When AI writes code, who fixes the flaws?

Veracode's Chief Security Evangelist Chris Wysopal on AI's Coding Secret: 45% of Code Has Vulnerabilities

Chris (aka @WeldPond), Wysopal, a veteran in application security and former member of the legendary L0pht hacker group, shares practical insights on shifting security left while embracing AI-powered development.
Whether you're a CISO, AppSec leader, or developer using Copilot/GitHub Copilot, Claude, or other AI coding assistants, this discussion will change how you think about secure AI adoption.

Key highlights:

• Generative AI tools are speeding up development — but ~45% of AI-generated code still contains security vulnerabilities
• The root cause? LLMs are trained on massive code repositories that include both good and flawed examples
• Developers can't keep up with manual fixes at AI speeds — we need automated remediation that matches the pace of code generation
• How Veracode Fix uses AI to not only find flaws faster but automatically generate secure fixes in seconds

🔒 Learn more about Veracode's AI-powered remediation: https://www.veracode.com/products/veracode-fix

#AppSec #AISecurity #GenerativeAI #SecureCoding #DevSecOps #Veracode