[bsfp-cryptocurrency style=”widget-18″ align=”marquee” columns=”6″ coins=”selected” coins-count=”6″ coins-selected=”BTC,ETH,XRP,LTC,EOS,ADA,XLM,NEO,LTC,EOS,XEM,DASH,USDT,BNB,QTUM,XVG,ONT,ZEC,STEEM” currency=”USD” title=”Cryptocurrency Widget” show_title=”0″ icon=”” scheme=”light” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ custom-css-class=”” custom-id=”” css=”.vc_custom_1523079266073{margin-bottom: 0px !important;padding-top: 0px !important;padding-bottom: 0px !important;}”]

AppSecAI delivers proven results showcasing AI-powered remediation as OpenAI’s Aardvark confirms AI’s AppSec potential

Machine LearningNewsSecurity
By EIN Presswire

Logo. Blue. Horizontal

Benchmarked results demonstrate accuracy of automated code remediation

AppSecAI published validated proof of automated vulnerability fixes, along with transparent efficacy metrics across 25k+ SAST triage and remediation examples, demonstrating how AI-powered remediation can empower enterprise application security teams and free developers from overwhelming “shift left” security obligations. Following OpenAI’s recent announcement of Aardvark, a private beta for AI-powered vulnerability remediation, the data from AppSecAI further validates the capabilities and impact of automated application security. AppSecAI is available now for enterprise software delivery teams.

Enterprise application security teams have long struggled to manage complex and vulnerable code bases, facing challenges that include high levels of false positives, high remediation costs and growing backlogs of unmitigated risks. Enterprise application security requires integration that augments installed tools, preserves audit and compliance infrastructure, and provides centralized triage and remediation.
AI has exacerbated many of these challenges with both vibe coding and vibe hacking, but it also offers solutions, as the Aardvark announcement and the data generated using AppSecAI products demonstrate.

Also Read: AiThority Interview Featuring: Pranav Nambiar, Senior Vice President of AI/ML and PaaS at DigitalOcean

“AI needs to serve, enhance, amplify and give agency to security professionals – not bypass them or burden developers with security decisions they’re not rewarded to make,” said Michael Cartsonis, Founder and VP of Product at AppSecAI. “AppSecAI gives application security teams the power to work with developers and drive security at portfolio scale, instead of impeding software delivery.”

AppSecAI gives application security teams the power to work with developers and drive security at portfolio scale, instead of impeding software delivery.”

— Michael Cartsonis, Founder and VP of Product
Related Posts

FVLCRUM Invests in Professional Security Consultants Through SafeTouch Security Platform

Lucid Bots Announces Lavo AI: The First Fully Autonomous Pressure Washing Robot

Mobilint Signs Strategic MOU with Lanner to Drive Edge AI Innovation

1 of 42,383

AppSecAI has published open-sourced transparent evidence, along with automated vulnerability fixes for OWASP Java Benchmark test cases on GitHub. The initial 100+ fixes were generated automatically in 42 seconds each and validated at 93% accuracy by independent application security experts reviewing novel code. Each automated fix took external security experts an average of 8.2 minutes (instead of days) to manually validate and approve—demonstrating practical efficiency gains for real-world AI-augmented security teams. The fixes are publically available, allowing anyone to examine fix quality, remediation approach, and effectiveness, and each fix eliminates the vulnerability while preserving code functionality.

Beyond Raw Functions: Empowering Application Security Teams, Enabling Developers

The challenge isn’t whether AI can detect and fix individual vulnerabilities—Aardvark shows it can. The challenge is delivering this capability in ways that empower application security teams at scale and across time.

Many security approaches target developers directly, with an emphasis on DevSecOps, but in the era of the 10x developer, this puts unnecessary strain on them, leading to product development delays and, in some cases, major security lapses. Many developers are not security experts: they know how to build features, not evaluate threat models and security implications. Inefficient use of developer time on false positives, scanner triage, and developing fixes drains productivity, and many developers do not have the experience to identify and prioritize threats as effectively.

“Application security teams exist for a reason – they understand vulnerabilities, threats, compliance, and risk in ways developers cannot and should not be expected to,” noted Cartsonis. “AI should amplify application security teams’ agency to collaboratively remediate risks at scale, not burden developers with decisions outside their expertise that drive high costs and reduce productivity.”

With AppSecAI, application security approval workflows enable security experts to quickly validate AppSecAI-generated code fixes using their expertise. Developers receive these validated fixes, not coded security remediations they’re not trained to make. This approach scales expert knowledge, allowing one security professional to efficiently validate, facilitate and accelerate fixes across multiple teams.

Also Read: The End Of Serendipity: What Happens When AI Predicts Every Choice?

[To share your insights with us as part of editorial or sponsored content, please write to ughosh@itechseries.com]
EIN Presswire

We help the world communicate - we are Everyone's Internet News Presswire™.

You might also like More from author

Comments are closed.