GitLab’s New AI-Based Security Feature Explains Codebase Vulnerabilities

• GitLab has launched an AI-based security feature, which will explain vulnerabilities in code to developers through LLMs.
• Earlier this month, the company released an experimental tool capable of explaining code to a user.

Leading developer platform GitLab announced the launch of a new security feature for its platform that will use artificial intelligence (AI) to explain coding vulnerabilities to developers. The company aims to automate the troubleshooting of vulnerabilities with large language models (LLMs) in the future.

Since late 2022, GitLab has launched several new features, including a code completion tool for Premium and Ultimate subscribers, a machine learning-powered suggested reviewers feature, a beta feature to create summaries of issue comments, and, lately, a tool that can explain any piece of code to a user.

The new feature for explaining vulnerabilities can help a development team quickly identify and fix vulnerabilities within a specific codebase by combining fundamental vulnerability data with recommendations on the user’s code. The feature also logs vulnerabilities that have been dismissed to help with tracking actions in compliance and audits.

See More: Google’s Brain and DeepMind Unite To Accelerate AI Breakthroughs

GitLab Aims for 10x Efficiency With IP Privacy Safeguards

The company has emphasized the importance of data privacy in terms of its AI tools. GitLab has stated that it will not use customer data for training its language models. This will prove crucial as several GitLab customers are strictly-regulated entities unlikely to take chances in terms of data leak risks.

According to the company blog, GitLab also launched a new scanner for license approval and compliance, which can verify and identify more than 500 types of licenses, minimizing the risk of users missing out on compliance parameters.

Other features that GitLab seeks to incorporate in further versions include group and subgroup-level dependency lists, continuous container and dependency scanning, management tools for compliance frameworks, and software bill of materials (SBOM) ingestion.

Do you think artificial intelligence will play a greater role in development requirements in the future? Let us know on LinkedInOpens a new window , TwitterOpens a new window , or FacebookOpens a new window . We would love to hear from you!

Image source: Shutterstock

MORE ON ARTIFICIAL INTELLIGENCE

• Elon Musk Challenges Microsoft With TruthGPT and a Twitter Lawsuit
• Google Speeds Up Efforts to Rival Microsoft in AI Search
• AI Cracker Can Guess Over Half of Common Passwords in 60 Seconds
• Release of AutoGPT and Improvements to Bard Challenge ChatGPT Supremacy