Microsoft has unveiled plans to incorporate Anthropic’s Claude Mythos Preview model and other AI models into its Security Development Lifecycle, embedding AI directly into the stages where code is written and tested. Rather than relying primarily on static analysis tools, Microsoft is adopting AI models capable of analyzing code dynamically and identifying complex vulnerabilities that might otherwise go undetected until later stages of development. Released on April 7, Anthropic’s Mythos model has already demonstrated a previously unmatched ability to uncover critical flaws across operating systems and widely used software. Anthropic claimed that the model’s ability to find security vulnerabilities is…
Author: drweb
Most B2B applications collect incomplete data by design. A lead form captures a name and company. A recruiting tool surfaces a LinkedIn profile. An event registration system logs an email address and job title. The record enters your system and sits there, half-formed, waiting for someone to manually fill in the gaps before it can be acted on. This is an architectural problem, not a workflow problem, and solving it at the architecture layer is what separates applications that create operational leverage from ones that just digitize manual work. Understanding how to build contact enrichment into your application using professional…
We have an in-depth course all about Web Performance Fundamentals from Todd Gardner. There is a lot to know, from the psychology of web performance, to measuring the new Core Web Vitals (LCP! INP! CLS!), to building a culture of performance at your organization. Access 300+ courses with a Frontend Masters subscription and get 20% off today! Personalized Learning Industry-Leading Experts 24 Learning Paths Live Interactive Workshops 20% Off Start Learning Today →
I do believe that Redgate has been very customer focused since it’s inception. I’ve worked with them in some capacity since 2002 and I’ve felt this along the way:The next page has this statement:We believe that if we do what is right for our customers then we will thrive.I think that’s been true when we keep this in mind. The (relatively) few times we’ve started to do things for ourselves rather than thinking about customers, things haven’t worked out as well.I think this sentiment is one that guides a lot of my life. Certainly inside Redgate, but also in the…
A lot is going on at Anthropic. Access to the almost-fabled Mythos model remains restricted (despite some reports of unauthorized access), and nobody knows quite what is likely to happen or when in terms of its final rollout. Developers, meanwhile, are left with their own challenges; last week’s “upgrade” to Opus 4.7 has left some software engineers already longing for a return to 4.6 with its less literal instruction interpretation and its perhaps less cautious use of safeguards and controls. Then there’s the Claude quality conundrum in and of itself. Root of the Problem? Anthropic says it recognizes the fact…
hyperfine is a command-line benchmarking tool that runs your commands repeatedly, collects timing data across multiple runs, and gives you statistically reliable results with mean, min, max, and standard deviation, making it far more accurate than a one-shot time measurement. You’ve been timing commands with time for years, and it’s been lying to you, not because time is broken, but because a single run captures one data point that can spike or dip based on cache state, CPU load, or kernel scheduling. If you’re choosing between two scripts, two compression tools, or two database queries, you need the average across…
I am staying relevant. Are you?I know that is a heavy way to start. But I needed to say it first, because I have been carrying that question for over a year, and I think some of you are carrying it too. You just have not said it out loud yet. Maybe to a spouse late at night. Maybe to yourself in the car after a long call. Maybe you have not even said it to yourself, because saying it makes it real.So let me be the one who says it first. And let me say the part underneath it…
Operations in DevOps is not just about keeping systems up anymore. Teams now have to support faster releases, manage cloud-native environments, improve security, and keep services reliable at scale. That is a big shift. Operations is no longer a back-office function. It plays a direct role in how fast and how safely the business can move. New technology has made this easier in some ways. Tools like Infrastructure as Code, observability platforms, and AIOps can reduce manual work and give teams better control. But they also add complexity. More tools do not automatically mean better operations. Many teams still deal…
I keep coming back to this idea that Python code either reads like English or it reads like gibberish. There is no middle ground. The difference between the two comes down to whether someone writes Python the way Python wants to be written. Pythonic code is not about using Python syntax. It is about using the language the way its designers intended. I see junior developers reach for loops and manual indexing when Python has built-in solutions that do the same thing in one line. Let me show you what I mean with examples I use in production. TLDR Replace…
“AI-powered” has become the default label for every security tool on the market. But there’s a meaningful difference between a tool that uses AI to generate alerts after the fact and one that actively participates in development, preventing vulnerabilities as code is written. That difference is what separates reactive AI from agentic AI. And it matters more now than ever. What “Agentic” Actually Means in AppSec In the context of application security, agentic AI isn’t a buzzword. It describes a specific set of capabilities: the tool proactively surfaces security issues in real time, understands the context in which code is…