Skip to main content

Code-generating tools could be more of a security hindrance than help

New research by a group of Stanford-affiliated researchers has uncovered that code-generating AI tools such as Github Copilot can present more security risks than many users may realize.

The study looked specifically at Codex, a product of OpenAI, of which Elon Musk is among the co-founders. 

Codex powers the Microsoft-owned GitHub Copilot platform, which is designed to make coding easier and more accessible by translating natural language into code and suggesting changes based on contextual evidence.

AI-coding problems

Lead co-author of the study, Neil Perry, explains that “code-generating systems are currently not a replacement for human developers”.

The study asked 47 developers of differing abilities to use Codex for security-related problems, using Python, JavaScript and C programming languages. It concluded that the participants who relied on Codex were more likely to write insecure code compared with a control group.

Perry explained: “Developers using [coding tools] to complete tasks outside of their own areas of expertise should be concerned, and those using them to speed up tasks that they are already skilled at should carefully double-check the outputs and the context that they are used in in the overall project.”

This isn’t the first time that AI-powered coding tools have come under scrutiny. In fact, one of GitHub’s solutions to improve code quality in Copilot saw the Microsoft-owned company face legal action for failing to attribute the work of other developers. The result was a $9 billion lawsuit for 3.6 million individual Section 1202 violations.

For now, AI-powered code-generating tools are best thought of as a helping hand that can speed up programming rather than an all-out replacement, however if the development over the past few years is anything to go by, they may soon replace traditional coding.

Via TechCrunch



Source: TechRadar

Popular posts from this blog

Apple Releases First Public Beta of tvOS 17

Apple today seeded the first beta of the upcoming tvOS 17 update to its public beta testing group, allowing the general public to download and test the update ahead of its September launch. Public beta testers can download the tvOS 17 beta by opening up the Settings app on Apple TV , choosing the Software Updates section under System, and then toggling on the Get Public Beta Updates option. Signing up on Apple's public beta website is also required. tvOS 17 adds FaceTime to the ‌Apple TV‌, with an iPhone or iPad serving as the camera. The ‌FaceTime‌ interface shows up on the bigger display of the TV, and Center Stage keeps you front and center as you move around the room. There's even a Split View option so you can use ‌FaceTime‌ while watching TV or playing a game on the other part of the screen. There's a revamped Control Center that makes it quicker to get to key settings and information without needing to go into the Settings app, plus it supports useful sho

Apple Releases macOS Ventura 13.4.1 With Security Fixes

Apple today released macOS Ventura 13.4, a minor update for the ‌macOS Ventura‌ operating system that was released last October. ‌macOS Ventura‌ 13.4.1 comes more than a month after the launch of macOS Ventura 13.4 . The ‌‌‌‌‌macOS Ventura‌‌‌‌‌ 13.4.1 update can be downloaded for free on all eligible Macs using the Software Update section of System Settings. According to Apple's release notes, the update provides important security fixes and is recommended for all users. Apple has also released macOS 11.7.8 and macOS 12.6.7 security updates for those who are unable to run Ventura. Related Roundup: macOS Ventura Related Forum: macOS Ventura This article, " Apple Releases macOS Ventura 13.4.1 With Security Fixes " first appeared on MacRumors.com Discuss this article in our forums Source: TechRadar

Apple Says 128GB iPhone 15 Pro Limited to 1080p ProRes Video Recording Unless External Storage Connected

ProRes video recording remains limited to 1080p quality at 30 frames per second on the 128GB model of the iPhone 15 Pro, unless the device is recording directly to a connected external storage drive , according to Apple. On the 256GB and higher iPhone 15 Pro and iPhone 15 Pro Max, ProRes video recording is supported in up to 4K quality at 60 frames per second to both internal storage and external storage. Apple does not mention this information on the iPhone 15 Pro's tech specs page on its website, but the limitation is listed when comparing the iPhone 15 Pro to another iPhone model in the Apple Store app, as seen in the screenshot below. The same limitation applied to iPhone 13 Pro and iPhone 14 Pro models with 128GB of storage, but those devices cannot record ProRes video to external storage, so at least iPhone 15 Pro users have that option this time around. The limitation does not apply to the iPhone 15 Pro Max, as that model starts with 256GB of storage. ProRes video fi

Relay FM Launches Fundraiser for St. Jude Children's Research Hospital

September is Childhood Cancer Awareness Month, and in recognition of this important cause, well-known podcast network Relay FM has launched its annual fundraiser for St. Jude Children's Research Hospital , located in Memphis, Tennessee. Since 2019, the Relay FM community has raised over $2.2 million for the hospital. St. Jude's mission statement: The mission of St. Jude Children's Research Hospital is to advance cures, and means of prevention, for pediatric catastrophic diseases through research and treatment. Consistent with the vision of our founder Danny Thomas, no child is denied treatment based on race, religion or a family's ability to pay. Relay FM has multiple Apple-related podcasts, such as Connected , hosted by Stephen Hackett, Myke Hurley, and Federico Viticci. Hackett's son received treatment at St. Jude as an infant, so this initiative is near and dear to him . Donations can be made on the Relay FM for St. Jude website , with rewards such as Relay