leadership

Flow Coding Security Analysis: Expert Personas for Rust Code Review

July 8, 2025 Lothar Schulz 0

This analysis examines a multi-persona AI prompt technique applied to Rust development, testing its effectiveness on a protein translation exercise. While the approach successfully transformed imperative code into functional pipelines and improved error handling, it revealed critical limitations including AI hallucination risks and test compatibility issues. For security-conscious teams, the technique offers valuable code quality improvements when integrated with human oversight and comprehensive validation processes.

Google Gemini vs. Claude Sonnet 4: A Head-to-Head for Rapid AI Prototyping

June 28, 2025 Lothar Schulz 0

Curious about the speed of AI app creation? I put Google Gemini’s “Create with Canvas” and Claude Sonnet 4 to the test, generating a “weird animals quiz.” Explore my findings on their “fast vibe coding” capabilities, aesthetic preferences, and the critical role of speed in prototyping.

Claude 4’s 25% Syntax Error Reduction

May 26, 2025 Lothar Schulz 0

Claude 4’s release brings significant improvements to AI-assisted coding that matter for security-conscious engineers. The coding platform Lovable reports a 25% reduction in syntax errors and 40% speed improvement in production environments.
While this doesn’t directly address semantic security issues like dependency confusion attacks, fewer syntax errors allow security reviewers to focus on logic and security issues rather than basic correctness, creating opportunities for more targeted security review.

The hidden poison in AI-generated code: How vibecoding enables slopsquatting attacks

May 12, 2025 Lothar Schulz 1

no time, jump straight to how to Protecting yourself in the age of vibecoding and Secure AI-assisted development Artificial intelligence has revolutionized software development, with […]

Engineering Metrics Frameworks: DORA, DevEx, SPACE, DX Core 4, ESSP Comparison

May 4, 2025 Lothar Schulz 0

Learn how engineering metrics are transforming software development. This post highlights the evolution of measurement approaches, from early activity-based metrics to the modern frameworks such as DORA, DevEx, SPACE, DX Core 4 and ESSP. We compare the core components, strengths and focus of each framework and discuss how they can be used to measure and continuously improve performance, developer experience and business success. Find out which approach best fits your organization’s goals.

Denouement: 5-3-1 Narrative Rule

January 20, 2024 Lothar Schulz 0

Enable your teams with a simple and yet powerful guideline to align on problems to solve and solutions.

Microservices Marvel: Riding the Frontline with BFF Mastery in Modern Development

January 17, 2024 Lothar Schulz 0

In software development, engineers are constantly seeking innovative solutions. One such pattern that has gained prominence in recent years is the Backend For Frontend (BFF) pattern. We’ll delve into the intricacies of BFF, explore its similarities with API Gateway, and discuss the advantages and disadvantages of incorporating business logic and other microservice cross cutting concerns. We’ll conclude with recommendations.