Legit Security has released a report emphasizing major security challenges in utilizing Generative AI (GenAI) for software development, even as developers and security teams increasingly adopt it.
The report “Use and Security of GenAI in Software Development” summarizes insights from over 400 security professionals and software developers in North America. It highlights significant security challenges faced by both developers and security teams regarding the use of GenAI.
The report’s key findings include:
- Increased Use of GenAI in Software Development: 96% of security and software development professionals report that their companies use GenAI-based solutions for building or delivering applications. Among these respondents, 79% report that all or most of their development teams regularly use GenAI.
- Code Assistant Use Is Worrying: 84% of security professionals are concerned about using code assistants and cite unknown and/or malicious code as their primary concern.
- Growing Concerns Over GenAI Security: 98% believe that security teams need a better handle on how GenAI-based solutions are used in development. 94% report they need more effective ways to manage GenAI use in their company’s research and development efforts.
- Apprehension on GenAI Over-Reliance: 85% of developers and 75% of those in security have security concerns over relying too much on GenAI solutions to develop software.
- Developers Fear Loss of Critical Thinking: More developers than security professionals report concern over loss of critical thinking due to AI use in development (8% vs. 3%).
- GenAI is the Future: 95% of respondents predict that software developers will be more reliant on GenAI in the next five years, with none foreseeing reduced reliance.
Also read: NTT Data Report: How Organizations Are Transforming Business with GenAI
Liav Caspi, Co-Founder and CTO at Legit Security, commented, “As generative AI transforms software development and becomes increasingly embedded in the development lifecycle, there are some real security concerns among developers and security teams. Our research found that teams are challenged with balancing the innovations of GenAI and the risks it introduces by exposing their applications and their software supply chain to new vulnerabilities. While GenAI is undoubtedly the future of software development, organizations must be mindful of its new risks and ensure they have the appropriate visibility into and control over its use.”
The findings highlight GenAI’s crucial role in software development and the necessity for better security practices and collaboration between developers and security teams to manage emerging risks effectively.
Source: Legit Security
About Author
