"OpenAI introduces Aardvark, an autonomous security agent that detects and resolves code vulnerabilities. The tool is now available in a private beta and is designed to help developers prevent security issues. Benchmarks show that Aardvark recognizes 92 percent of known and synthetically introduced vulnerabilities in test repositories. OpenAI has already discovered and reported dozens of vulnerabilities in open-source projects, ten of which have been assigned CVE numbers."
"Aardvark addresses this challenge by leveraging GPT-5 and reasoning technology. The tool continuously scans code repositories to identify issues before they are exploited. Unlike traditional analysis tools, Aardvark takes a more human approach. It analyzes code as a security researcher would: by reading code, running tests, and deploying tools. First, it creates a threat model based on the entire repository."
Aardvark is an autonomous security agent that detects and resolves code vulnerabilities and is available in a private beta to help developers prevent security issues. Benchmarks show Aardvark recognizes 92 percent of known and synthetically introduced vulnerabilities in test repositories. The system has discovered and reported dozens of open-source vulnerabilities, with ten assigned CVE numbers. Aardvark also uncovers logic flaws, incomplete fixes, and privacy issues and notes that about 1.2% of commits introduce bugs. The agent leverages GPT-5, continuously scans repositories, creates threat models, checks commits, runs tests, and attempts sandboxed exploits to minimize false positives.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]