Session Abstract

Over the last year, AI coding assistants have evolved into agentic systems that plan, act, and make changes across the developer workflow. These agents do not just suggest code anymore. They run tools, modify configs, manage dependencies, open pull requests, and sometimes fix issues end to end with minimal human input. This shift dramatically expands the attack surface. Prompt injection now targets agents instead of chat boxes, poisoned repositories influence multi step decisions, and a single compromised instruction file can steer an agent into leaking secrets, weakening security controls, or introducing backdoors while appearing helpful and correct. This session looks at what agentic AI means for developer security in practice. We will break down how autonomous and semi autonomous coding agents fail, where trust in automation goes too far, and why traditional secure coding guidance is no longer enough. The focus is on concrete scenarios teams are already facing and on pragmatic guardrails that keep agents useful without giving them unchecked power. The goal is to help security and engineering teams work with agentic AI in a way that scales productivity while keeping control, visibility, and accountability firmly in place.

Maxim Salnikov

Maxim Salnikov is a tech and cloud community enthusiast based in Oslo. With over two decades of experience as a web developer, he shares his extensive knowledge of the web platform, cloud computing, and AI by speaking at and providing training for developer events worldwide. By day, Maxim plays a crucial role in supporting the development of cloud and AI solutions within European companies, serving as the leader of developer productivity business at Microsoft. During evenings, he can be found running events for Norway's largest web and cloud development communities. Maxim is passionate about exploring and experimenting with Generative AI possibilities, including AI-assisted development. To share his insights and connect with like-minded professionals globally, he founded and organized the inaugural Prompt Engineering Conference, the first of its kind on a global scale.