GitHub previews AI-powered code scanning autofix

Uncategorized

GitHub is previewing code scanning autofix, a feature that integrates its GitHub Copilot AI assistant with its CodeQL code scanner to offer suggested fixes to found vulnerabilities. Code scanning autofix is available in a public beta to GitHub Advanced Security customers.Launched March 20, code scanning autofix makes vulnerability repairs readily available right away as a developer is coding, GitHub stated. GitHub Copilot AI is utilized to offer a code tip and explanation directly in the pull request. Code scanning autofix covers more than 90 %of alert key ins JavaScript, TypeScript, Java, and Python, and remediates more than two-thirds of discovered vulnerabilities with little or no editing, according to the company.Code scanning autofix leverages the CodeQL engine and a mix of heuristics and GitHub Copilot APIs tocreate code ideas. The function builds on the November 2023 unveiling of GitHub Application Security, which provides additional

security functions consisting of code scanning, tricks scanning, auto-triage guidelines for security signals, and reliance evaluations. These features require a GitHub Advanced Security license to run on repositories apart from public repositories on GitHub. Copyright © 2024 IDG Communications, Inc. Source

Leave a Reply

Your email address will not be published. Required fields are marked *