your results in Comic Sans. Try it image
It is a lot easier to celebrate a turn towards dictatorship when you are untethered to historical knowledge. No amount of centralized power delivers a society with true personal freedom in the long run. History shows that even when dictatorships perform 'well' on some factors, especially in the short term, they send people into a freedom-robbing labyrinth. Do you care about personal liberty? Because in the long run with dictatorships you will lose on having a society that supports freedom, personal rights and liberties and decentralization of knowledge and innovation. Because dictatorships concentrate power without balance. Over time as inequalities & unfairness become severe... the rule gets more brittle. And dictators have to give more favors to the people that help them stay in power. Like economic favors. People with ambition then need to play into the system and help prop up the dictator if they want to keep their resources. Even then they are vulnerable to having everything taken. And for anyone that dares point out increasingly obvious flaws? Well, most dictatorships invariably slide into repression. People with new, better ideas that also happen to challenge the dictators entrenched interests? Or those of the dictators necessary economic allies? Family members? Point out corruption? Co-opted or cut down. Fueled by massive surveillance. And the threat of violence. Because self-censorship scales better than physical coercion on each person. People see opportunity for personal advantage. Some become informers. Some delight in the cruelty of seeing people they dislike arbitrarily punished. And when the strong leader dies? The society can be incredibly unstable as it carries the weight of so many injustices, so many lies. And for the system to persist? More repression needed.
Vibecoding is super interesting. And powerful. Coding syntax is getting better. But secure coding isn't keeping pace. image In a test of 100 coding models, 45% of them introduced a serious vulnerability. For example, in 86% of tests, code wasn't secured against Cross-Site Scripting. NOW-TERM IMPLICATIONS This has big implications. Sure, there are the YOLOcoders that ship whole vibecoded apps without thinking about security. Or code review. Some percentage of their users will get rekt. If those projects get near high risk users, they are sprinkling knives in the weeds with potential for harm. BUT BIGGER MODELS = BETTER? Interestingly, even big fat models aren't massively better with security. image S'EVERYWHERE My other worry? Vibecoding without security check steps is happening in existing projects / platforms etc. Even when people say they are coding. Sometimes they be vibecoding. This sort of thing has already come to tools you use, including to handle your funds & privacy. Sure secure code writing & review has never been anything near universal, but the scale and speed of new code creation that #vibecoding enables is new. VULNERABILITY DISCOVERY...ALSO ACCELERATING ICYMI, vulnerability DISCOVERY is also accelerating a lot faster than secure code creation... Whole industries are spinning up, including lots of offensive projects. ME? I #VIBECODE I love the change in how I create with code. But I think we are in for some really rough times, and the least informed parties are gonna be users. As ever. image In the longer run this problem space also seems to offer paths for AI-driven improvement in secure code creation. But since not everything is accelerating at the same pace, the deltas = harm. Sauce:
Veracode
We Asked 100+ AI Models to Write Code. Here’s How Many Failed Security Tests. | Veracode
Application Security for the AI Era | Veracode