Daniel Abrahamberg

Category: AI

  • Your Coding Agent Can Read Your .env — And That Changes Your Security Model

    Your Coding Agent Can Read Your .env — And That Changes Your Security Model

    A few days ago, I was working with on my side project gogetcv.com, suing a coding agent (OpenCode) and and noticed something uncomfortable. It opened my appsettings.dev.json. These was LLM API keys for different providers and I had to rotate all of them. It hit me, the normal local development config file that almost every…

  • Spec-Driven Development and the Ralph Loop: The Good, the Bad, and the Ugly

    Spec-Driven Development and the Ralph Loop: The Good, the Bad, and the Ugly

    Spec-driven development, or SDD, is not new. But it has recently come back into focus because of agentic programming. A good place to start is Martin Fowler’s website, Understanding Spec-Driven Development. The core problem with agentic coding, or vibe coding if you prefer, is simple: AI can generate code faster than humans can responsibly review…

  • Code Is Worthless, Senior Developers Are Priceless!

    Code Is Worthless, Senior Developers Are Priceless!

    Once upon a time, code was one of the most valuable assets a company could own.It took years to build a serious codebase, and that effort created a real competitive advantage. That is no longer true in the same way. Today, with the right AI tools and a small number of strong engineers, it is…