#USA #Las Vegas #AI Security #Application Security #Black Duck

Black Duck's AI-Powered Application Security Enhancements at Black Hat 2025

At the Black Hat 2025 conference, Black Duck® Software, a leading provider of application security solutions, unveiled its significant upgrades to the AI-powered security assistant, Black Duck Assist™, which is now integrated with the Code Sight™ IDE plugin. These advancements are poised to reshape how developers identify and address security issues within both human-written and AI-generated code.

Seamless Integration for Developers

The Black Duck Assist is designed to streamline workflows by allowing developers to scan their code in real time. This means as they write or generate code using AI tools, any potential security vulnerabilities or compliance issues are promptly flagged. This proactive approach aims to facilitate swift resolution before moving on to subsequent tasks in the development lifecycle.

According to a report by Gartner, the integration of tools like Black Duck Assist is crucial as it bolsters the coding efficiency provided by generative AI while helping to synchronize coding activities with security measures. By doing so, it addresses the critical gap that often exists between writing code, conducting security scans, and testing software.

Features that Enhance Developer Efficiency

One of the standout features of the enhanced Black Duck Assist is its provision of AI-generated summaries of vulnerabilities. Developers benefit from receiving actionable insights, including code analysis and suggested fixes, all embedded within their familiar development environments. This eliminates the need to switch between different tools or consult security experts, significantly streamlining the coding and security reviews.

The updates also extend beyond traditional IDEs such as Eclipse, IntelliJ, and Visual Studio, now incorporating support for AI-driven code editors, including Cursor and Windsurf. This expands the possibilities for developers who utilize AI tools like GitHub CoPilot and Claude Code, ensuring that they can safely integrate AI-generated code without compromising security.

Natural Language Queries for Enhanced Usability

In a bid to bolster usability, Black Duck Assist now supports natural language queries within both the IDE and the Polaris™ platform. Users can easily access important project statistics, test results, and programming trends. This feature not only enhances productivity but also makes it easier for developers to find answers to configuration and functionality questions directly while coding.

These cutting-edge enhancements underscore Black Duck’s commitment to leveraging AI technologies to bolster its offerings. As Chief Product and Technology Officer Dipto Chakravarty stated, these advancements empower developers to build secure software more efficiently and confidently as they embrace the benefits of AI-augmented development.

Visit Black Duck at Black Hat Conference

For those attending the Black Hat Conference, Black Duck will demonstrate its enhanced Black Duck Assist within Code Sight at booth #5242 on August 6-7, 2025. This hands-on experience will allow attendees to see firsthand how powerful and user-friendly their tools have become, reinforcing Black Duck’s position as a leader in application security solutions.

In sum, Black Duck's innovations in AI-enhanced application security hold significant promise for developers aiming to ensure the security and compliance of their software. By integrating these capabilities directly into familiar development environments, Black Duck is not only addressing current security challenges but also paving the way for a new era of software development that effectively balances speed, security, and compliance.