"The tech giant recently reported that its Big Sleep agent discovered a critical SQLite vulnerability and thwarted efforts to exploit it in the wild. Its latest product is CodeMender, an AI agent that not only finds security holes but also patches them. The company argues that such tools are needed because as AI gets better at discovering flaws, it will be difficult for humans to keep up with patching."
"Deepmind says CodeMender, which leverages Gemini DeepThink models, is capable of rewriting and securing existing code in order to eliminate entire classes of security bugs to prevent future exploits. CodeMender includes checks designed to ensure that the changes it makes do not cause regressions or other issues. The AI agent can reason about code - understanding and predicting the behavior of a program without actually running it - and effectively validate changes through the use of advanced program analysis and multi-agent systems."
CodeMender is an AI agent that autonomously finds and patches security vulnerabilities in code. It leverages Gemini DeepThink models to rewrite and secure existing code, eliminating classes of bugs to prevent future exploits. The agent reasons about program behavior without executing code and validates changes using advanced program analysis methods such as static and dynamic analysis, fuzzing, differential testing, and SMT solvers. CodeMender uses multi-agent systems, including a large language model–based critique tool that compares original and modified code to detect regressions and self-correct. CodeMender has provided 72 security fixes over the past six months.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]