Absolute AppSec Ep. #230 - False Positives vs. Negatives, Scaling Vuln Management

Ken and Seth return to settle the age old question of whether false positives or false negatives are better when dealing with security tools. Tears are shed as stories of wasted efforts ring through on the podcasting airwaves. Maybe. Discussions on AI generated recommendations and how it _can_ be useful, but also turn out poorly. Finally, introductions on large scale vulnerability management at GitHub and how organizations struggle to fix issues identified through multiple streams.

absolute age appsec discussions false negatives false positives generated management old podcasting question recommendations return ring scaling security security tools shed stories the age tools vuln vuln management