InfoWorld

A gentle introduction to static code analysis

Static code analysis offers extensive insights into code that can help you improve code quality and security, the speed of development, and even team collaboration and planning. Here’s everything you ...
MIT Technology Review

Integrating security from code to cloud

In today’s open-source software environments, businesses need to embrace a new approach to security. In partnership withMicrosoft Azure and AMD The Human Genome Project, SpaceX’s rocket technology, ...
SiliconANGLE

Sonar expands SonarQube with advanced security for third-party open-source code

Code quality testing startup SonarSource SA today announced the upcoming release of SonarQube Advanced Security, a new offering that will extend the company’s analysis capabilities beyond first-party ...
Business Wire

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

BURLINGTON, Mass.--(BUSINESS WIRE)--Veracode, a global leader in application risk management, today unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code ...
Dark Reading

How to Vibe Code With Security in Mind

A tool can be used well or poorly, but much of the time it is neither inherently good nor bad. Take vibe coding, the act of using natural language to instruct an LLM to generate code. Applied poorly, ...
csis.org

AI-Driven Code Analysis: What Claude Code Security Can—and Can’t—Do

Q1: How does Claude Code Security function—and how does it differ from traditional static application security testing (SAST)? A1: Conventional rule-based static analysis uses pattern matching, ...
VentureBeat

Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond

Anthropic pointed its most advanced AI model, Claude Opus 4.6, at production open-source codebases and found a plethora of security holes: more than 500 high-severity vulnerabilities that had survived ...
CRN

5 Things To Know On Anthropic’s Claude Code Security

The AI platform said Friday it’s adding vulnerability scanning capabilities into its web-based Claude Code tool in a move to compete with application security vendors. Anthropic announced Friday it is ...
Infosecurity-magazine.com

Popular LLMs Found to Produce Vulnerable Code by Default

Some of the world’s most popular large language models (LLMs) are producing insecure code by default, according to a new analysis by Backslash Security. The findings demonstrate the security risks ...
Dark Reading

LLMs' AI-Generated Code Remains Wildly Insecure

The code generated by large language models (LLMs) has improved some over time — with more modern LLMs producing code that has a greater chance of compiling — but at the same time, it's stagnating in ...
Forbes

The Code Sovereignty Paradox: Why AI Productivity Is Creating A Security Debt Crisis

We are witnessing the industrialization of software development. What began as an experiment in auto-completion has evolved into a full-fledged AI-driven revolution. By early 2025, GitHub Copilot ...