Vibe Coding: Uncovering the Hidden Risks of Typosquatting and Supply Chain Attacks
About This Session
AI-assisted coding is democratizing software development, empowering anyone to build applications at unprecedented speed. But this "vibe coding" trend—rapid prototyping by individuals without formal training—also creates new security challenges. From typosquatting attacks to dependency hijacking, attackers are targeting these environments, exploiting developer overconfidence and expanding the attack surface. This session will equip security leaders with insights into these emerging risks and practical steps to secure their software supply chains in an AI-driven world.
Speaker
Shawn Marriott
CTO - Canary Trap Inc.
Shawn Marriott is the Chief Technology Officer at Canary Trap, where he leads offensive security strategy and engagements. With over 20 years of experience in penetration testing, red teaming, and adversarial simulations, Shawn specializes in uncovering hidden risks and helping organizations adapt their security posture to evolving threats. His expertise spans cybersecurity assessments, security program design, and educating leadership teams on emerging risks, including AI-driven vulnerabilities and software supply chain security.