AI Brief%22%2F%3E%3Ccircle%20cx%3D%22760%22%20cy%3D%22180%22%20r%3D%22260%22%20fill%3D%22%23f0b84a%22%20opacity%3D%22.24%22%2F%3E%3Ccircle%20cx%3D%22110%22%20cy%3D%221040%22%20r%3D%22310%22%20fill%3D%22%23f0b84a%22%20opacity%3D%22.16%22%2F%3E%3C%2Fsvg%3E)
AI-heavy teams ship vulnerable code at 3.4 times the rate
A Checkmarx survey of 2,350 developers and security leaders found 70% see significantly more vulnerabilities in AI-generated code, while organizations with the heaviest AI use ship vulnerable code at 3.4 times the rate.
Read more
A Checkmarx report based on 2,350 developers, CISOs, and application-security managers offers a stark picture of AI-assisted software development. Seventy percent of respondents said AI-generated code contains significantly more vulnerabilities, 30% acknowledged knowingly shipping vulnerable code, and 93% reported at least one breach caused by vulnerable applications. Respondents estimated that AI now produces about 49% of production code, slightly below last year's self-reported 54%. The most consequential finding is the relationship between adoption and risk: organizations where AI generates 81% to 100% of code reported shipping vulnerable code at 3.4 times the rate of organizations in the 1% to 20% band. The survey is self-reported, but it captures a real governance gap as coding speed outpaces review and remediation processes.
Key details: 2,350 respondents, 70% report significantly more vulnerabilities, 30% knowingly ship vulnerable code, 93% report breaches, 3.4x vulnerable-code shipping rate at highest AI adoption.
Continue swiping for more AI Brief stories.