AI is reshaping how we build, test, and ship software — but it's also reshaping the attack surface. From AI-generated code sneaking past reviews to model artifacts flowing through CI/CD pipelines without integrity checks, the traditional DevSecOps playbook is no longer enough. This session takes you through the real, messy journey of retrofitting a delivery pipeline for an AI-first world — where the code is sometimes written by machines, the artifacts include model weights alongside containers, and "shifting left" means securing things that didn't exist two years ago. You'll walk away with practical patterns, hard-won lessons, and a realistic roadmap for securing your pipeline without grinding delivery to a halt.