Many tokens make all bugs shallow & open source’s new maintainers | Chainguard's Dan Lorenc

19 snips

Mar 17, 2026

Dan Lorenc, co-founder and CEO of Chainguard, secures the software supply chain and researches agentic engineering. He discusses how autonomous agents are accelerating development and the security risks that follow. Topics include turning guardrails into reliable guide rails, agent-driven open source maintenance, many-tokens automated inspection, sandboxing teams, and which parts of the stack agents will replace.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

INSIGHT

LLMs Have Inverted How Code Is Produced

AI tooling has flipped development from human-written lines to LLMs writing the majority of shipped code.
Dan Lorenc compares the shift to handing the industry circular saws where speed increases but risk of mistakes rises dramatically.

INSIGHT

Adoption Lag Turns Years Into Decades Against Attackers

Enterprises must narrow the gap to the AI bleeding edge or attackers will outpace defenders.
Lorenc warns that long adoption delays on an exponential curve can leave defenders decades behind rather than years.

ADVICE

Set Up Isolated Sandboxes For Agent Experiments

Do create sandbox environments and give developers isolated laptops to experiment with agentic tools safely.
Dan Lorenc recommends carving out time and constrained spaces so teams build intuition without exposing core codebases or production keys.

Get the Snipd Podcast app to discover more snips from this episode

Get the app

Autonomous agents are pushing deployment speeds to the absolute limit, but is our security infrastructure ready for the consequences? Andrew sits down with Chainguard CEO Dan Lorenc to discuss the severe supply chain risks of this new frontier and what it takes to safely transition to an agent-first engineering model. They explore how engineering teams can safely accelerate deployments by turning restrictive guardrails into frictionless "guide rails" for their AI agents. Finally, the conversation unpacks the future of open source, detailing how AI might either spam projects into dormancy or solve the ecosystem's long-standing sustainability crisis by stepping in as automated, full-time maintainers.

Follow the show:

Subscribe to our Substack
Follow us on LinkedIn
Subscribe to our YouTube Channel
Leave us a Review

Follow the hosts:

Follow Andrew
Follow Ben
Follow Dan

Follow today's guest:

Chainguard: Learn more about how Dan and his team are securing the software supply chain.
Dan Lorenc on LinkedIn: Connect with Dan to follow his predictions and insights.
Gastown, and where software is going: Read Dan's article exploring the Brownian Ratchet principle, multi-Claude, and eventual determinism.
EmeritOSS: Explore Chainguard's initiative to provide sustainable stewardship for mature, end-of-life open-source projects.
Daniel Stenberg's Blog: Insights from the Curl creator regarding the influx of AI-generated vulnerability reports.
Chainguard Assemble: Catch up on the latest announcements from Chainguard's user conference.

OFFERS

Start Free Trial: Get started with LinearB's AI productivity platform for free.
Book a Demo: Learn how you can ship faster, improve DevEx, and lead with confidence in the AI era.

LEARN ABOUT LINEARB

AI Code Reviews: Automate reviews to catch bugs, security risks, and performance issues before they hit production.
AI & Productivity Insights: Go beyond DORA with AI-powered recommendations and dashboards to measure and improve performance.
AI-Powered Workflow Automations: Use AI-generated PR descriptions, smart routing, and other automations to reduce developer toil.
MCP Server: Interact with your engineering data using natural language to build custom reports and get answers on the fly.