Sign up to save your podcasts
Or
Share How Dam Secure Puts Guardrails on AI Generated Code
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
How Dam Secure Puts Guardrails on AI Generated Code
Episode Summary
This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/
Vibe coding is here and most organisations are nowhere near ready for what it means for security. In this episode of Secured, Cole Cornford sits down with Patrick Collins and Simon Harloff, founders of Dam Secure, to unpack how AI is reshaping software development and why the old AppSec playbook is not keeping up.
They cover the shift from artisanal to factory model engineering, why skills and agents.md files are less reliable than people think, and why the SaaSpocalypse narrative is mostly a distraction from the work that actually matters. Patrick and Simon also walk through how Dam Secure enforces organisational security rules at plan time, before a single line of AI generated code gets written.
Timestamps00:00 Trailer
01:01 Chainguard ad
01:28 Meet Patrick Collins and Simon Harloff from Dam Secure
03:00 Why existing AppSec tooling never worked for developers
05:30 The artisanal vs factory model of software development
08:30 Hacker News, polarisation and the AI sentiment shift
11:00 Agile, standups and processes that no longer make sense
14:00 Bigger PRs, higher velocity and workflows without an IDE
17:00 Skills, agents.md and the limits of deterministic guardrails
20:00 The AppSec to developer ratio problem
23:00 The SaaSpocalypse and why rebuilding tools is a side quest
27:00 React, digital certificates and security through business incentives
30:00 How Dam Secure works: secure spec and plan time enforcement
34:00 Vibe coders, Lovable and the risk beyond professional developers
36:00 Where to find Dam Secure and closing remarks
🐙 Secured is grateful to be sponsored and supported by Chainguard.
Chainguard is the trusted source for open source. Get hardened, secure, production-ready builds so your team can ship faster, stay compliant, and reduce risk. Download your free CVE Reduction Assessment at https://dayone.fm/chainguard
Secured is part of Day One.Day One helps founders and startup operators make better business decisions more often.To learn more, join our newsletter to be notified of new First Cheque episodes and upcoming shows.
This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/
View all episodes
By Day OneEpisode Summary
This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/
Vibe coding is here and most organisations are nowhere near ready for what it means for security. In this episode of Secured, Cole Cornford sits down with Patrick Collins and Simon Harloff, founders of Dam Secure, to unpack how AI is reshaping software development and why the old AppSec playbook is not keeping up.
They cover the shift from artisanal to factory model engineering, why skills and agents.md files are less reliable than people think, and why the SaaSpocalypse narrative is mostly a distraction from the work that actually matters. Patrick and Simon also walk through how Dam Secure enforces organisational security rules at plan time, before a single line of AI generated code gets written.
Timestamps00:00 Trailer
01:01 Chainguard ad
01:28 Meet Patrick Collins and Simon Harloff from Dam Secure
03:00 Why existing AppSec tooling never worked for developers
05:30 The artisanal vs factory model of software development
08:30 Hacker News, polarisation and the AI sentiment shift
11:00 Agile, standups and processes that no longer make sense
14:00 Bigger PRs, higher velocity and workflows without an IDE
17:00 Skills, agents.md and the limits of deterministic guardrails
20:00 The AppSec to developer ratio problem
23:00 The SaaSpocalypse and why rebuilding tools is a side quest
27:00 React, digital certificates and security through business incentives
30:00 How Dam Secure works: secure spec and plan time enforcement
34:00 Vibe coders, Lovable and the risk beyond professional developers
36:00 Where to find Dam Secure and closing remarks
🐙 Secured is grateful to be sponsored and supported by Chainguard.
Chainguard is the trusted source for open source. Get hardened, secure, production-ready builds so your team can ship faster, stay compliant, and reduce risk. Download your free CVE Reduction Assessment at https://dayone.fm/chainguard
Secured is part of Day One.Day One helps founders and startup operators make better business decisions more often.To learn more, join our newsletter to be notified of new First Cheque episodes and upcoming shows.
This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/