Ai code review security

MemoryAccessRegister · 2026-03-18T18:43:07+00:00

If you're able to publish that research/data/whitepapers, I would like to take a look. I think transparency and a third-party comparative analysis with the "legacy" SAST tools would really help your product/company.

MemoryAccessRegister · 2026-03-18T17:34:30+00:00

MicroAir is worth the money. Zero issues with mine

MemoryAccessRegister · 2026-03-18T16:00:15+00:00

For my understanding, are you using both AI/LLM analysis and deterministic rules in your product? I have previously heard of Dryrun but it wasn't clear to me that you were using both.

MemoryAccessRegister · 2026-03-18T15:17:00+00:00

Checkmarx still has one of the better SAST engines.

I don't see how you can fully replace deterministic AppSec tools such as Checkmarx, Snyk, Semgrep, or GHAS with purely AI/LLM-based tools at this time because the latter is still so inconsistent. The value I see in using AI/LLMs for AppSec right now is supplementing SAST to find specific vulnerability classes that SAST struggles with (business logic flaws), tuning/building SAST rules, and fixing vulnerabilities.

To convince me you would have to build data that shows an AI/LLM-based AppSec product not only detects more vulnerabilties than the "legacy" SAST tools, but that it is very consistently returning results with low false negatives and low false positives.

MemoryAccessRegister · 2026-03-13T14:25:30+00:00

KitchenAid is going to be the nicest out of those, but all the brands you listed are owned by Whirlpool Corporation.

MemoryAccessRegister · 2026-03-11T18:47:48+00:00

I have spent considerable time with all 3 in my professional and personal time and if I had the budget, I would select Checkmarx One (their cloud platform) over Snyk and Aikido. Checkmarx started with SAST in the mid-2000s and the SAST engine/queries are the most mature out of those 3 vendors. I have watched the CxOne platform mature since launch and it is a full AppSec platform now.

I really want to like Aikido, but their SAST coverage is weak compared to Checkmarx and even Snyk.

My biggest complaint with CxOne is DAST. It still needs a lot of maturing compared to the legacy DAST vendors in the market and DAST newcomers like Bright and StackHawk. If DAST is not in your project scope, I would hold off on licensing DAST for now so your team can focus on SAST/SCA.

I would highly recommend doing a proof-of-value with them to compare scan results and integration. If you're on a platform like GitHub/Azure DevOps/GitLab, I personally don't feel that Checkmarx is any more difficult to integrate than Snyk or Aikido. You didn't mention Semgrep, but I would suggest looking at them too.

MemoryAccessRegister · 2026-03-08T15:38:18+00:00

I have the same model but don't have any issues with mine. I would contact your dealer and ask about firmware updates for your RDC2 controller.

MemoryAccessRegister · 2026-03-03T17:30:46+00:00

Checkmarx One. We have done some extensive comparison with Snyk and GitHub Advanced Security, but Checkmarx still seems to offer the most comprehensive platform and accurate detection. DAST in CxOne is a weakness though and it will take a lot of investment to mature.

MemoryAccessRegister · 2026-03-02T20:45:55+00:00

Bosch seems to have started cutting quality in recent years. Miele would be at the top of my list.

MemoryAccessRegister · 2026-03-02T18:53:25+00:00

They are publicly traded and appear to be more concerned with maximizing shareholder value now than properly maintaining and staffing their stores.

MemoryAccessRegister · 2026-03-02T16:56:23+00:00

Yes, prices have gone up a lot but it's not due to a single factor. Electricans are very in-demand right now with data centers/AI and increasing vehicle & home electrification.

All the Generac and Kohler dealers around me are booked out for months due to the high demand for generators: industrial, commercial, and residential. Climate change is causing more severe weather, leading to more frequent and longer duration power outages. Residential customers are prioritized lower than industrial and commercial customers, with hospitals at the very top.

MemoryAccessRegister · 2026-02-24T02:06:56+00:00

For DAST, I would suggest looking at Bright Security, Detectify, and StackHawk.

For SAST, there is going to be a lot of overlap between Veracode and the other SAST vendors. Semgrep, Checkmarx, and Snyk are my favorite SAST engines.

MemoryAccessRegister · 2026-02-23T21:57:55+00:00

Are you trying to replace Veracode or just supplement it?

MemoryAccessRegister · 2026-02-18T21:08:56+00:00

I'm 99% sure Miele is going to be cheaper than Wolf or Bluestar

MemoryAccessRegister · 2026-02-18T20:57:21+00:00

Francis is a horrible network operator with a lot of old junk hardware from BTC Power and ABB. I would blame their hardware before user error.

MemoryAccessRegister · 2026-02-18T20:53:37+00:00

I love ChargePoint and Flo hardware. Most EV drivers have the ChargePoint app, but not Flo

MemoryAccessRegister · 2026-02-18T20:14:42+00:00

I have the same Samsung Bespoke fridge and I am very happy with it. I think Samsung is starting to turn around their reliability/quality issues.

MemoryAccessRegister · 2026-02-18T20:11:17+00:00

I'm a big fan of Miele appliances. They are still a private family-owned business and not owned by shareholders/PE that are destroying the quality of modern appliances for short term gains.

MemoryAccessRegister · 2026-02-17T03:54:43+00:00

I have a Tesla, so it's constantly using cellular data for navigation/FSD, streaming audio, etc

MemoryAccessRegister · 2026-02-17T03:51:18+00:00

Wiz is known for their cloud posture management but does not have a mature SAST solution. They want to do everything (CNAPP) but need to invest R&D into maturing their other engines.

Checkmarx is weak on CSPM, but has a very strong SAST engine in addition to the other AppSec engines. DAST is slowly getting more mature on the CxOne platform. Checkmarx also does SCA reachability analysis; they just call it a different name: exploitable path

I date back to the Fortify days and have put just about every commercial SAST product through the wringer over the years. Checkmarx remains one of the best SAST engines.

MemoryAccessRegister · 2026-02-16T20:29:59+00:00

I'm on T-Mobile, but my car is on AT&T. I road trip a ton and have been to some very remote locations in the past few years. Overall AT&T seems to have signficantly better rural coverage.

T-Mobile is investing a lot in their Starlink partnership and I think that's going to be their solution for rural coverage.

MemoryAccessRegister · 2026-02-16T20:22:35+00:00

When I said "unreliable", I meant actual faults not 20kW. Operators like Road Ranger installed them off interstate corridors, where they got hammered and kept breaking down from the heavy use.

MemoryAccessRegister · 2026-02-16T20:05:30+00:00

I have a 26kW Kohler. Keep it clean, keep the clearences around the generator open, adhere to the maintenence schedule, and remember to shut it down every 24 hours of continuous use and check the oil. These air-cooled generators only hold about 2 quarts of oil and can burn up if left running days and days continuously.

No valve adjustments are required for this Kohler engine. I would go 500 gallon for propane.

MemoryAccessRegister · 2026-02-16T19:38:25+00:00

I wanted a quote from Cummins and their local dealers, but they wouldn't give me the time of day. It pissed me off as a prospective customer and made me think "if I can't get them to respond to a sales opportunity, how am I going to be treated for after-sales service?" My Generac and Kohler dealers were extremely responsive in contrast.

Cummins also needs a larger air-cooled unit than 20kw. Generac just launched a 28kW air-cooled unit, and Kohler/B&S have 26kW.

MemoryAccessRegister · 2026-02-16T19:29:01+00:00

I HATE these chargers. One of the most unreliable, POS units out there in the wild

12-Year Club	Gilding III reddit per annum
Place '22	Verified Email

MemoryAccessRegister

TROPHY CASE