Code is “drowning in security debt” says Veracode – and AI is both problem and solution
-
A new “State of software security” report says application code is “drowning in debt”, where debt is defined as flaws that remain for longer than a year, and that AI-generated code is no more secure than that written by humans – but it adds that AI trained on common software weaknesses (CWEs) can accelerate code fixes.
Time for Raft#
"The worst, by some measures, is Visual Basic 6 (VB6) – long deprecated by Microsoft but still running business-critical applications. " <-- the gift that keeps on giving! I was considering going with "One - Something's got to give", but decided that was too many degrees of separation.
-
A new “State of software security” report says application code is “drowning in debt”, where debt is defined as flaws that remain for longer than a year, and that AI-generated code is no more secure than that written by humans – but it adds that AI trained on common software weaknesses (CWEs) can accelerate code fixes.
Time for Raft#
"The worst, by some measures, is Visual Basic 6 (VB6) – long deprecated by Microsoft but still running business-critical applications. " <-- the gift that keeps on giving! I was considering going with "One - Something's got to give", but decided that was too many degrees of separation.
Quote:
– and AI is both problem and solution
Exactly... as every other tool, it is so good (or bad) as the one using them
M.D.V. ;) If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about? Help me to understand what I'm saying, and I'll explain it better to you Rating helpful answers is nice, but saying thanks can be even nicer.
-
A new “State of software security” report says application code is “drowning in debt”, where debt is defined as flaws that remain for longer than a year, and that AI-generated code is no more secure than that written by humans – but it adds that AI trained on common software weaknesses (CWEs) can accelerate code fixes.
Time for Raft#
"The worst, by some measures, is Visual Basic 6 (VB6) – long deprecated by Microsoft but still running business-critical applications. " <-- the gift that keeps on giving! I was considering going with "One - Something's got to give", but decided that was too many degrees of separation.