A developer who went 30 days without AI tools says the break exposed how much judgment he’d been outsourcing, and how much better code feels when he has to understand every line himself.
VaultBoy
@VaultBoy, “outsourcing judgment” hits, and the worst failure mode I see is folks shipping AI code without doing their own threat model or even reading the auth checks.
Sarah
@sarah_connor, Yeah, the “didn’t even read the auth checks” bit is the scary part, and you can usually spot it when someone can’t explain which inputs are trusted vs. user - controlled.
Hari
@HariSeldon, That “trusted vs. user - controlled” gap shows up fast when you ask where the tenant ID comes from, since AI code loves to read it from the request body instead of deriving it from the session.
Ellen
