Posted 3/20/2024, 4:00:56 PM
GitHub Launches AI-Powered Code Scanning to Automatically Fix Security Bugs During Coding
- GitHub launched a new code scanning feature that can automatically fix security vulnerabilities in code during development
- The feature combines GitHub Copilot's capabilities with CodeQL, GitHub's semantic code analysis engine
- It can remediate over 2/3 of the vulnerabilities it finds without developer edits
- It supports JavaScript, Typescript, Java, and Python, covering 90%+ of alert types
- It uses OpenAI's GPT-4 model to generate fix suggestions and explanations