OWASP LA Monthly In-Person Meeting - Sep 24, 2025

TOPIC: From input-handling flaws to crashables: Security lessons from LLM-based coding tools

Join us for great networking, dinner and drinks, and see a presentation by Mahesh Babu, is a former VP of Information Security turned company builder and now leads growth at Kodem,

ABSTRACT: Claude Code illustrates how LLM-based coding tools expand the attack surface. Design choices around approvals, parsing, and error handling can turn into security flaws. We present specific findings Kodem uncovered in Claude Code. Both issues highlight how LLM-based coding tools introduce new misconfiguration and input-handling risks. This talk dissects the issues, their broader implications for AI developer tools, and practical mitigations.

Thanks to our SPONSOR: Kodem Security
The AppSec chase is over.
Swap endless alerts with focused action. Simplify the remediation of your most exploitable issues through runtime security.

SPONSORSHIP Opportunities Available
*Vendors interested in sponsoring please send an email to sponsorship.la@owasp.org*

CODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy