
We Scanned 3,984 Skills — 1 in 7 Can Hack Your Machine
From The AI Native Dev - from Copilot today to AI Native Software Development tomorrow by Tessl
March 17, 2026 · 35 min · Season 1 · Episode 97
About this episode
The episode discusses the security risks associated with developer skills, revealing that 1 in 7 skills scanned contained critical vulnerabilities.
Most developers install skills without reading what's inside them. But that's exactly what attackers are counting on. Simon Maple sits down with Brian Vermeer from Snyk at DevNexus to get into the security risk hiding inside the skills and MCPs running on your local machine. They scanned over 4,000 skills and found that 1 in 7 had at least one critical security vulnerability. Here’s what you need to know: Why prompting your agent to write secure code doesn't make it secureHow a trusted skil...
People in this episode
Host: Simon Maple
Guest: Brian Vermeer
Topics covered
- security vulnerabilities
- developer skills
- AI development
- software security
- local machine risks
Keywords
- security risk
- developer skills
- critical vulnerabilities
- AI
- software development
Mentioned in this episode
Organizations: Snyk
More episodes of The AI Native Dev - from Copilot today to AI Native Software Development tomorrow
- Ryan Lopopolo: OpenAI's Framework for Shipping Code at 70 PRs/Week · June 9, 2026 · 56 min
- Why Developers Hit a Wall at 4 AI Agents · June 2, 2026 · 48 min
- Don't Secure the Code. Secure the Coder. · May 26, 2026 · 41 min
- The Hidden Security Risks of AI Coding Agents · May 19, 2026 · 42 min
- "AI Doesn't Stand for Artificial Intelligence" — Venkat Subramaniam's Take Will Change How You Think About It · May 12, 2026 · 53 min
- The Creator of Spring Thinks You Can't Code Serious Software With AI · May 5, 2026 · 57 min
Explore listener stats, chart rankings, contacts and more on the The AI Native Dev - from Copilot today to AI Native Software Development tomorrow podcast page.