{
  "schema_version": "1.0",
  "id": "archive:https://www.youtube.com/watch?v=7JgIS42mz7U",
  "slug": "the-ai-bugpocalypse-is-here-now-what-jack-cable-corridor-1y20rna",
  "url": "https://feed7.dev/p/the-ai-bugpocalypse-is-here-now-what-jack-cable-corridor-1y20rna",
  "title": "The AI bugpocalypse is here. Now what? - Jack Cable, Corridor",
  "why_included": "AI lowers the cost of both finding and introducing vulnerabilities. Put security review inside coding-agent workflows, while using safer languages and systemic fixes to eliminate recurring bug classes.",
  "summary": "Coding models are improving at vulnerability discovery while also generating more production code. The talk cites Android memory-safety flaws falling from about **75% in 2019** to roughly **30% in 2022** as new code shifted toward memory-safe languages.",
  "practical_implication": "Run security checks inside the agent workflow, before a pull request or merge, rather than relying only on later review. For recurring vulnerability classes, prefer architectural controls and **memory-safe languages** that remove the class over repeated one-off patches.",
  "agent_context": "Coding models are improving at vulnerability discovery while also generating more production code. The talk cites Android memory-safety flaws falling from about **75% in 2019** to roughly **30% in 2022** as new code shifted toward memory-safe languages.\n\nRun security checks inside the agent workflow, before a pull request or merge, rather than relying only on later review. For recurring vulnerability classes, prefer architectural controls and **memory-safe languages** that remove the class over repeated one-off patches.\n\nLanguage guarantees cover particular bug classes, not all security failures, and model-based review can introduce its own misses. Predictions about AI reviewing most shipped code within 6–12 months are the speaker's forecast, not an observed outcome.",
  "source": {
    "name": "YouTube",
    "url": "https://www.youtube.com/watch?v=7JgIS42mz7U",
    "published_at": null
  },
  "source_class": "video",
  "content_type": "Video",
  "layer": "agent",
  "domains": [
    "coding",
    "security"
  ],
  "topics": [
    "coding-agents",
    "harness-engineering",
    "agent-reliability"
  ],
  "verification": {
    "status": "source_linked",
    "label": "Source Linked",
    "method": "source_feed",
    "verified_at": null
  },
  "uncertainty": [
    "Language guarantees cover particular bug classes, not all security failures, and model-based review can introduce its own misses. Predictions about AI reviewing most shipped code within 6–12 months are the speaker's forecast, not an observed outcome."
  ],
  "lifecycle": "Current",
  "published_at": null,
  "modified_at": null,
  "supersedes": [],
  "expires_at": null,
  "formats": {
    "html": "https://feed7.dev/p/the-ai-bugpocalypse-is-here-now-what-jack-cable-corridor-1y20rna",
    "json": "https://feed7.dev/p/the-ai-bugpocalypse-is-here-now-what-jack-cable-corridor-1y20rna.json",
    "markdown": "https://feed7.dev/p/the-ai-bugpocalypse-is-here-now-what-jack-cable-corridor-1y20rna.md"
  }
}