November 2025

Reality Check on Securing AI-Generated Code

Security Professionals on the Pains, Plans, and Priorities Around AI-Generated Code

 

 

There’s a lot of buzz around AI use in software development and security. But what’s the reality?  

 

Are development teams truly handing the coding reins over to AI? And are security teams leveraging AI to find and fix code vulnerabilities? How do these teams feel about AI in software development, and do they have concerns? We recently surveyed 117 security leaders to find out.  

 
A few key takeaways?
 
  • 73% cite the introduction of new vulnerabilities as a top concern around AI-led development. 56% cite lack of visibility or control over AI-generated code as a top concern.  
  • Three-quarters say securing AI-generated code is a top or high AppSec priority in the short term. 
 
Read our survey report to get the full survey results and analysis, and to understand: 
 
  • What AI-led software concerns are keeping security professionals up at night.
  • How security teams are addressing or are planning to address AI-led software security.
  • Security teams’ visions for the evolution of AppSec in the age of AI. 
 
View the PDF by clicking the button on the right (no form!) or click below to learn more about Legit VibeGuard. 
 

View the Report (no form!):

“Legit is providing us with visibility across the entire software supply chain, which helps us minimize risk and raise analyst and engineering productivity”

testimonial-logo
Deputy Chief Information Security Officer
Netscope

“Legit significantly helps organizations to modernize application security programs by seamlessly integrating security into agile development and our modern application stack."

cboe-testimonial
Global CISO
Chicago Board of Options Exchange (CBOE)

“Legit helps us secure our CI/CD pipelines including tracking the security posture of different teams, addressing SDLC configuration drifts, and applying security resources where it can help us most."

acv-testimonial
VP of Security
ACV Auctions

"We’re able to inventory all our SDLC systems and security tools, view developer activity, and leverage this visibility and context to remediate vulnerabilities faster."

takeda-testimonial
Head of DevSecOps
Takeda Pharmaceutical Company

“Legit gives us governance out of the box, and the ability to have visualization across our SDLC to improve our developer collaboration and security best practices.”

google-mandient-testimonial
Chief Information Security Officer
Google/Mandiant
client-award-1 client-award-2-1 client-award-3 client-award-4 client-award-5 client-award-6 client-award-7 client-award-2-1 client-award-3

Value Delivered Fast

Onboard in Minutes

No agents to install. Securely leverages APIs and access tokens

One Platform, All Resources

SaaS, private cloud and on-premise
deployment options

Your Tools and Workflows

No changes required to any of them

Book a free consultation today. You’ll see how Legit can:
  • Find everything impacting your AppSec posture through a unified view of all application risk – from code to cloud.
  • Fix the issues that create the most business risk with deep context to prioritize and action remediation.
  • Prevent future risk by automating the time-intensive, manual processes associated with triage and remediation.
In addition, as you build your AppSec program, we can help you:
  • Map and visualize your entire software supply chain.
  • Optimize your vulnerability management processes.
  • Align your program with key compliance standards and frameworks.
  • Implement advanced secrets detection and prevention.
  • Identify use of GenAI in your development.

Discover more from Legit Security

ASPM - Legit Security - Featured Image Background (1)
Application Security Posture Management Platform

Legit is a SaaS security solution & ASPM platform that automates security issue discovery...

Read More
CISA Attestation - Legit Security - Featured Image Background
CISA SSDF Attestation

Legit provides comprehensive support for security frameworks leveraged to validate and demonstrate compliance.

Read More
Secure SDLC & Software Supply Chain Security - Legit Security - Featured Image Background
Software Supply Chain Security

Legit Security | Automatically discover, analyze, and secure your end-to-end software supply chain with real-time SDLC inventory...

Read More
Blog

Related posts

See more

ASPM Knowledge Base