"Rather than relying completely on scans that are run as code is moving through a continuous integration/continuous delivery (CI/CD) pipeline, Checkmarx Developer Assist can eliminate 90% of vulnerabilities before they enter the DevOps workflow, said Kinsbruner. That's critical because the first generation of AI coding tools are creating more vulnerabilities that, unless discovered and remediated, are actually making applications less secure than ever, he added."
"Most of those issues can be traced back to the vulnerabilities that existed in the open source code that was used to train the large language model (LLM) that the AI coding tool invokes, noted Kinsbruner."
"The Checkmarx IDE extension for Kiro is designed to be activated from within the Developer Assist tab that AWS provides within the AI coding tool. Once authenticated, Developer Assist analyzes source code and dependencies in the active workspace, applying policies automatically via the Checkmarx One platform that already runs on the AWS cloud."
Checkmarx added support for AWS Kiro to Developer Assist, enabling the Checkmarx IDE extension to be activated from the Developer Assist tab inside the AI coding tool. Once authenticated, Developer Assist analyzes source code and dependencies in the active workspace and applies policies automatically via the Checkmarx One platform running on AWS. Developer Assist already supports Cursor, Windsurf and other VS Code–based AI coding tools. Support for Kiro required additional integration with Kiro Powers, specialized agents that enable developers to invoke steering files extending AWS’s specification-based approach to improve generated code quality. Developer Assist can eliminate 90% of vulnerabilities before they enter the DevOps workflow, and many early AI-generated issues stem from vulnerable open source code used to train LLMs.
Read at DevOps.com
Unable to calculate read time
Collection
[
|
...
]