Lothar Schulz – Leadership & Technology

Flow Coding Security Analysis: Expert Personas for Rust Code Review

July 8, 2025 Lothar Schulz 0

This analysis examines a multi-persona AI prompt technique applied to Rust development, testing its effectiveness on a protein translation exercise. While the approach successfully transformed imperative code into functional pipelines and improved error handling, it revealed critical limitations including AI hallucination risks and test compatibility issues. For security-conscious teams, the technique offers valuable code quality improvements when integrated with human oversight and comprehensive validation processes.

Let the Agents Vibe: Introducing Flow Coding

July 7, 2025 Lothar Schulz 0

Introducing “flow coding”—a new multi-agent development approach where you orchestrate AI agents to collaborate on software projects. Unlike vibe coding’s human-AI partnership, flow coding enables AI-to-AI collaboration while you guide the creative process from above.

Google Gemini vs. Claude Sonnet 4: A Head-to-Head for Rapid AI Prototyping

June 28, 2025 Lothar Schulz 0

Curious about the speed of AI app creation? I put Google Gemini’s “Create with Canvas” and Claude Sonnet 4 to the test, generating a “weird animals quiz.” Explore my findings on their “fast vibe coding” capabilities, aesthetic preferences, and the critical role of speed in prototyping.

Getting Started with Google Gemini CLI: Complete Setup Guide and Rust Testing Experience

June 25, 2025 Lothar Schulz 1

Hands-on review of Google’s new Gemini CLI. Covers sandbox mode, auto-code generation and configuration options.

Skip the Code: How AI Prompts Now Handle Tech Due Diligence Better Than Custom Scripts

June 15, 2025 Lothar Schulz 6

I built a Python solution in January for AI-powered supplier due diligence that required Jupyter notebooks and custom code. Now I’ve discovered something game-changing: modern AI systems like like Claude, ChatGPT, and Perplexity can handle complex tech assessments through simple prompts with zero technical setup. This post reveals the comprehensive prompt framework that delivers professional due diligence results without any coding, making AI-powered supplier assessments accessible to any CISO team.

Local AI on Linux: Alternatives to Mac’s MLX Using LLM and Ollama

June 7, 2025 Lothar Schulz 0

Want to run AI models locally on Linux? This guide walks you through setting up the llm CLI and Ollama to power your own private AI environment—no Apple Silicon required. Learn how to install tools, pull models, and start chatting with AI directly from your terminal using open and efficient Linux-native solutions.

Claude 4’s 25% Syntax Error Reduction

May 26, 2025 Lothar Schulz 0

Claude 4’s release brings significant improvements to AI-assisted coding that matter for security-conscious engineers. The coding platform Lovable reports a 25% reduction in syntax errors and 40% speed improvement in production environments.
While this doesn’t directly address semantic security issues like dependency confusion attacks, fewer syntax errors allow security reviewers to focus on logic and security issues rather than basic correctness, creating opportunities for more targeted security review.

OpenAI Codex – 2025 the year of AI agents continues

May 17, 2025 Lothar Schulz 0

OpenAI Codex is a new cloud-based software engineering agent from OpenAI that includes an open source reference base docker file.

The hidden poison in AI-generated code: How vibecoding enables slopsquatting attacks

May 12, 2025 Lothar Schulz 1

no time, jump straight to how to Protecting yourself in the age of vibecoding and Secure AI-assisted development Artificial intelligence has revolutionized software development, with […]

Engineering Metrics Frameworks: DORA, DevEx, SPACE, DX Core 4, ESSP Comparison

May 4, 2025 Lothar Schulz 0

Learn how engineering metrics are transforming software development. This post highlights the evolution of measurement approaches, from early activity-based metrics to the modern frameworks such as DORA, DevEx, SPACE, DX Core 4 and ESSP. We compare the core components, strengths and focus of each framework and discuss how they can be used to measure and continuously improve performance, developer experience and business success. Find out which approach best fits your organization’s goals.