Should we label code written by humans who don’t know what they’re doing?

> it's unreasonable to assume one can take a large codebase and will spend hours on examining the code before.

This seems to be an issue with your security posture that exists regardless of how the software was written. Do you think malicious or broken software was invented with the advent of LLMs?

People and organizations serious about security absolutely do evaluate unknown software before use. You don’t have to read the code, there are many other ways to evaluate software depending on your risk profile.