Tag: quality gates
-
Tomasz Tunguz: OpenAI Calls Codex a Senior Engineer
Source URL: https://www.tomtunguz.com/openai-calls-codex-a-senior-engineer/ Source: Tomasz Tunguz Title: OpenAI Calls Codex a Senior Engineer Feedly Summary: For two years, Silicon Valley repeated the same mantra : AI agents are junior engineers. They need supervision. They handle routine tasks but struggle with complex problems. Then Thibault, OpenAI’s Codex team lead, delivered a line that broke the pattern…
-
Tomasz Tunguz: From Vibe Coding to the New Software Standard
Source URL: https://www.tomtunguz.com/from-vibe-coding-to-the-new-software-standard/ Source: Tomasz Tunguz Title: From Vibe Coding to the New Software Standard Feedly Summary: The days of “move fast and break things” are over. Silicon Valley’s engineering teams are trading hoodies for hard hats. The software industry faces its biggest cultural shift in decades: from intuitive “vibe-based” coding to standardized development practices.…
-
Anchore: False Positives and False Negatives in Vulnerability Scanning: Lessons from the Trenches
Source URL: https://anchore.com/blog/false-positives-and-false-negatives-in-vulnerability-scanning/ Source: Anchore Title: False Positives and False Negatives in Vulnerability Scanning: Lessons from the Trenches Feedly Summary: When Good Scanners Flag Bad Results Imagine this: Friday afternoon, your deployment pipeline runs smoothly, tests pass, and you’re ready to push that new release to production. Then suddenly: BEEP BEEP BEEP – your vulnerability…
-
Anchore: Who watches the watchmen? Introducing yardstick validate
Source URL: https://anchore.com/blog/who-watches-the-watchmen-introducing-yardstick-validate/ Source: Anchore Title: Who watches the watchmen? Introducing yardstick validate Feedly Summary: Grype scans images for vulnerabilities, but who tests Grype? If Grype does or doesn’t find a given vulnerability in a given artifact, is it right? In this blog post, we’ll dive into yardstick, an open-source tool by Anchore for comparing…