Securing Claude Code: Guardrails for AI-Assisted Development by Jim Manico
Jim Manico of Manicode Security showed OWASP London a disciplined approach to bootstrapping projects with Claude Code using scripted prompts that generate ARCHITECTURE, SECURITY, and CLAUDE files in sequence, each reviewed and committed before the next. His core rule: Claude never writes code directly - every change becomes a tracked GitHub issue first, giving developers review points and audit trails throughout.
→