Explore the study replicating GitHub Copilot's security vulnerabilities in Python-generated code, highlighting ongoing challenges despite updates
Authors: Vahid Majdinasab, Department of Computer and Software Engineering Polytechnique Montreal, Canada; Michael Joshua Bishop, School of Mathematical and Computational Sciences Massey University, New Zealand; Shawn Rasheed, Information & Communication Technology Group UCOL - Te Pukenga, New Zealand; Arghavan Moradidakhel, Department of Computer and Software Engineering Polytechnique Montreal, Canada; Amjed Tahir, School of Mathematical and Computational Sciences Massey University, New...
This work is partially supported by Massey University SREF funding, the Fonds de Recherche du Quebec , the Canadian Institute for Advanced Research , and the National Science and Engineering Research Council of Canada . This study aimed to replicate the work of Pearce et al. , which uncovered several security weaknesses in code suggestions generated by GitHub Copilot. The replication study focused on Python-generated code and used the same baseline of weaknesses to create the code generation prompts . Following the study of , GitHub announced an upgrade to Copilot aimed at filtering out solutions that include top CWEs.
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Behind the Scenes of Github Copilot's Code Vulnerability ManagementDiscover results of a replication study analyzing Copilot's code suggestions for CWE vulnerabilities, highlighting wins and losses in AI-generated code security
Read more »
Microsoft Surface and Copilot Event: Everything announced including new Surface laptops, Copilot+ PC and moreKris Holt joined Engadget as a contributing reporter on the news desk in 2018. He has been writing about technology, games, streaming and entertainment for over a decade after starting his career as a sub-editor on a local newspaper. Kris holds a Master of Arts degree in English from the University of Dundee.
Read more »
GitHub Copilot can now help start a project with AI, not just complete itGitHub Copilot Workspace can integrate into a GitHub library and offer step-by-step suggestions on how to start a new project.
Read more »
Revisiting Copilot's Weaknesses: A Deep Dive into Security Issues in Code GenerationDelve into the replication study of Copilot's security analysis, focusing on the diversity of weakness dimensions.
Read more »
Beyond Copilot: SentinelOne Enables Autonomous Security OperationsSteve McDowell is chief analyst at NAND Research. Steve is a technologist with over 25 years of deep industry experience in a variety of strategy, engineering, and strategic marketing roles, all with the unifying theme of delivering innovative technologies into the enterprise infrastructure market.
Read more »
Growth, popularity present security concerns, challenges for WNBAThe WNBA has always been accessible to fans. But as popularity surges and the game evolves, so must security, said league coaches and players.
Read more »