OWASP LA Monthly In-Person Meeting
From input-handling flaws to crashables: Security lessons from LLM-based coding tools
Topic
From input-handling flaws to crashables: Security lessons from LLM-based coding tools.
Abstract
Claude Code illustrates how LLM-based coding tools expand the attack surface. Design choices around approvals, parsing, and error handling can turn into security flaws. We present specific findings Kodem uncovered in Claude Code. Both issues highlight how LLM-based coding tools introduce new misconfiguration and input-handling risks. This talk dissects the issues, their broader implications for AI developer tools, and practical mitigations.
Details
Join us for great networking, dinner and drinks, and see a presentation by Mahesh Babu, is a former VP of Information Security turned company builder and now leads growth at Kodem.
Speaker
Mahesh Babu
Mahesh Babu is a former VP of Information Security turned company builder and now leads growth at Kodem, venture‑backed application security startup. At HSBC he built and scaled global application‑security and identity‑access‑management platforms that safeguard billions of transactions. His career began at Purdue University’s Information Assurance & Security Research Center, where he researched secure software engineering. Mahesh blends academic rigor with enterprise and startup execution to help organizations stay ahead of modern threats.
Register now
.png)
.png)
.png)