Unsettling Practices in Tech: An Examination of Developers’ Risky Behaviour and the Role of AI in Tackling the Problem

In a recent survey conducted by market research firm OnePoll on behalf of Sauce Labs, shocking revelations regarding developer practices have come to light. The survey, which encompassed responses from 500 developers, provides valuable insights into the prevalence of code pushing without testing, the use of untested code generated by ChatGPT, merging pull requests without review, circumventing security protocols, unauthorized use of coworker’s credentials, increased testing responsibilities, the blurry line between laziness and overloaded tasks, the potential benefits of automation, the existence of a skills gap, and overwhelmed DevOps pipelines. This article delves into the survey findings and explores the implications for organizations and developers alike.

The survey’s most concerning finding is that a staggering 67% of developers admitted to pushing code into production without proper testing. This practice raises significant concerns about code quality, reliability, and potential risks to the systems and users they impact. Organizations must address this prevalent issue and implement proper testing protocols to ensure stability and security.

Another alarming discovery is that 60% of developers confessed to using untested code generated by ChatGPT, with 26% admitting to doing so regularly. While AI-generated code can provide efficiency and convenience, relying on untested code poses significant challenges. Organizations should emphasize the importance of thorough testing to prevent potential bugs, vulnerabilities, and unpredictable behaviour.

Merging Pull Requests without Reviews

The survey also uncovered that over two-thirds of developers merge their own pull requests without seeking a review. This practice disregards the crucial step of peer code review, which helps identify and rectify potential issues, inconsistencies, and code quality concerns. Organizations need to emphasize the importance of collaborative review processes to ensure robust codebases.

Circumventing Security Protocols

Disturbingly, three-quarters of developers confessed to circumventing security protocols, with 39% routinely doing so. This behavior poses significant risks to organizations, as it undermines established security measures and potentially exposes sensitive data and systems to unauthorized access. It is vital for organizations to address and enforce strict security protocols to safeguard their assets.

Unauthorized Use of Coworker’s Credentials

The survey revealed that a concerning 70% of developers admitted to using a coworker’s credentials to bypass access restrictions, with 41% doing so regularly. This behavior not only raises ethical concerns but also jeopardizes data integrity and system security. Organizations should foster a culture of accountability and implement measures to prevent unauthorized access.

Increased Responsibility for Testing

Interestingly, the survey found that 77% of developers have assumed more responsibility for testing over the past year. This shift may be attributed to various factors, including evolving project requirements, resource limitations, or a lack of dedicated testers. However, while developers taking on testing responsibilities can promote collaboration and efficiency, it is essential to ensure they possess the necessary expertise and resources to maintain code quality.

Laziness vs. Overloaded Tasks

The survey prompts us to question whether the observed developer practices are indicative of laziness or an overloaded workload. Increasingly, organizations have shifted more tasks to developers, resulting in overload and potential shortcuts. Striking a balance between task allocation, skill development, and workload management is crucial to avoid compromising code quality and security.

Increased Automation in DevOps Workflow

To reduce the cognitive load on developers and enhance code quality, organizations should consider automating tasks within a DevOps workflow. By automating repetitive and error-prone processes, developers can focus on higher-value activities, ensuring better code quality, improved security, and faster delivery. However, implementing automation requires careful planning, adherence to best practices, and sufficient resources.

The existence of a skills gap

The survey highlights a fundamental skills gap among developers, warranting attention from organizations and the industry as a whole. Adequate training, professional development opportunities, and mentorship programs can help address this gap, empowering developers with the necessary skills to meet evolving demands.

Overwhelmed DevOps Pipelines

With developers assuming more responsibilities, DevOps teams managing the overall codebase face overwhelmed pipelines. This situation calls for strategic resource allocation, improved workflow management, and the adoption of scalable solutions to maintain efficiency and prevent bottlenecks.

The survey’s findings shed light on concerning practices among developers, such as code pushing without testing, bypassing security protocols, and unauthorized use of credentials. Organizations must prioritize code quality, security, and collaborative processes to mitigate risks and ensure customer satisfaction. Emphasizing the importance of proper testing, implementing strict security protocols, exploring automation opportunities, addressing the skills gap, and managing DevOps pipelines effectively are steps towards building a strong developer culture and robust software development practices in the modern era.

Explore more

How Will ICP’s Solana Integration Transform DeFi and Web3?

The collaboration between the Internet Computer Protocol (ICP) and Solana is poised to redefine the landscape of decentralized finance (DeFi) and Web3. Announced by the DFINITY Foundation, this integration marks a pivotal step in advancing cross-chain interoperability. It follows the footsteps of previous successful integrations with Bitcoin and Ethereum, setting new standards in transactional speed, security, and user experience. Through

Certificial Launches Innovative Vendor Management Program

In an era where real-time data is paramount, Certificial has unveiled its groundbreaking Vendor Management Partner Program. This initiative seeks to transform the cumbersome and often error-prone process of insurance data sharing and verification. As a leader in the Certificate of Insurance (COI) arena, Certificial’s Smart COI Network™ has become a pivotal tool for industries relying on timely insurance verification.

Why Choose IT Operations Over Software Development?

Choosing Between IT Operations and Software Development In today’s rapidly evolving technology landscape, career decisions in the tech field often boil down to choosing between IT operations and software development. While software development is often celebrated for its high salaries and abundance of job opportunities, IT operations offer a compelling alternative that goes beyond financial considerations. The assumption that software

Wix and ActiveCampaign Team Up to Boost Business Engagement

In an era where businesses are seeking efficient digital solutions, the partnership between Wix and ActiveCampaign marks a pivotal moment for enhancing customer engagement. As online commerce evolves, enterprises require robust tools to manage interactions across diverse geographical locations. This alliance combines Wix’s industry-leading website creation and management capabilities with ActiveCampaign’s sophisticated marketing automation platform, promising a comprehensive solution to

Top Cryptocurrencies to Watch in June 2025 for Smart Investments

Cryptocurrencies continue to reshape financial markets and offer intriguing investment opportunities for those astute enough to navigate this rapidly evolving sector. Each month, the crypto landscape introduces new contenders and reinforces existing favorites that demonstrate potential through unique value propositions and market traction. Understanding the intricacies behind these developments is crucial for investors deliberating their next move in the digital