vibe-coding

AI Code Gets CVEs Now.

John Z Black Mar 29, 2026

AI Security #ai-security #vibe-coding #ncsc #mcp #model-context-protocol #prompt-injection #rsac #developer-security #ai-code

The UK's NCSC called AI-generated code an 'intolerable risk,' researchers found all seven major MCP clients vulnerable to attack, and 35 CVEs in March alone traced directly back to AI-written code.

UK's Top Cyber Official at RSAC: Stop Watching Vibe Coding From the Sidelines

John Z Black Mar 25, 2026

AI Security #rsac #ncsc #vibe-coding #ai #appsec #saas #secure-by-design

NCSC CEO Dr. Richard Horne told RSAC 2026 that vibe coding is moving fast enough to reshape the SaaS industry, and the security community has a narrow window to shape how it lands instead of cleaning up after it.