BestHub
Sign in
Collection size
96 articles
Page 2 of 5
Tencent Technical Engineering
Tencent Technical Engineering
Mar 27, 2025 · Information Security

AI Programming Assistants Can Be Hijacked: Configuration File Poisoning and Security Risks

AI programming assistants such as GitHub Copilot and Cursor can be hijacked through poisoned configuration files that hide malicious prompts using invisible Unicode characters, exposing developers to risks like data leakage, DDoS, cryptomining and trojan injection, so they must avoid unknown configs, sandbox generated code, and employ static analysis and AI audits to mitigate threats.

AI securitycode poisoningconfiguration files
0 likes · 12 min read
AI Programming Assistants Can Be Hijacked: Configuration File Poisoning and Security Risks
macrozheng
macrozheng
Mar 8, 2026 · Artificial Intelligence

Why AI‑Generated Code Still Needs a Post‑mortem Engineer

AI can quickly produce a functional 80‑point prototype, but turning that code into a reliable, secure, high‑performance product that can run in production still requires human engineers to fix bugs, handle edge cases, and ensure safety, making the post‑mortem engineer a new industry necessity.

AIAgentcode generation
0 likes · 9 min read
Why AI‑Generated Code Still Needs a Post‑mortem Engineer
DevOps Cloud Academy
DevOps Cloud Academy
Jul 2, 2025 · Artificial Intelligence

How Strong CI/CD Foundations Secure AI-Driven Development

In the AI‑driven development era, teams must harness rapid code‑generation tools while embedding strict security, privacy, and compliance checks through rock‑solid CI/CD pipelines to avoid costly regulatory breaches and maintain trust.

AICI/CDDevOps
0 likes · 9 min read
How Strong CI/CD Foundations Secure AI-Driven Development
Java Tech Enthusiast
Java Tech Enthusiast
Apr 26, 2026 · Industry Insights

Should Legacy Open‑Source Projects Embrace AI‑Generated Code?

The article examines the split in the open‑source community over AI‑generated contributions, contrasting strict bans by projects like Vim Classic and Redox with the majority of major projects that now accept labeled AI code, and explores the resulting policy experiments, legal concerns, and security implications.

AI securityAI-generated codeLinux kernel
0 likes · 13 min read
Should Legacy Open‑Source Projects Embrace AI‑Generated Code?
21CTO
21CTO
Apr 12, 2026 · Industry Insights

Will AI-Generated Code Collapse Software Quality by 2026? A Critical Analysis

The article examines the paradox of AI‑driven coding speed versus software quality, warning that unchecked AI‑generated code could erode system integrity by 2026 and proposing a three‑step "Zero‑Sand" framework to safeguard architecture and maintain developer understanding.

AI codingLLMarchitectural verification
0 likes · 7 min read
Will AI-Generated Code Collapse Software Quality by 2026? A Critical Analysis
21CTO
21CTO
Jun 13, 2025 · Artificial Intelligence

Why AI Coding Boosts Some Developers Tenfold but Leaves Others Behind

A Qodo survey of 609 developers reveals that while AI coding tools dramatically increase productivity for a small elite, most developers see only moderate gains and many remain hesitant due to trust issues and hallucinations.

AI codingTrustcode quality
0 likes · 6 min read
Why AI Coding Boosts Some Developers Tenfold but Leaves Others Behind
IT Services Circle
IT Services Circle
Apr 23, 2026 · Industry Insights

Should Veteran Open‑Source Projects Embrace AI‑Generated Code?

The article examines the split in the open‑source community over AI‑generated contributions, detailing strict bans by projects like Vim Classic and Redox, the pragmatic acceptance by major projects such as Linux, a survey of 112 projects, and the implications of recent AI‑driven vulnerability discoveries.

AI contribution surveyAI-generated codeDeveloper Certificate of Origin
0 likes · 12 min read
Should Veteran Open‑Source Projects Embrace AI‑Generated Code?
21CTO
21CTO
Apr 11, 2025 · Artificial Intelligence

Can AI Really Write 90% of Your Code? Insights from QCon’s AI Programming Talk

At QCon in London, Thoughtworks’ AI‑assisted delivery lead Birgitta Böckeler warned that while large language models can automate many coding tasks, realistic productivity gains are modest—around 8%—and developers must navigate new risks such as hidden‑rule vulnerabilities, agent misuse, and over‑reliance on AI suggestions.

AI agentsAI programmingsoftware productivity
0 likes · 7 min read
Can AI Really Write 90% of Your Code? Insights from QCon’s AI Programming Talk
Machine Learning Algorithms & Natural Language Processing
Machine Learning Algorithms & Natural Language Processing
Feb 13, 2026 · Artificial Intelligence

CVE-Factory: Scaling Expert‑Level Security Task Synthesis for Code Agents

The talk introduces CVE-Factory, a framework that automatically converts sparse CVE metadata into high‑quality, executable security tasks for code agents, achieving 95% solution correctness, 96% environment fidelity, and a 66.2% verification rate on real vulnerabilities, while also releasing the LiveCVEBench benchmark and over 1,000 training environments that boost LLM performance dramatically.

AI safetyCVE-FactoryLiveCVEBench
0 likes · 4 min read
CVE-Factory: Scaling Expert‑Level Security Task Synthesis for Code Agents
Java Web Project
Java Web Project
Mar 10, 2026 · Industry Insights

Why AI‑Generated Code Still Needs a Post‑Processing Engineer

The article analyzes how large‑model code generators can quickly produce 80‑point prototypes but still require skilled engineers to fix missing logic, boundary cases, security flaws, and performance issues, turning shaky AI output into reliable, production‑ready software.

AI code generationautonomous agentsindustry insight
0 likes · 9 min read
Why AI‑Generated Code Still Needs a Post‑Processing Engineer
Digital Planet
Digital Planet
Mar 29, 2026 · Artificial Intelligence

Can AI Really Erase Technical Debt? Uncovering Hidden Risks of Smart Agents

This article critically examines whether AI agents can eliminate legacy technical debt, revealing that while AI can accelerate debt repayment, it also creates new forms of debt such as prompt, data‑dependency, orchestration, and compliance liabilities, and ultimately amplifies longstanding management challenges.

AIAI agentsAutomation
0 likes · 13 min read
Can AI Really Erase Technical Debt? Uncovering Hidden Risks of Smart Agents
Rare Earth Juejin Tech Community
Rare Earth Juejin Tech Community
Mar 1, 2024 · Frontend Development

AI in Frontend Development: Code Generation, Testing, Code Review, Low‑Code, and Business Applications

This article reviews the rapid rise of generative AI in 2023 and explores its impact on frontend development, covering AI‑driven code generation, testing, code review, low‑code platforms, business workflows, challenges, practical experiences, and future prospects for developers and teams.

AITestingcode review
0 likes · 30 min read
AI in Frontend Development: Code Generation, Testing, Code Review, Low‑Code, and Business Applications
Architecture Musings
Architecture Musings
Apr 20, 2026 · Industry Insights

ThoughtWorks Technology Radar Vol. 34: Engineering Practices and Cognitive Shifts in the Agent Era

The article analyses ThoughtWorks' 34th Technology Radar, revealing how the rise of AI agents forces a reassessment of software engineering fundamentals, introduces semantic diffusion, cognitive debt, security risks, and highlights both newly adopted tools like Kafbat UI and Typer and a set of cautionary practices that demand tighter control and context engineering.

AICognitive debtTechnology Radar
0 likes · 34 min read
ThoughtWorks Technology Radar Vol. 34: Engineering Practices and Cognitive Shifts in the Agent Era
Tencent Architect
Tencent Architect
Apr 22, 2026 · Backend Development

Can AI Safely Write Code for High‑Risk Backend Systems? Lessons from Tencent’s CDN

This article analyses how Tencent applied AI coding to its massive, high‑risk CDN LEGO backend, built a Rust‑based Nonstop proxy to probe AI limits, designed a five‑layer Harness Engineering framework with multi‑model adversarial review, identified concrete failure modes, and quantified efficiency gains while redefining developer roles.

AI codingAI safetyHarness Engineering
0 likes · 20 min read
Can AI Safely Write Code for High‑Risk Backend Systems? Lessons from Tencent’s CDN