Personal Stories – Richard Callaby

Does A.I. help or slow down developers?

Is AI Slowing Down Senior Developers—and Is It Worth It for Business?

Artificial Intelligence (AI) and chatbot-based coding assistants promise to enhance productivity in the workplace. Yet emerging evidence suggests that experienced developers often experience slower performance when using these tools—and this raises important questions about their usefulness in high-skill business contexts.

What the Research Shows: Senior Developers May Be Slower with AI

A controlled trial by METR involving 16 veteran developers using tools like Cursor Pro and Claude Sonnet found that AI increased task completion time by ~19%, despite participants expecting a 20–24% speed-up. Time was lost reviewing and correcting flawed outputs and dealing with context mismatches.
Another controlled Google study with 96 full-time engineers found a 21% reduction in time spent, but specifically observed that developers with more code experience benefited more—suggesting the effectiveness of AI varies significantly across experience levels .

Broader Industry Findings: Productivity Gains Are Real—but Uneven

Stack Overflow’s Developer Survey (2024): Most users report satisfaction and perceived productivity increases with tools like GitHub Copilot and ChatGPT. However, 38% of users say the code was inaccurate half the time, and many questioned reliability. Nearly half believe AI performs poorly on complex tasks, with mistrust of output (66%) and lack of project context (63%) commonly cited issues.
Qodo’s AI code quality report (June 2025): 78% of developers say AI tools improved productivity, but 65% say AI misses critical task context, and 76% don’t fully trust generated code—necessitating manual review that slows workflows.
LeadDev Engineering Leadership Report (June 2025): Among 617 senior engineering leaders surveyed, only 6% saw significant productivity improvements from coding AIs, and 39% observed small gains of 1–10%.

Experimental Studies: Junior vs. Senior Developer Benefit

A McKinsey case study shows generative AI can cut time spent on tasks like documentation or refactoring by up to 50%, but carries warning that domain-specific complexities require careful implementation for sustained benefits.
In a field experiment at Microsoft and Accenture, Copilot users generated 26% more pull requests per week, but productivity gains were significantly higher for junior developers; senior developers saw no statistically significant improvement in several cases.
Another randomized experiment reported tasks completed nearly 56% faster when using AI pair programming—though this largely benefitted less experienced users.
MIT Sloan analysis similarly found that AI assistance yields small speed gains but slight quality reductions for highly experienced professionals, while lifting both speed and quality for lower-skilled workers.

Why Do Senior Developers Often Slow Down?

Context mismatch: AI lacks deep awareness of proprietary codebases, architectural patterns, and business logic—leading to suggestions that require heavy validation or rejection.
Review overhead: Experienced developers report spending more time verifying and cleaning AI output than writing code manually—especially for complex or critical tasks (IT Pro, TIME).
Trust gap: Many professionals don’t fully trust AI-generated code, especially in high-stakes production environments, which undermines adoption (PR Newswire).

Should Businesses Still Use AI Tools?

Yes—but with caution. The value of AI tools depends heavily on the user and task:

For junior or less experienced developers, or for well-scoped repetitive tasks like documentation, boilerplate, or initial prototyping, studies consistently show meaningful productivity gains (20–50%).
For senior professionals, the benefits are far smaller—and may even reverse, especially when tools are applied to complex, context-rich tasks. Manual overhead and mistrust can outweigh any time saved.
In other domains such as support, marketing, or finance, composable AI has been shown experimentally to improve throughput on common tasks by ~15% on average—but with greater gains for less-experienced employees. High-skill workers may see minimal benefit or slight quality tradeoffs.

Practical Guidelines for Businesses Considering AI

Define clear use cases—focus on low-complexity, high-volume tasks where AI has demonstrated consistent gains.
Involve senior staff early in evaluation and rollout to assess real-world fit.
Provide training in prompt design and oversight—not just tool usage.
Monitor real productivity metrics—don’t rely solely on perceived or anecdotal improvements.
Ensure human-in-the-loop review for complex areas to maintain code quality and security.

References

Paradis et al. (Google RCT): ~21% faster development time with AI for some users (arXiv)
METR real-world trial with seniors: AI increased task time ~19% (IT Pro)
Stack Overflow Developer Survey: user satisfaction vs. accuracy concerns (codesignal.dev)
Qodo report (June 2025): widespread adoption but major trust/context issues (PR Newswire)
LeadDev Engineering Leadership Report: only 6% report major gains (LeadDev)
McKinsey case study: time savings, dependent on domain complexity (McKinsey & Company)
Field experiment at Microsoft/Accenture: 26% more PRs, junior-most gains (InfoQ)
Lab experiment: 55.8% faster with AI pair programming for novices (arXiv)
MIT Sloan / Brynjolfsson et al.: heterogeneity by skill (arXiv)

Final Thoughts

Yes, AI coding assistants and chatbots show real productivity benefits in controlled and real-world settings—but those gains are heavily skewed toward junior developers and routine tasks. For senior developers and complex workflows, current-generation tools may slow progress unless carefully scoped and managed. Businesses should adopt AI strategically—focusing on the right use cases, measuring actual impact, and preserving human oversight.

Can we create a MENTAT school?

Toward a Mentat School: A Human Cognitive Response to Artificial Intelligence

As artificial intelligence continues to evolve at an unprecedented pace, there is growing interest in enhancing human cognitive performance—not just through technology, but through disciplined training of the mind itself. One theoretical framework for such a development comes from Frank Herbert’s Dune universe: the Mentat—a human trained to perform data analysis, decision-making, and pattern recognition at a level rivalling or exceeding machine intelligence. While fictional, the idea of training a human “computer” raises valid questions in neuroscience and education: Can we systematically train the human brain to optimize memory, reasoning, and intelligence in a structured environment?

This article explores the theoretical underpinnings and proposed structure of a real-world Mentat School, based on verifiable findings in cognitive science, neuroplasticity, and educational psychology.

Cognitive Enhancement Through Training

Modern research strongly supports the idea that specific forms of mental training can lead to measurable improvements in cognitive performance. Techniques such as working memory training, dual n-back exercises, and spaced repetition systems (SRS)—like those used in language-learning tools such as Anki—have been shown to enhance memory and attention capacity (Jaeggi et al., 2008; Carpenter et al., 2012).

Further, deliberate practice in problem-solving and logical reasoning, such as those employed in mathematics, philosophy, and chess, correlates with improvements in fluid intelligence (Sala & Gobet, 2017). These enhancements do not make someone superhuman, but a structured program combining them can yield significantly above-average performance over time.

Educational Foundations of a Mentat School

A Mentat School would blend ancient techniques of mental discipline with modern cognitive science. Key elements might include:

Memory Systems Training: Students would learn mnemonic systems such as the method of loci, peg systems, and chunking, as well as practice long-form memorization (used by competitive memorizers and oral tradition cultures).
Critical Thinking and Logic: Borrowing from the trivium (grammar, logic, rhetoric), students would engage in structured argumentation, dialectical reasoning, and formal logic training—similar to debate and philosophy curricula.
Mathematical and Probabilistic Reasoning: Inspired by Bayesian decision theory and heuristics research (Kahneman & Tversky), students would be taught to think probabilistically, estimate outcomes, and update beliefs rationally.
Sensory Data Training: Analogous to observational disciplines like forensics or Sherlock Holmes’ method, students would train their attention through mindfulness, observational exercises, and pattern recognition drills.
Cognitive Load and Focus Management: Emphasis would be placed on mindfulness, meta-cognition, and Pomodoro-style timeboxing to optimize attention and avoid mental fatigue—essential in a world flooded with information.

Implementation Model

A practical Mentat School could be structured similarly to elite academic institutions or specialized bootcamps. Programs would be immersive, with rigorous daily regimens focusing on measurable skill acquisition. Much like language immersion or military intelligence schools, participants would undergo continuous assessment and feedback.

Curriculum design would follow Mastery Learning models (Bloom, 1968), ensuring students only progress after demonstrating proficiency. Incorporation of AI-based tutoring systems (e.g., Khan Academy’s mastery-based learning AI) could assist instructors and personalize education at scale.

Virtual or hybrid delivery could democratize access. Students from diverse backgrounds could be trained using open-source tools and virtual mentors—reminiscent of Massive Open Online Courses (MOOCs), but far more interactive and intensive.

Ethical and Societal Implications

Training humans to become “Mentats” raises ethical questions. Who gets access? What are the risks of cognitive overreach or burnout? Could such training exacerbate inequality if only available to elites?

Nonetheless, the proposal offers a hopeful counterweight to techno-pessimism. In a future where AI systems challenge human utility, cultivating peak human cognition may be one of the best ways to maintain autonomy, relevance, and creativity.

As AI continues to climb, a Mentat School could ground us—not in competition with machines, but in conscious mastery of our most vital asset: the human mind.

References:

Jaeggi, S. M., et al. (2008). Improving fluid intelligence with training on working memory. PNAS.
Sala, G., & Gobet, F. (2017). Does chess instruction improve school achievement? Educational Research Review.
Bloom, B. S. (1968). Learning for Mastery. UCLA-CSEIP.
Carpenter, S. K., et al. (2012). Using spacing to enhance diverse forms of learning: Review of recent research and implications for instruction. Educational Psychology Review.
Kahneman, D., & Tversky, A. (1979). Prospect Theory: An Analysis of Decision under Risk. Econometrica.

Paying for a DDOS Attack? Why you should never consider this as an option!

The reason that prompted this article is that one of the Twitch streamers who also stream on YouTube was attacked by a DDOS attack while broadcasting. You should know that doing this type of attack on someone you may not like can and will result in severe legal penalties.

If you are caught paying for or carrying out a DDoS attack, you could face criminal charges such as computer fraud, hacking, and cyberstalking.

It is important to note that paying for or carrying out a distributed denial-of-service (DDoS) attack on someone, even if you may not like them, is illegal and can result in severe legal consequences. A DDoS attack involves flooding a target’s network or website with an overwhelming amount of traffic, rendering it inaccessible to users.

If you are caught paying for or carrying out a DDoS attack, you could face criminal charges such as computer fraud, hacking, and cyberstalking. These charges carry hefty fines, imprisonment, and damage to your reputation and future employment opportunities. In some cases, the victim may also be able to file a civil lawsuit against you, seeking damages for the harm caused.

In the case of trying to DDoS someone off of broadcasting on Twitch or YouTube, it is important to note that these platforms have strict guidelines and policies against such behavior. Attempting to DDoS a streamer or content creator on these platforms can result in suspension or permanent termination of your account, as well as legal consequences.

In addition to the potential legal consequences, paying for or carrying out a DDoS attack can also have serious ethical implications. It is important to respect the privacy and online security of others and to resolve conflicts through legal and ethical means rather than resorting to cyber attacks.

It is never legal or ethical to carry out or pay for a DDoS attack on someone, regardless of the reason. Such behavior can result in serious legal consequences, as well as damage to your reputation and future opportunities. It is important to respect others’ privacy and security online and to resolve conflicts through appropriate channels.

Going Back to the Basics? An argument against using Web Frameworks.

There is a growing movement in the web development community to return to the basics of building websites using just HTML, CSS, and JavaScript. This approach often referred to as “vanilla” web development, is seen as an alternative to using frameworks such as React, Vue, and Angular.

One of the main arguments for using vanilla web development is that it allows for greater flexibility and control over the final product. Frameworks can be restrictive in terms of the design and layout of a website while using just HTML, CSS, and JavaScript allows for complete freedom in how the website is built. Additionally, using vanilla web development allows developers to have a deeper understanding of how the website is functioning and how it is interacting with the browser, which can be beneficial for troubleshooting and debugging.

Another argument for using vanilla web development is that it can be more performant than using frameworks. Frameworks often add an additional layer of abstraction between the developer and the browser, which can lead to slower load times and increased memory usage. By using just HTML, CSS, and JavaScript, the browser can render the website more efficiently and quickly.

There are also benefits to using vanilla web development in terms of maintainability and scalability. Frameworks are constantly evolving and updating, which can make it difficult to keep up with the latest changes. With vanilla web development, the codebase is simpler and more straightforward, making it easier to maintain and update over time. Additionally, since the codebase is not tied to a specific framework, it can be more easily scaled and adapted to new technologies in the future.

However, it’s important to note that using frameworks can be beneficial in certain situations, such as when building complex, large-scale applications. Frameworks like React and Vue provide a set of tools and best practices that can make it easier to manage and organize large codebases. They also often provide additional features such as state management and built-in performance optimization.

In conclusion, there are valid arguments for using vanilla web development instead of frameworks when building websites. Vanilla web development allows for greater flexibility and control, can be more performant, and is generally easier to maintain and scale. However, it’s important to evaluate the specific needs of a project and weigh the pros and cons of each approach before making a decision.

Preparing for a CyberSecurity Interview – Things to Know.

When it comes to preparing for a cybersecurity interview, it is important to be familiar with a wide range of topics and concepts related to the field. Below are some key questions you should be prepared to answer in order to demonstrate your knowledge and qualifications as a cybersecurity professional:

What is a firewall, and how does it work? A firewall is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules and policies. Firewalls can be implemented in hardware, software, or a combination of both and are designed to protect a computer or network from unauthorized access.
What is a VPN and how does it work? A Virtual Private Network (VPN) is a secure, encrypted connection between two networks or between a network and an individual device. VPNs are used to protect sensitive data and secure online communications by encrypting all data and routing it through a secure tunnel.
What is the difference between a white hat hacker and a black hat hacker? White hat hackers are ethical hackers who are hired to test and secure networks, systems, and applications. They use their knowledge and skills to identify vulnerabilities and weaknesses in order to improve security. On the other hand, black hat hackers are individuals or groups who use their skills and knowledge to gain unauthorized access to networks, systems, and applications with the intent to steal or damage data.
What is the difference between encryption and hashing? Encryption is the process of converting plain text into coded text that can only be read by someone with the right key or password. It is used to protect sensitive data and ensure that it remains confidential. Hashing, on the other hand, is a one-way process that converts plain text into a unique, fixed-length string of characters. It is used to verify the integrity of data by ensuring that it has not been tampered with.
What is the purpose of an intrusion detection system (IDS)? An intrusion detection system (IDS) is a security tool that monitors network traffic and activities in order to detect and alert to suspicious or malicious behavior. IDS can be configured to detect a wide range of security threats, including viruses, worms, and other malware, as well as unauthorized access attempts.
What is the difference between a security incident and a security breach? A security incident is any event or activity that could potentially threaten the confidentiality, integrity, or availability of an organization’s data or systems. A security breach, on the other hand, is a specific type of security incident in which a hacker or other malicious actor is able to successfully access and extract sensitive data.
What is the difference between a vulnerability and a threat? A vulnerability is a weakness or flaw in a system or application that can be exploited by a hacker or other malicious actor. A threat, on the other hand, is any potential source of harm or danger to a system or organization.
What is the purpose of a penetration test? A penetration test is a simulated attack on a system or network in order to identify vulnerabilities and weaknesses that could be exploited by a hacker. The goal of a penetration test is to identify and prioritize vulnerabilities so that they can be addressed and mitigated before they can be exploited.
What is the purpose of a risk assessment? A risk assessment is a process of identifying and evaluating the potential risks and hazards associated with a system or organization. It is used to understand the likelihood and impact of potential security incidents and to identify the necessary controls and countermeasures to mitigate those risks.
What is the purpose of incident response planning? Incident response planning is the process of developing and implementing procedures and protocols for detecting, and responding to.

These are just some of the more basic items to know. Being prepared also means being prepared for what you may be asked and that is the result of doing your research.

Writing Consistently – What to do if you have a blog

First and foremost, writing consistently helps to establish your blog as a reliable source of information. When you publish new content on a regular basis, your readers will come to expect it and will be more likely to visit your blog frequently to see what you have to say. This can help to build a loyal readership and increase the overall popularity of your blog.

Additionally, writing consistently can help you to improve as a writer. The more you practice, the better you will become at crafting compelling and engaging content. This can be especially important if you are using your blog as a platform to share your thoughts and ideas with the world.

Furthermore, writing consistently can help to boost your search engine rankings. Search engines such as Google favor websites that publish fresh, relevant content on a regular basis. By consistently updating your blog with new content, you can improve your chances of ranking higher in search results, which can lead to more traffic and greater visibility for your blog.

Another important reason to write consistently is that it can help to keep you motivated and inspired. When you are in the habit of writing regularly, it can be easier to come up with new ideas and to stay focused on your goals. This can be especially useful if you are using your blog as a creative outlet or as a way to share your expertise with others.

Finally, writing consistently can help to build your personal brand and reputation. By consistently sharing your thoughts and ideas with the world, you can establish yourself as a thought leader in your field and build a reputation for expertise and knowledge.

Overall, there are many benefits to writing consistently when maintaining a blog. By publishing fresh, relevant content on a regular basis, you can establish your blog as a reliable source of information, improve your writing skills, boost your search engine rankings, stay motivated and inspired, and build your personal brand and reputation.

This post among all the others is part of my plan to write every day of this year. So far I haven’t missed a day yet, and if I do happen to miss a day then I plan on publishing twice on the next day.

Being Consistent on GitHub – My thoughts.

Maintaining a consistent presence on GitHub is important for any developer, especially if you are looking to use the platform to showcase your work and skills to potential employers or clients. One key aspect of this is regularly pushing updates to your profile.

But what does it mean to be consistent in pushing updates to your GitHub profile, and why is it important?

Consistency refers to the regularity and frequency with which you make updates to your profile. This could be anything from committing new code to existing projects, to creating new repositories for new projects. By updating your profile consistently, you demonstrate to others that you are actively engaged in your work and are committed to keeping your skills and knowledge up to date.

There are several benefits to being consistent in pushing updates to your GitHub profile. First and foremost, it helps to build your credibility as a developer. When others see that you are consistently committing code and working on new projects, they are more likely to view you as a skilled and reliable developer. This can be especially important if you are using GitHub as a way to attract potential employers or clients.

In addition, consistency can also help you to improve your own skills and knowledge. By regularly working on new projects and committing code, you are able to stay up to date with the latest technologies and best practices in the field. This can help you to continue learning and growing as a developer, which is essential in an industry that is constantly evolving.

So, how can you be more consistent in pushing updates to your GitHub profile? Here are a few tips:

Set aside dedicated time for coding and updating your profile. This could be a few hours each week, or even just a few hours each month. The important thing is to make sure you are consistently setting aside time to work on your projects and update your profile.
Use tools like GitHub’s own project management features or external project management tools to help you stay organized and on track. This can make it easier to prioritize your work and ensure that you are consistently making progress on your projects.
Make use of GitHub’s collaboration features. By working with others on projects, you can help to ensure that you are consistently committing code and updating your profile. This can also be a great way to learn from others and expand your skillset.
Consider joining or starting a coding group or community. This can be a great way to stay motivated and accountable, as well as to learn from and collaborate with other developers.
Don’t be afraid to take on new challenges. Pushing yourself to work on new and difficult projects can be a great way to improve your skills and keep your profile up to date.

Overall, being consistent in pushing updates to your GitHub profile is important for any developer who wants to build their credibility, improve their skills, and stay engaged in their work. By setting aside dedicated time for coding, staying organized, and taking on new challenges, you can ensure that you are consistently making updates to your profile and staying active on the platform.