A new study finds that while frontier AI coding models are hallucinating less than they did a year ago, they still preserve a significant amount of avoidable software risk when left ungrounded.Brian Fox, CTO and Cofounder of Sonatype, discusses research connecting these models to real-time software intelligence dramatically improves remediation quality and reduces critical and high-severity vulnerability exposure by 60–70%.The takeaway is clear: safer AI-assisted development will depend not just on better models, but on grounding them in accurate, current dependency and vulnerability data.Segment Resources: 2026 State of the Software Supply Chain report: https://www.sonatype.com/state-of-the...This segment is sponsored by Sonatype.Read the study: https://securityweekly.com/sonatypersacShow Notes: https://securityweekly.com/rsac26-2
RSAC, AI/ML, AI benefits/risks
Sonatype’s Brian Fox on coding agents getting more cautious, but not safer
An In-Depth Guide to AI
Get essential knowledge and practical strategies to use AI to better your security program.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



