We’re using it for closing security flaws identified by another tool. It’s boring, unchallenging work that is nonetheless still important. It’s also repetitive and uncreative enough that I’m comfortable having a machine do it.
There’s still human review but when it’s stuff like “your error messages should escape variables” or “write a longer function name” having a tool that can do most of the grunt work is valuable.
We’re using it for closing security flaws identified by another tool. It’s boring, unchallenging work that is nonetheless still important. It’s also repetitive and uncreative enough that I’m comfortable having a machine do it.
There’s still human review but when it’s stuff like “your error messages should escape variables” or “write a longer function name” having a tool that can do most of the grunt work is valuable.