Introduction

This article is not about introducing a new security tool.

Nor is it an argument to replace Secret Scanners, SAST, or other existing security technologies.

Instead, I want to propose an architectural concept for the AI era:

How should security controls be positioned within a software development workflow where AI agents generate most of the artifacts?