Three months ago, I watched a senior engineer at a Series B startup ship an authentication bypass to production. Not because he was incompetent — he’d been writing secure code since Django was considered cutting-edge. He shipped it because GitHub Copilot suggested it, the tests turned green, and he’d learned to trust the little ghost icon more than his own instincts.
The bug sat in prod for six days before a security researcher found it during a routine pen test. No customer data leaked. They got lucky. But that engineer quit two weeks later, not because he was fired — he wasn’t — but because he couldn’t reconcile fifteen years of hard-won expertise with the fact that he’d stopped thinking the moment the AI started typing.
Read the original article: