| ▲ | ygjb 11 hours ago | |
No it isn't. There is a tooling gap, and there is a skill gap, but both of those are being rapidly closed by both open and closed source projects. LLMs, and tools built to use them, are violating a lot of assumptions these days. | ||
| ▲ | thombles 9 hours ago | parent [-] | |
It's a meaningful difference for SaaS. Most likely an attacker doesn't have access to your running binary let alone source code, and if they probe it like a pentester would it will be noisy and blocked/flagged by your WAF. | ||