Brian Fox, CTO of Sonatype, talks about the urgent need for stronger software and AI security practices, especially as developers rapidly adopt new tools and models without proper vetting. He argues that regulatory pressure and large enterprise demand are essential to driving real change, stressing that organizations must develop visibility into all software components—including AI models—before a major security crisis forces the issue.