Welcome to the first monthly roundup of the AI code review space. April was the month that agentic code review tools stopped being a "nice to have." A wave of high-profile software breaches hit security teams in rapid succession: Vercel, Vimeo, ADT, Medtronic, Autovista, TrueConf, were all hit, plus a fresh npm supply-chain attack on April 30. Customer data, source code, internal credentials, and live infrastructure all spilled out in droves. So what's driving the uptick? New data this month points to one contributing culprit: the firehose of AI-written code flooding codebases faster than anyone can review it. ProjectDiscovery's 2026 AI Coding Impact Report, published April 22, surveyed 200 cybersecurity practitioners. 100% reported increased engineering delivery in the past year, with 49% attributing most or all of it to AI-assisted coding. Two-thirds spend more than half their time manually validating findings rather than fixing the underlying issues.…