Tag: coding-agents
All the articles with the tag "coding-agents".
-
Most people doing 'vibe-coding' inherited a developer's attack surface without realizing it
Coding agents hand non-developers a developer's full attack surface, without the years of instinct that usually come with being in the trenches doing software development. The exposure is identical, but the defense is absent. The fix must live in the defaults.
-
Skills are the new agents; an ode to skills, and the risks
Coding agents are becoming orchestrators of specialized skills. But the ecosystem is fragmented, unversioned, and largely unaudited.
-
Skills are just text files. So where's the lockfile?
Skill distribution is a mess: no manifest, no version pinning, no lockfile. A skill is a prompt injected into a privileged agent, so it's a supply-chain problem. The boring fix already exists.
-
Export controls come for the models
Anthropic's Claude Fable 5 was disabled to comply with a US export-control directive barring foreign nationals. As always, this hits defenders hardest; some lessons from history and my take on it.
-
I switched from beads to plaintext tasks that live in the diff, managed by a skill
I wrote opentasks-skill to teach my coding agents to manage tasks without external dependencies, with a git-tracked audit system.
-
My agent policy kit
I was maintaining the same operating rules in a different config for every coding agent I run. So I built one shared policy and skill set that installs across all of them.