From Two Years to Two Weeks: How Labelbox Erased Its Security Debt with Snyk's AI-Accelerated Remediation

Labelbox, a leading data factory based in San Francisco, successfully transformed its security operations by integrating Snyk’s AI-powered development workflows, guided by Security DevSecOps Engineer Aaron Bacchi. Initially challenged by a growing backlog of security issues and limited resources, Aaron utilized Snyk Studio combined with Cursor to efficiently clear unresolved high-severity static application security testing (SAST) issues within weeks, boosting confidence through automated validation. This innovative approach allowed Aaron to address vulnerabilities without increasing headcount, thereby freeing up time for strategic initiatives like preventing future vulnerabilities and strengthening Labelbox's security posture. The integration of AI-driven workflows not only streamlined the backlog resolution but also empowered developers to write secure code proactively, transforming the security team from a bottleneck into an accelerator and securing the company's AI-generated code effectively.