Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Grab it

Explore a conference talk examining the security implications of GitHub Copilot's code contributions. Delve into the assessment of AI-generated code, focusing on common vulnerabilities and weaknesses. Learn about the experiment overview, including examples of buffer overflow, use-after-free, and command injection issues. Analyze the results, discussing knowledge-based errors and the impact of prompt diversity. Gain insights into AI tools in software development and their potential security risks.

Syllabus

Introduction
What is GitHub Copilot
Language Models
Demo
Why is this happening
Common Weakness Enumeration Taxonomy
Relevance Scenarios
Three Dimensions
Experiment Overview
CWE 787 Example
Use After Free Example
Command Injection Example
Results
Knowledgebased errors
Diversity of Prompt
Verilog
Conclusions
AI Tools
Questions
Question from Fish

Taught by

IEEE Symposium on Security and Privacy

Reviews

Start your review of Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions

Taught by

Tags

In Need of 'Pair' Review - Vulnerable Code Contributions by GitHub Copilot

100+ Free Online Courses and Webinars on Artificial Intelligence in Healthcare

AI for Everyone: 10 Best Free Artificial Intelligence Courses for 2024

Never Stop Learning.