Last updated February 21, 2022
In AI News & Update

GitHub launches code scanner to flag security vulnerabilities

The new experimental analysis can have a higher false-positive rate relative to results from standard CodeQL analysis.

Share

Published on February 21, 2022

by Poulomi Chatterjee

GitHub has launched a machine learning-powered code scanning analysis feature to remove the common security vulnerabilities before it moves to production. The scanner will detect patterns like cross-site scripting (XSS), path injection, NoSQL injection and SQL injection. The feature is now available in public beta.

“Together, these four vulnerability types account for many of the recent vulnerabilities (CVEs) in the JavaScript/TypeScript ecosystem, and improving code scanning‘s ability to detect such vulnerabilities early in the development process is key in helping developers write more secure code,” according to the official blog.

GitHub’s code scanner uses the CodeQL analysis engine. The open source queries are written by members of the community and GitHub security experts. If any vulnerabilities are flagged, an alert pops up in the Security tab. The alerts will have an ‘Experimental’ label, and will also be shown in the Pull Requests tab.

The new experimental analysis can have a higher false-positive rate relative to results from standard CodeQL analysis. But the results will improve over time.

Access all our open Survey & Awards Nomination forms in one place

Share

Poulomi Chatterjee

Poulomi is a Technology Journalist with Analytics India Magazine. Her fascination with tech and eagerness to dive into new areas led her to the dynamic world of AI and data analytics.

Related Posts

CORPORATE TRAINING PROGRAMS ON GENERATIVE AI

Generative AI Skilling for Enterprises

Our customized corporate training program on Generative AI provides a unique opportunity to empower, retain, and advance your talent.

Upcoming Large format Conference

Data Engineering Summit 2024

May 30 and 31, 2024 | 📍 Bangalore, India

Download the easiest way to
stay informed

MKBHD Gets Gaslighted by Rabbit R1

Gopika Raj

Hume AI s EVI can make the Rabbit R1 more empathetic and ensure it never 8216 gaslights 8217 tech influencers ever again

Zerodha CTO Kailash Nadh

Zerodha CTO Warns Companies to Not Look at AI as a Solution Chasing a Problem

Vandana Nair

10 Deepfake AI Tools to Help You Create Content within Minutes

Gopika Raj

Top Editorial Picks

SBI to Leverage HCL Unica to Digitally Transform Customer Engagement

Pritam Bordoloi

African Tech Companies Prefer Zoho Enterprise over Google Workspace

Vandana Nair

Reid Hoffman Creates a DeepFake of Himself, Reid AI

Gopika Raj

GitHub Copilot Rival, Augment Secures $252 Mn at $1 Bn Valuation to Boost AI for Developers

K L Krithika

Subscribe to The Belamy: Our Weekly Newsletter

Biggest AI stories, delivered to your inbox every week.

Also in News

Commvault’s Arlie Teams Up with Microsoft to Elevate Cyber Resilience Globally

Ready or Not, AI Agents Are Coming copy

Ready or Not, AI Agents Are Coming

GPU Poor, But Luxury Rich

GPU Poor, But Luxury Rich

Why IBM is Acquiring HashiCorp

Why IBM is Acquiring HashiCorp

Healthify Uses OpenAI’s GPTs to Help Indians Make Better Health Choices

Why NVIDIA is Acquiring Run:ai

Why NVIDIA is Acquiring Run:ai

CTO Kailash Nadh Zerodha

Zerodha CTO Says He Stopped Googling Technical Stuff Over the Past Year

Smartphones Will Soon be Dead

Smartphones Will Soon be Dead

AI Courses & Careers

View All

India is a Goldmine for AI Talent

Donna Eva 15/04/2024

Top 10 LMS Platforms for Enterprise AI Training and Development

Analytics India Magazine 14/04/2024

AI Clock is Ticking: Wake Up Call for Education Institutions

Siddharth Jindal 18/09/2023

Become a Certified Generative AI Engineer

Industry
Insights

View All

Endimension funding

Healthtech AI startup Endimension Technology raises INR 6 Crore in Pre-Series A Round

Pritam Bordoloi 25/04/2024

New Relic Enhances AI Monitoring, Industry’s First APM for AI

Pritam Bordoloi 25/04/2024

BCG Predicts AI to Drive 20% of 2024 Revenues, Doubling to 40% by 2026

Shritama Saha 24/04/2024

Check our Industry Research Reports

AI Forum for India

Our Discord Community for AI Ecosystem, In collaboration with NVIDIA.

AIM Videos

Zerodha CTO Dr. Kailash Nadh Decodes AI Culture in Tech

Flagship Events

Rising 2024 | DE&I in Tech Summit

April 4 and 5, 2024 | 📍 Hilton Convention Center, Manyata Tech Park, Bangalore

MachineCon GCC Summit 2024

June 28 2024 | 📍Bangalore, India

MachineCon USA 2024

26 July 2024 | 583 Park Avenue, New York

Cypher India 2024

September 25-27, 2024 | 📍Bangalore, India

Cypher USA 2024

Nov 21-22 2024 | 📍Santa Clara Convention Center, California, USA

Data Engineering Summit 2024

May 30 and 31, 2024 | 📍 Bangalore, India

GenAI
Corner

View All

7 AI Startups that Featured on Shark Tank India Season 3

Siddharth Jindal 15/04/2024

Top 9 Semiconductor GCCs in India

Shyam Nandan Upadhyay 15/04/2024

Top 6 Devin Alternatives to Automate Your Coding Tasks

Siddharth Jindal 08/04/2024

10 Free AI Courses by NVIDIA

Shritama Saha 02/04/2024

Top 6 AI/ML Hackathons to Participate in 2024

Siddharth Jindal 22/03/2024

What’s Devin Up to?

K L Krithika 17/03/2024

10 Underrated Women in AI to Watchout For

K L Krithika 11/03/2024

10 AI Startups Run by Incredible Women Entrepreneurs

K L Krithika 08/03/2024

Data
Dialogues

View All

Fibe Leverages Amazon Bedrock to Increase Customer Support Efficiency by 30%

Shritama Saha 24/04/2024

This 18-Year-Old Programmer is Creating an Open Source Alternative to Redis

This 18-Year-Old Programmer is Creating an Open Source Alternative to Redis

Mohit Pandey 24/04/2024

Automation Anywhere Wants to Augment Humans with AI, Not Replace Them

Shritama Saha 18/04/2024

Father of Computational Theory Wins 2023 Turing Award

Shritama Saha 13/04/2024

Falcon- TII- UAE

Building Open Source LLMs is Not for Everyone

Vandana Nair 12/04/2024

This 20-year-old AI Researcher Created the much-needed Indic LLM Leaderboard

This 20-year-old AI Researcher Created the much-needed Indic LLM Leaderboard

Mohit Pandey 10/04/2024

NPCI is Exploring AI-Powered Futuristic Payment Frontiers: CTO

Pritam Bordoloi 08/04/2024

Prisma AI

Prisma AI Has an ‘Eye on You’ at Adani Airports

Vandana Nair 06/04/2024

Future
Talks

View All

ai jobs india

T-Hub Supported MATH is Launching AI Career Finder to Create AI Jobs

Pritam Bordoloi 23/04/2024

Quora’s Poe Eats Google’s Lunch

Gopika Raj 17/04/2024

Zoho teams up with Intel for optimizing video AI workloads

Zoho Collaborates with Intel to Optimise & Accelerate Video AI Workloads

Gopika Raj 08/04/2024

Rakuten Certified as Best Firm for Data Scientists for the 2nd Time

Analytics India Magazine 08/04/2024

bulls.ai

This Indian Logistics Company Developed an LLM to Enhance Last-Mile Delivery

Pritam Bordoloi 02/04/2024

Perplexity AI

Perplexity AI Reviews with Pro Access

Vandana Nair 02/04/2024

Apple WWDC 2024

What to Expect at the ‘Absolutely Incredible’ Apple WWDC 2024

Vandana Nair 31/03/2024

Code Generator

Will StarCoder 2 Win Over Enterprises?

Pritam Bordoloi 20/03/2024

Developer’s Corner

Japan is the Next Big Hub for Indian Tech Talent

Siddharth Jindal 22/04/2024

Will TypeScript Wipe Out JavaScript?

K L Krithika 21/04/2024

Meta Llama 3

Meta Forces Developers Cite ‘Llama 3’ in their AI Development

Sukriti Gupta 19/04/2024

Why Developers Hate Jira

Why Developers Hate Jira

Mohit Pandey 01/04/2024

In Case You Missed It

Which is the Most Frustrating Programming Language?

Which is the Most Frustrating Programming Language?

Mohit Pandey 18/03/2024

AI4Bharat Rolls Out IndicLLMSuite for Building LLMs in Indian Languages

Shritama Saha 15/03/2024

Google Introduces Synth^2 to Enhance the Training of Visual Language Models

K L Krithika 14/03/2024

Infosys Funds Llama 2 Project with 22 Indian Languages

Infosys Founder Funds Meta’s Llama 2 Project with 22 Indian Languages

Mohit Pandey 13/03/2024

Webstories

Excel tools

9 Best AI Tools for Excel and Google Spread Sheet Automation

Generative AI Certification Courses

8 Best Generative AI Courses for Executives and Managers

Add ChatGPT Chrome Extension Right Away

Top 8 AI Browser Extensions for Chrome Users in 2024

Dead Programming Languages

Top 5 Devin AI Alternatives for Coders and Developers

Programming language concept. System engineering. Software development.

10 Best AI Code Generator Tools to Use for Free in 2024

STAR Framework for Measuring AI Trust: Safety, Transparency, Accountability and Responsibility

What are the Responsibility of Developers Using Generative AI

Also in Trends

Synology Launches Advanced Data Management & Security Solutions Against Ransomware in India

PyTorch Releases Version 2.3 with Focus on Large Language Models and Sparse Inference

GitHub Secures Millions of Developers Through Two-Factor Authentication

90% of Indian Internet Users are already using AI, says Report

90% of Indian Internet Users are already using AI, says Report

Adobe Unveils World’s First Large-Scale GAN-based Model for Video Super-Resolution

Jensen Huang Personally Delivers First NVIDIA DGX H200 to OpenAI

Cognition Labs Devin funding

Six Months Old Cognition Labs Raises $175 Mn from Founders Fund at $2 Bn Valuation

apple

Apple Releases Four Open Source LLMs with OpenELM Series of Models

World's Biggest Media & Analyst firm specializing in AI

Advertise with us

AIM publishes every day, and we believe in quality over quantity, honesty over spin. We offer a wide variety of branding and targeting options to make it easy for you to propagate your brand.

Branded Content

AIM Brand Solutions, a marketing division within AIM, specializes in creating diverse content such as documentaries, public artworks, podcasts, videos, articles, and more to effectively tell compelling stories.

Corporate Upskilling

ADaSci Corporate training program on Generative AI provides a unique opportunity to empower, retain and advance your talent

Hackathons

With MachineHack you can not only find qualified developers with hiring challenges but can also engage the developer community and your internal workforce by hosting hackathons.

Talent Assessment

Conduct Customized Online Assessments on our Powerful Cloud-based Platform, Secured with Best-in-class Proctoring

Research & Advisory

AIM Research produces a series of annual reports on AI & Data Science covering every aspect of the industry. Request Customised Reports & AIM Surveys for a study on topics of your interest.

Conferences & Events

Immerse yourself in AI and business conferences tailored to your role, designed to elevate your performance and empower you to accomplish your organization’s vital objectives.

AIM Launches the 3rd Edition of Data Engineering Summit. May 30-31, Bengaluru

Join the forefront of data innovation at the Data Engineering Summit 2024 where industry leaders redefine technology 8217 s future

© Analytics India Magazine Pvt Ltd & AIM Media House LLC 2024