{"podcast":{"title":"Application Security Weekly (Audio)","slug":"application-security-weekly-audio-436682","podcast_index_feed_id":436682,"rss_url":"https://aswaudio.libsyn.com/rss","website_url":"https://securityweekly.com/asw","image_url":"https://static.libsyn.com/p/assets/0/a/1/5/0a15d1d27c1a4bbc27a2322813b393ee/ASW_Cover_1920x1920-20240930-x3a3ohx73b.png","author":"Security Weekly Productions","episode_count":398,"summary":"About all things AppSec, DevOps, and DevSecOps. Hosted by Mike Shema and John Kinsella, the podcast focuses on helping its audience find and fix software flaws effectively.","last_synced_at":null,"page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682"},"episode":{"title":"Creating Better Security Guidance and Code with LLMs - Mark Curphey - ASW #374","slug":"creating-better-security-guidance-and-code-with-llms-mark-curphey-asw-374","published_at":"2026-03-17T09:00:00+00:00","page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/creating-better-security-guidance-and-code-with-llms-mark-curphey-asw-374","show_page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682","url":"https://aswaudio.libsyn.com/creating-better-security-guidance-and-code-with-llms-mark-curphey-asw-374","audio_url":"https://dts.podtrac.com/redirect.mp3/traffic.libsyn.com/secure/aswaudio/ASW_374_1--882ae32d-0b0f-4f68-bf56-79c6fa3e87f2--audio-converted--ecf3ef0c-2bb4-479d-a014-c6dc26a258f9.mp3?dest-id=626765","summary":"What happens when secure coding guidance goes stale? What happens LLMs write code from scratch? Mark Curphy walks us through his experience updating documentation for writing secure code in Go and recreating one of his own startups. One of the themes of this conversation is how important documentation is, whether it's intended for humans or for prompts to LLMs. Importantly, LLMs don't innovate on their own -- they rely on the data they're trained on. And that means there should be good authoritative sources for what secure code looks like. It also means that instructions to LLMs need to be clear and precise enough to produce something useful. Watch what happens when Mark prompts his agents to run a live demo for us! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-374","meta_description":"What happens when secure coding guidance goes stale? What happens LLMs write code from scratch? Mark Curphy walks us through his experience updating docum…","key_points":[],"chapters":[],"topics":[],"duration_seconds":3848,"processing_state":"not_requested","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/application-security-weekly-audio-436682/episodes/creating-better-security-guidance-and-code-with-llms-mark-curphey-asw-374/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/creating-better-security-guidance-and-code-with-llms-mark-curphey-asw-374.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}