31
Any AI tool to analyse a git repo for malicious code?
(discuss.tchncs.de)
Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!
Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.
Hope you enjoy the instance!
Rules
Follow the wormhole through a path of communities !webdev@programming.dev
I just want a report that says "we detected in line 27 or file X, a particular behavior that feels weird as it tries to upload your environment variables into some unexpected URL".
Yea, AI doesn't do feelings.
Most of the time that is obfuscated and can't be detected as part of a code review. It only shows up in dynamic analysis.
How can I have a serious conversation with these annoying answers? Come on, you know what I am talking about. Even an AI chatbot would know what I mean.
Any AI chatbot, even "general purpose" ones will read your code and will return a description of what it does if you ask it.
And particularly AI would be great at catching "useless", "weird" or unexplainable code in a repository. Maybe not with the current levels of context. But that's what I want to know, if these tools (or anything similar) exist yet.
Thank you.
Questions about AI seem to always bring out these naysayers. I can only assume they feel threatened? You see the same tedious fallacies again and again:
It absolutely does. I don't know where you got that weird idea.
Honey your AI girlfriend doesn’t actually love you
Define love. Good luck.
You’re right, I hope the two of you are very happy
This absolutely sent me.