PROMIT NOW · ALL SIX LENSES · 2026-04-23

◆ DAILY BRIEFING

Thursday, April 23, 2026

6 angles · 210 sources · 9,738 words · ~50 min end to end

  1. Engineer 35 sources · 9 min

    Code generation is solved — code review is now the bottleneck, and nobody has an answer yet.

    The code generation problem is solved — the code review problem is not, and it's now the binding constraint at companies like Shopify (30% MoM PR growth) and Cloudflare (131K AI reviews, $1.19 each on…

    Read full briefing →
  2. Security 35 sources · 7 min

    NIST permanently stopped enriching non-priority CVEs on April 15 — no CVSS scores, no CWE mappings, no CPE data for the vast majority of new vulnerabilities.

    NIST permanently stopped enriching most CVEs the same week a ransomware negotiator was convicted of feeding victim intelligence to BlackCat and Anthropic's restricted offensive AI model was breached t…

    Read full briefing →
  3. Data Science 35 sources · 9 min

    Google's Gemma 4 ships the most aggressive KV cache engineering in any open model — 83% memory reduction, 128K context on 8GB phones — but its 512-dimension global attention heads exceed FlashAttention-2's hard limit of 256, causing a confirmed 14x throughput penalty on every pre-Blackwell GPU (H100, A100, RTX 4090).

    Gemma 4 shipped the most sophisticated KV cache engineering in any open model — 83% memory reduction, five stacked compression techniques, 128K context on phones — but broke FlashAttention-2 on every…

    Read full briefing →
  4. Product 35 sources · 7 min

    OpenAI's GPT-Image-2 launched with API access, a +242 Elo lead over every competitor, and day-one integrations from Figma, Canva, and Adobe — if your product roadmap includes any visual generation (UI mockups, marketing assets, data visualization), your build-vs-buy calculus just flipped to 'call this API.' The image-to-code pipeline — generate a visual spec, then have Codex implement against it — is the new prototyping primitive your fastest competitors will adopt this quarter.

    GPT-Image-2 just made visual AI a one-API-call commodity (with a +242 Elo gap nobody else is close to closing), three agent platforms launched in the same week but none solved cost governance (agents…

    Read full briefing →
  5. Leader 35 sources · 10 min

    Shopify's CTO just disclosed the most detailed enterprise AI transformation data available: near-100% daily AI tool adoption, 30% month-over-month PR volume growth — and a critical revelation that the bottleneck has permanently shifted from code generation to review, testing, and CI/CD infrastructure, which no off-the-shelf tool solves.

    The AI engineering economy repriced this week across three dimensions simultaneously: Shopify proved the bottleneck has permanently shifted from code generation to review infrastructure that no vendor…

    Read full briefing →
  6. Investor 35 sources · 8 min

    While the market obsesses over $60B AI coding tool valuations, three category-formation events landed in the same week that most investors haven't priced: Bezos's Project Prometheus hit $38B in 5 months with a separate $100B manufacturing holdco behind it (physical AI is now a funded category), Anthropic's 'too dangerous' Mythos model was breached on its announcement day while Congress moves to classify ransomware as terrorism (AI security just got its SolarWinds moment), and Shopify's CTO revealed that no commercial AI code review product meets enterprise needs despite 30% month-over-month PR volume growth (a $5-10B infrastructure gap with zero winner).

    AI security just got its SolarWinds moment — Mythos breached, ransomware going terrorism-class, NIST exiting the CVE market, and the Fed convening emergency meetings — while the code review bottleneck…

    Read full briefing →