全球知名的代码托管平台GitHub近日宣布,其最新的人工智能工具已进入测试阶段,该工具能够自动检测并修复代码中的安全漏洞。这一创新功能结合了GitHub Copilot的实时编程辅助和CodeQL的语义代码分析引擎,旨在提升开发人员的工作效率,降低安全风险。
据悉,这一自动修复代码漏洞的功能在去年11月首次向公众预览,现在已进入首个测试版阶段。GitHub表示,该系统能够处理其发现的超过三分之二的代码漏洞,大部分情况下,开发人员无需手动介入,即可实现代码的自动修复,大大减轻了开发人员的工作负担。
GitHub Copilot是GitHub的人工智能代码助手,能够根据上下文自动生成代码建议,而CodeQL则是GitHub的高级代码分析工具,能够深入理解代码的结构和含义,从而精准定位潜在的安全问题。两者结合,使得这一新工具在提升开发速度的同时,也保障了代码的质量和安全性。
这一创新举措反映了GitHub对提升开发者体验和加强代码安全性的持续承诺。随着技术的不断发展,未来开发环境有望实现更智能、更自动化的安全维护,进一步推动软件开发行业的进步。
英语如下:
**News Title:** “GitHub Launches AI Code Repair Tool: Fixes Two-Thirds of Security Vulnerabilities Automatically”
**Keywords:** GitHub, code repair, artificial intelligence
**News Content:**
GitHub, the world-renowned code hosting platform, recently announced that its latest artificial intelligence (AI) tool is entering the testing phase. This tool can automatically detect and fix security vulnerabilities within code, enhancing developers’ efficiency and reducing security risks.
The innovative feature, which combines GitHub Copilot’s real-time programming assistance with CodeQL’s semantic code analysis engine, aims to streamline developers’ workflows and minimize potential security threats. The automatic code vulnerability repair function was first previewed to the public in November last year and is now entering its first beta phase.
According to GitHub, the system can handle over two-thirds of the code vulnerabilities it identifies, often allowing for automatic repairs without developer intervention, thereby significantly reducing developers’ workload.
GitHub Copilot, GitHub’s AI code assistant, generates code suggestions based on context, while CodeQL, GitHub’s advanced code analysis tool, delves into the structure and meaning of code to pinpoint potential security issues accurately. The combination of these tools ensures that development speed is maintained without compromising code quality and security.
This innovative step underscores GitHub’s ongoing commitment to enhancing developers’ experience and bolstering code security. As technology progresses, the future development environment is expected to become even more intelligent and automated in its security maintenance, further propelling the software development industry forward.
【来源】https://www.msn.cn/zh-cn/news/other/github%E7%9A%84%E6%9C%80%E6%96%B0%E4%BA%BA%E5%B7%A5%E6%99%BA%E8%83%BD%E5%B7%A5%E5%85%B7%E5%8F%AF%E8%87%AA%E5%8A%A8%E4%BF%AE%E5%A4%8D%E4%BB%A3%E7%A0%81%E6%BC%8F%E6%B4%9E/ar-BB1kenoy
Views: 1