Microsoft believes its AI can accurately detect security bugs

Microsoft has announced that it has developed a new system that is able to correctly distinguish between security and non-security software bugs 99 percent of the time. The system is also able to accurately identify critical, high-priority security bugs on average 97 percent of the time.

Microsoft used a data set of 13m work items and bugs from 47,000 of its developers stored across AzureDevOps and GitHub repositories to develop a process and machine learning model that correctly distinguishes between security and non-security bugs. In the coming months, the company plans to open source the methodology on GitHub along with example models and other resources so that the system can be used to help support human experts.

Source Article