News
Sonar Surfaces Multiple Caveats When Relying on LLMs to Write Code
New SonarSource research shows LLMs like GPT-4o, Claude Sonnet 4, and Llama-3.2 produce highly functional yet risky code — with frequent high-severity vulnerabilities, hard-coded credentials, and messy “code smells” that raise long-term ...
How Gemini CLI GitHub Actions is Changing Developer Workflows
Google's new Gemini CLI GitHub Actions transforms repository management with AI-powered automation for issue triage, code reviews and collaboration ...
ArmorCode Extends AI Tool to Generate Code Fixes for Specific Runtime Environments
ArmorCode, this week at the Black Hat USA 2025 conference, revealed it has extended its Anya artificial intelligence (AI) tool to generate suggested code fixes that are customized for specific runtime environments ...
Black Duck Software Extends AI Reach to IDE to Better Secure Code
Black Duck Software, this week at the Black Hat USA 2025 conference, revealed it has now integrated its artificial intelligence (AI) tool for securing software, dubbed Black Duck Assist, into the company’s ...
Cycode Delivers AI Agent to Assess How Exploitable Vulnerabilities Are
Cycode has added an artificial intelligence (AI) agent to its application security posture management (ASPM) platform that has been specifically trained to determine how exploitable a specific vulnerability found in an application ...
BMC Extends Scope and Reach of DevOps Mainframe Workflows
BMC has extended its DevOps analytics tool for mainframe environments, dubbed BMC AMI zAdviser Enterprise, to now be able to collect Git usage data to make it simpler to identify bottlenecks and ...
Survey Surfaces Multiple Persistent DevSecOps Challenges
A survey of leaders based in North America finds 62% work for organizations that knowingly release insecure code to meet delivery deadlines ...
R Systems Picks Anysphere to Build AI Coding Practice Around Cursor
R Systems International Limited, a global systems integrator, this week revealed it is building a coding practice based on Cursor, an artificial intelligence (AI) coding tool developed by Anysphere ...
Survey Sees Argo CD Starting to Gain Significant Traction
A survey of 185 software development professionals who have adopted the Argo continuous delivery (CD) platform finds that 97% are now using it in production environments, with 60% running Argo for more ...
Survey Surfaces Widespread Adoption of AI to Build Software
A survey of 300 IT leaders finds 90% are leading teams that use artificial intelligence (AI) tools to develop applications, with 71% reporting they will not consider hiring application developers who lack ...
ControlMonkey Adds Dashboard to Manage IaC Risk
ControlMonkey today added a risk index dashboard to its automation platform for managing code created using infrastructure as code (IaC) tools based on open-source Terraform software ...
Harness Extends AI Reach to Include Generating DevOps Pipelines
Harness today extended the artificial intelligence (AI) capabilities it provides in its DevOps platform to make it possible to use plain language to create pipelines that adhere to corporate standards ...
