{"id":220248,"date":"2026-05-26T09:59:00","date_gmt":"2026-05-26T13:59:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/26\/njit-cybersecurity-research-adds-protection-to-ai-built-code\/"},"modified":"2026-05-26T10:05:10","modified_gmt":"2026-05-26T14:05:10","slug":"njit-cybersecurity-research-adds-protection-to-ai-built-code","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/26\/njit-cybersecurity-research-adds-protection-to-ai-built-code\/","title":{"rendered":"NJIT Cybersecurity Research Adds Protection to AI-Built Code"},"content":{"rendered":"<p><a href=\"https:\/\/news.njit.edu\/njit-cybersecurity-research-adds-protection-ai-built-code\">NJIT Cybersecurity Research Adds Protection to AI-Built Code<\/a><\/p>\n<p><a href=\"https:\/\/news.njit.edu\/njit-cybersecurity-research-adds-protection-ai-built-code\">https:\/\/news.njit.edu\/njit-cybersecurity-research-adds-protection-ai-built-code<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-26 09:59:00<\/a><\/p>\n<p>Source Domain: <a href=\"news.njit.edu\">news.njit.edu<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>                  Image created with AI<\/p>\n<p>          Software that will harden the security of AI-developed code is being developed at New Jersey Institute of Technology, funded by a $450,000 National Science Foundation grant.NJIT professors Zephyr Yao and Iulian Neamtiu decided they\u2019d seen enough of the downside of programming assisted by artificial intelligence \u2014 that this increasingly common process creates too many bugs \u2014 so they\u2019re taking action now before it is too late.\u201cUndeniably, more and more programmers are using AI to help them write code, and somehow this looks productive, but it carries a lot of risk. They don&#8217;t know what they&#8217;re writing, and AI-generated code may look very nice and polished, right? And it still contains security errors,\u201d Yao explained.&#8221;There&#8217;s an incoming wave of unscrutinized low-quality code generated by AI. We must act urgently to prevent that code from turning into widespread software disasters, or at least reduce the impact of such code,&#8221; Neamtiu added.Citing prior studies and their own preliminary work, Yao and Neamtiu stated that 40% of programs generated by large language models are buggy, 65% of an LLM\u2019s first attempts at code generation are simply insecure and attempting to fix these issues by adding more prompts only makes it worse.With the planned framework, not yet named, a developer would connect their code repository such as GitHub to their preferred AI system. The AI could be a mainstream system like Claude, Codex or CoPilot. It could also be something proprietary to an organization.Then, when acting on the developer\u2019s prompt, the framework adds security guardrails \u2014 \u201cNot just to write code, but also what safety rules the code has to follow. Then we check those against the generated code, look for security problems and guide AI to improve it iteratively,\u201d Yao noted.The researchers use both static and dynamic analysis, which refers to tools that examine code without actually running it and those that do. They then put the results back into iterative prompting.The framework will test for three broad bug categories: the industry-standard Common Weakness Enumeration, which refers to the current 25 most pressing vulnerabilities; ambitious tasks with substantial context, such as large open-source projects; and finally some time-consuming, difficult bugs that require true expertise, Yao said. It then applies the results locally in the user\u2019s specific code environment. The framework would also be expandable and scalable.Yao cited several challenges during the upcoming three-year project. They must correctly translate security requirements into the right context that is useful for the language model, because language models are incapable of human understanding. Their software must also scale to real-world code bases without operating too slowly.But most importantly, they need to verify that their tool\u2019s revised output is actually better than the language model\u2019s own submission.\u201cWe make it automatic. This is part of the goal [is] an automated feedback loop that checks whether generated code is more secure over time or not, and one interesting observation we had is that sometimes AI would just make things worse in the iteration. If that happens, our system, the part that performs programming analysis and verification, will stop and explain the problem instead of just blindly accepting the next wrong answer,\u201d he said.Yao said he\u2019d eventually like to see the framework integrated into AI-enabled development environments themselves, functioning as an open-source coding assistant. But whether his team members themselves will use AI in creating this framework remains to be seen. \u201cIf they do,\u201d he said, \u201cI will make sure that use of AI is secure and safe.\u201d<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>NJIT Cybersecurity Research Adds Protection to AI-Built Code https:\/\/news.njit.edu\/njit-cybersecurity-research-adds-protection-ai-built-code Publish Date: 2026-05-26 09:59:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":220249,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/news.njit.edu\/sites\/news\/files\/Gemini_Generated_Image_hya74thya74thya7.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24,17],"class_list":["post-220248","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity","tag-llm"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/220248"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=220248"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/220248\/revisions"}],"predecessor-version":[{"id":220250,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/220248\/revisions\/220250"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/220249"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=220248"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=220248"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=220248"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}