Dropbox closes design-to-code security gap

Dropbox built a system using Model Context Protocol, foundational LLMs, and its Dash AI to automatically retrieve threat models during code review and check if code changes match security requirements. The system indexes years of security reviews and engineering documentation without manual linking. This closes a common gap where security requirements get lost between design and implementation.