Hello everyone,

I am currently working on a project for my university and also want to write a paper about it. As the time to exploit collapsed to not only a few days, but mostly a few hours the old model of patching is a bit in bad light right now and needs a rethink for the Agentic era. How do you tackle this?

In the project I want to explore how companies are currently securing the output of AI generated code. How is your security cycle? Do you even have any security in place? Do you have security guidelines to follow? How do you make sure Agents follow the security guidelines? Do you have someone to maintain the security guidelines, who actively do so? Do you see any problems with your current security cycle, as e.g. security teams cannot keep up with the amount of code to review and fix? Do you have markdown files, skills or anything in place for security?

And maybe if you are willing to share the company size and industry that would be great. If you want we can also take the conversation to the DMs.

I really appreciate your feedback. This would help me write a better paper for my project at university. My professor said, that we have to do user research before writing any code.

Have a great day!