1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • This new GitHub tool will automatically fix security flaws in you

    From TechnologyDaily@1337:1/100 to All on Thu Mar 21 10:15:05 2024
    This new GitHub tool will automatically fix security flaws in your code

    Date:
    Thu, 21 Mar 2024 10:00:12 +0000

    Description:
    GitHub will scan your code automatically to check for any flaws, and it has a pretty impressive rate of picking up issues.

    FULL STORY ======================================================================

    GitHub has introduced a new AI-powered code scanning autofix feature, a convenient tool designed to automatically rectify flaws in your code.

    The new feature a blend of CodeQL and GitHub Copilot, the companys
    generative AI tool for writing and tweaking code is designed to address the process of vulnerability remediation during the coding phase with the hope of inspiring developer confidence in their codebase.

    Currently available in public beta, code scanning autofix has been automatically enabled for all private repositories among GitHub Advanced Security (GHAS) customers. GitHub code scanning autofix launches in beta

    GitHubs Pierre Tempel and Eric Tooley, authors of the new announcement , said that the feature is designed to tackle more than 90% of alert types in
    popular programming languages such as JavaScript, Typescript, Java, and Python, promising to speed up the fixing process with minimal developer intervention.

    Tempel and Tooley explained: When a vulnerability is discovered in a
    supported language, fix suggestions will include a natural language explanation of the suggested fix, together with a preview of the code suggestion that the developer can accept, edit, or dismiss.

    Moreover, code scanning autofix extends its reach to include changes across multiple files and project dependencies, which is hoped to allow
    organizations to reduce the burden on security teams, in turn allowing them
    to focus on more proactive work instead of constantly fighting vulnerabilities.

    The platform has already expressed its commitment to making this an even more valuable tool by promising upcoming support for more languages, including C# and Go.

    And of course, because this tool is in beta, the company is also keen to stress that developer feedback is vital to shaping the product, urging customers to share their findings. More from TechRadar Pro Check out the best AI tools and best AI writers GitHub reminds users to enable 2FA or lose account functionality These are the best Python online courses to get your head around the coding language



    ======================================================================
    Link to news story: https://www.techradar.com/pro/this-new-github-tool-will-automatically-fix-secu rity-flaws-in-your-code


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)