Blog
Stack Overflow Business
Stack Internal: the knowledge intelligence layer that powers enterprise AI.
Stack Data Licensing: decades of verified, technical knowledge to boost AI performance and trust.
Stack Ads: engage developers where it matters — in their daily workflow.

Issue 335: Did you build your software on quicksand?

You have to wonder…are we building castles on quicksand? Are the sleek new AI features just distractions from the major architectural flaws in our software? This week, we’re looking at what exactly happens when infrastructure, architecture, and process are forsaken. For instance, that recent Instagram hack that compromised Obama’s account? The attackers just had to ask Meta’s AI nicely to get in. Fabio Salvadori explores the event and what we can learn about judgment and secure architecture from it. On the pod, we’re talking with Apollo GraphQL’s Matt DeBergalis about structured semantic architecture and reining in token spend, and Infoblox’s Cricket Liu about the woes of infrastructure and why most people don’t really understand DNS.

And we hate to call you out, but just because your tools are evolved doesn’t mean your processes are. Good thing we’ve got a piece on updating your workflows to match your updated tooling. Plus, we’ve got stories on everything from a malware campaign on GitHub to a web server running on a cracked phone, and the answers to your burning questions about the mysterious Professor Y and your rights as an AI-using dev. Luckily, this Overflow was built on a sturdy foundation of interesting links and vetted knowledge. You can check yourself down below.

From the blog

Dispatches from O'Reilly: From capabilities to responsibilities

Designing contract-bound AI agents for high-stakes execution.

You don’t understand DNS like you think you do

Ryan welcomes Cricket Liu, DNS expert and Chief Evangelist at Infoblox, to the show to talk all things DNS. They cover the evolution of one of the oldest DNS server implementations, BIND, and what the future holds for protected DNS configurations; the realities of security threats like DDoS and DNS spoofing; and why outages often trace back to a lack of understanding of DNS’s fundamental role.

The new bottleneck

Engineering teams have upgraded their tools. Have they upgraded how they work?

AI agents are a confused deputy with the keys to your kingdom

How attackers took twenty thousand Instagram accounts by asking Meta's AI politely, and why that failure is about to become common.

If context is king, architecture is the castle

Recorded live at the AI Agent Conference, Ryan sits down with Apollo GraphQL CEO Matt DeBergalis to discuss how enterprises can leverage GraphQL and MCP as a structured semantic architecture to feed clean data to autonomous agents, safeguard internal microservices against unprecedented "east-west" data exfiltration risks, and rein in skyrocketing token spend by explicitly querying only the exact context required.

Interesting questions

How do I prevent myself from being a crank in areas I know very little about?

"The plural of anecdote is not data."

Rights when using developer tooling written by AI

Luckily, the code you write is still yours.

Was Carl Sagan correct to say that meteor entry is "completely silent"?

If a meteor falls but Carl Sagan isn't around to hear it, did it even make a sound?

Who is Prof. Y in Einstein–Born correspondence?

"If you publish this manuscript anywhere, in any way, then it's over between us forever." may be the coldest Einstein quote of all time.

Links from around the web

Smashed toilet phone web server

A toilet phone web server is its own kind of "ensh*ttification."

An interview with Ollie Wagner, Apple emoji designer

And to Ollie and his work, we say *prayer hand emoji* *thumbs up emoji* *salute emoji* *prayer hand emoji*.

I hate compilers

At least some of us still care about reproducibility.

I discovered a large-scale malware distribution campaign on GitHub

Like Gandalf the Grey, this dev stood at bridge of GitHub and yelled, "You shall not pass!"

Our sixteenth Annual Developer Survey is now open and we want to hear your thoughts on all things software. Take the survey now!