Cloud Security Alliance - San Diego

Details

Come join us for our last CSA San Diego meeting of the year!!! Please be sure to RSVP. We have limited capacity, so please be courteous and only RSVP if you plan to attend.

We are very excited to have KODEM sponsoring us for our meeting. KODEM has been a great supporter of our chapter and community in the past, and we are excited to host them at our event.

Speaker: Mahesh Babu

‍Speaker Bio: Mahesh Babu is a former VP of Information Security turned company builder and now leads growth at Kodem, venture‑backed application security startup. At HSBC he built and scaled global application‑security and identity‑access‑management platforms that safeguard billions of transactions. His career began at Purdue University’s Information Assurance & Security Research Center, where he researched secure software engineering. Mahesh blends academic rigor with enterprise and startup execution to help organizations stay ahead of modern threats.

Title: From input-handling flaws to crashables: Security lessons from breaking LLM-based coding tools‍

Abstract: Claude Code illustrates how LLM-based coding tools expand the attack surface. Design choices around approvals, parsing, and error handling can turn into security flaws. We present specific findings Kodem uncovered in Claude Code. Both issues highlight how LLM-based coding tools introduce new misconfiguration and input-handling risks. This talk dissects the issues, their broader implications for AI developer tools, and practical mitigations.

Our sponsors graciously provide dinner and beverages for us at the meeting, hence we require an RSVP. We do not allow walk ins as we have limited capacity. Thank you and see you there!