Skip to content
セキュリティとガバナンス

Security Debt Is the New Technical Debt, and AI Is Compounding It Daily

Security debt is a measurable, accruing liability that AI copilots compound daily. A definition, a model to track it, and how governed remediation pays it down.

Zof Reliability Team · エンジニアリング & プロダクト

2025年9月3日 · 読了時間 7 分 · 2025年9月3日 更新

Share
01

What security debt actually is

Security debt is the gap between two flows: the rate at which exploitable vulnerabilities enter your codebase, and the rate at which you resolve them, where "resolve" means proven not-reachable, remediated, or accepted with a documented decision. Everything in that gap is debt. It sits in production, in merge queues, and in scanner backlogs that nobody clears.

This is not a metaphor borrowed loosely from finance. The structure is genuinely a liability:

  • Principal is the count of unresolved exploitable flaws in shipped and about-to-ship code.
  • Interest is the compounding exposure: each flaw becomes more dangerous as the surrounding system changes around it, dependencies shift, and an unreachable path quietly becomes reachable.
  • Default is the breach, the disclosure obligation, and the conversation with a regulator.

The distinction from technical debt matters because the two are governed differently. Technical debt slows future change; its cost is velocity, paid by your own engineers over time. Security debt's cost is borne by customers, the business, and regulators, and it is paid suddenly rather than gradually. You can choose to live with technical debt indefinitely. Security debt has a clock on it that you do not control, because the attacker sets it.

02

Why AI compounds it daily, not occasionally

Two industry numbers explain why this stopped being a manageable trickle. Roughly 41% of codebases are now AI-generated. And by available research, around 45% of AI coding tasks introduce a critical flaw or security issue. A model trained to produce plausible, working code is not optimized to produce safe code, so it reproduces the insecure patterns it learned, confidently and at scale.

Now apply throughput. A copilot does not write one risky function a week. It co-authors a continuous stream of changes, and a fraction of every stream carries a defect. The arithmetic is unforgiving: higher volume multiplied by a stable defect rate produces a backlog that grows monotonically. It does not plateau.

The control that was supposed to absorb this is the human in review, and that control is opting out. Roughly 80% of developers bypass policy or guardrails, not out of malice but because policy was designed for a slower era and now sits in the critical path of the velocity leadership rewards. When the safety mechanism is friction and the incentive is speed, the mechanism loses. The debt accrues precisely where you assumed it was being paid down.

This is why the daily framing is accurate rather than dramatic. Security debt is not an event you remediate once. It is a balance that increases with every merge, and the AI-assisted enterprise merges constantly.

03

A model you can actually track

A liability you cannot measure is one you will rationalize. The reason security debt stays invisible is that most organizations track the wrong number: total scanner findings. That count is mostly noise, it never goes down, and leadership learns to ignore it. Track these four instead.

  • Inflow rate. Exploitable flaws introduced per unit of merged change. This is your true risk-generation rate, and it tells you whether AI adoption is moving it.
  • Reachable backlog. Not all findings, but the subset an attacker can actually reach in the running system. This is the number that maps to real exposure.
  • Mean time to validated resolution. How long a reachable flaw lives before it is fixed-and-verified or formally accepted. Rising MTTR means the debt is compounding faster than you pay it.
  • Accepted-risk register. What you knowingly chose to live with, who authorized it, and when it expires. Undocumented acceptance is the most expensive debt because it looks like zero.

The single highest-leverage move inside this model is to stop treating every finding as equal. Reachability analysis asks a sharper question than a scanner does: can an attacker reach this path in the running system, through real entry points, with real inputs? Most findings cannot survive that question. Prioritizing by reachability can mean 70 to 90% less exploitable exposure, because you collapse a backlog of thousands into the subset that genuinely matters and aim human attention there.

Reachability is not a filter you bolt onto a scanner. It requires context: how services connect, which inputs flow where, what is exposed at the edge, and how a change propagates. That is the context a live System Graph holds, which is why reachability and a living map of the system belong to the same architecture rather than two disconnected tools.

04

Why scanner-and-ticket cannot pay it down

The default enterprise response is a scanner wired to a ticket queue. A tool flags issues, tickets are created, and humans are expected to triage, validate, fix, and verify. That loop was tolerable when findings were a trickle. Under AI-scale production it floods, and the failure mode is predictable: the queue is declared bankrupt each quarter, severity thresholds quietly rise, and teams ship on the hope that the unaddressed majority was never reachable.

Hope is not a control. The deeper problem is that this workflow is built for detection, and detection alone is just another alert source. It tells you that debt exists. It does not pay it down. Paying it down requires proving what is exploitable, reproducing it, fixing it, and verifying the fix, continuously, faster than new debt arrives. No ticket queue staffed by humans does that at machine speed.

There is also a governance gap that scanners ignore. When a regulator, auditor, or board asks how you managed exposure, a clean dashboard is not a defense. The defensible artifact is an evidence trail: what was found, what was proven reachable, who authorized the response, and how the fix was verified. A workflow that cannot produce that trail leaves you exposed on the governance axis even when the engineering looks fine.

05

What to do Monday morning

You do not need a transformation program to start paying this down. You need to make the liability visible and put a governed loop around the part that compounds.

  • Instrument inflow. Start counting exploitable flaws per merged change, segmented by AI-assisted versus human-authored. You cannot manage a rate you do not measure.
  • Reprioritize by reachability, not severity alone. A critical-severity finding in dead code is not your problem; a medium-severity flaw on a live, internet-facing path is. Let exposure, not the scanner's label, set the queue.
  • Close the loop where the debt compounds. Move from detect-and-ticket to validate-reproduce-remediate-verify. Testing Fleets plan and execute validation against the live system as it evolves, and Remediation Fleets turn confirmed flaws into staged, reviewable fixes.
  • Keep authorization human and audited. Agents propose; humans authorize. Governance is what makes autonomous remediation safe rather than reckless: policy, approval, and an audit trail on every change that ships.

The point of governed continuous validation is not to remove people from the decision. It is to remove people from the part that does not need judgment, the triage and reproduction grind, so their judgment lands where exposure is real and the decision to ship is theirs to make.

06

The bottom line

続きを読む

01Zof Console

姿勢、操作、次に注意が必要なことを 1 つの面で確認できます。

エンジニアリング、QA、SREの各チームが毎日開く認証済みのホーム。品質の姿勢、進行中の実行、モジュールごとのカバレッジ、そして次に注目すべきことが分かります。

運用上の KPI

実行数、カバレッジ、リスク

出荷先のあらゆる環境に対応します。

ワークスパイン

仕様・テスト・スケジュール

仕様から計画された回帰まで。

ガードレール

RBAC・SSO・監査

指定された人間に起因するすべての行為。

LIVE/console
Zof AI ホーム コマンド センターには、94% パスでの 12 件の実行、3 つの未解決の重大な問題、84% のカバレッジ、4 つのモジュール トレーサビリティ バー、仕様パイプライン、今後のスケジュール、アクティブ実行サイドバー付きの推奨される次のアクションが表示されます。
ホーム ビュー · チェックアウト サービス · ステージング · 製品からライブでキャプチャ。
  • 01 · RUNS · 24H

    94% pass

    12 runs across staging

  • 02 · COVERAGE

    84%

    Across four modules

  • 03 · ACTIVE RUNS

    3 running

    Live on this branch

  • 04 · NEXT ACTIONS

    Recommended

    Triage gaps, new spec

Security Debt Is the New Technical Debt, and AI Is Compounding It Dail