The company's engineering and research teams integrated gen AI with BDSAs, using commercially available large language models. The AI system has allowed the company to send out about five times its usual number of notifications a month. Black Duck has also unveiled Polaris Assist, an AI-powered security assistant that combines existing application security tools with large language models to provide automated summaries of detected vulnerabilities and suggestions for code fixes.
Key takeaways:
- Black Duck Software uses AI to speed up the process of sending security advisories to its customers, increasing its output by about five times.
- The company developed this solution in response to a decrease in vulnerability reports from the National Vulnerability Database and an increase in flagged risks from the Linux kernel.
- Black Duck's new AI-powered security assistant, Polaris Assist, is currently in beta testing and aims to help security and development teams work more efficiently.
- The company continues to invest in AI to make application security testing and remediation easier, faster, and more scalable.