Using an AI coding assistant to migrate an application from one programming language to another wasn’t as easy as it looked. Here are three takeaways.

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

Two days to a working application. Three minutes to a live hotfix. Fifty thousand lines of code with comprehensive tests.

Error logs and GitHub pull requests hint at GPT-5.4 quietly rolling out in Codex, signaling faster iteration cycles and continuous AI model deployment.