Black Duck Enhances AI-Powered Security Assistant with Real-Time Code Scanning and Fixes
Black Duck Software introduces major upgrades to its AI-powered security assistant, Black Duck Assist, integrating real-time security scanning and AI-driven fixes directly into developers' environments to streamline secure coding practices.
Black Duck Software, Inc. has announced significant enhancements to its AI-powered application security assistant, Black Duck Assist, now integrated into the Code Sight IDE plugin. This development introduces automated security scanning for AI-generated code and AI-driven code fixes, aiming to protect application code seamlessly within developer environments. The integration addresses the growing need for security in AI-augmented development, as highlighted by Gartner's insights on the importance of complementing coding efficiency gains with security measures.
The Code Sight IDE plugin enables Black Duck Assist to scan code in real time, whether written by developers or generated by AI coding assistants. It identifies security vulnerabilities and potential intellectual property violations early in the development process. Furthermore, the tool provides AI-generated vulnerability summaries, code analysis, and fix suggestions within the development environment, facilitating quick resolution of issues without the need to switch tools or consult security experts.
Expanding its compatibility, Code Sight now supports AI code editors such as Cursor and Windsurf, alongside traditional IDEs like Eclipse, IntelliJ, and Visual Studio. This expansion allows developers to safely use code generated by AI assistants such as GitHub CoPilot and Claude Code. Additionally, Black Duck Assist has introduced support for natural language queries in both the IDE and the Polaris platform, enabling users to easily access project data and product information.
Dipto Chakravarty, Chief Product and Technology Officer at Black Duck, emphasized the company's commitment to leveraging AI to enhance product security and support customers in adopting AI-augmented development confidently. The advancements in Black Duck Assist are designed to empower developers to produce secure software more efficiently. For more details, visit https://www.blackduck.com or watch the Black Duck Assist video.
Black Duck will demonstrate these new capabilities at the Black Hat Conference in Las Vegas on August 6-7, 2025, at booth #5242. This announcement marks a significant step forward in integrating security into the AI-powered development workflow, addressing critical challenges in modern software engineering.