Source: securityboulevard.com – Author: Liav Caspi
Get details on Legit’s new AI capabilities.
Developers are increasingly leveraging AI to build faster and smarter. Its use has become so widespread that those not leveraging it will be left behind. In fact:
- 92% of US-based developers are using AI coding tools.
- 25% of Google’s code is generated by AI.
- 71% of businesses use AI in at least one customer-facing function.
Legit Security recently conducted its own comprehensive survey of over 400 security professionals and software developers from a wide range of industries to understand GenAI use and security. The survey found that 96% of IT professionals are using GenAI-based solutions to build or deliver applications.
AI in AppSec
How does security fit into this new picture? Ultimately, AppSec solutions, as well as developers, need to leverage AI in order to keep up with the pace, volume, and added risks of AI-enabled software development.
AI holds significant promise in addressing some long-standing AppSec challenges, including vulnerability management and remediation. With its real-time data processing, AI can help security systems manage large amounts of security data like never before. AI’s ability to convert raw information into actionable insights for investigation or automated responses is a game changer.
Reducing false positives is another area where AI will play a role, and, in fact, Legit has been using AI to reduce false positives in its secrets scanner for some time, now reducing the level of false positives by up to 92%.
We are now expanding our use of AI, making the Legit ASPM platform the most effective solution on the market.
Legit at the Forefront
Legit is, and has been, at the forefront of this AI cybersecurity shift. We’ve seen the promise of AI in AppSec for years and have been leveraging it in our platform. Now, we are pleased to announce that we have boosted our use of AI in several areas, making our ASPM platform faster, more accurate, more informative, and more powerful. These enhancements combined with our previously announced AI command center, which gives teams visibility into where and when developers are using AI, makes Legit the ideal ASPM solution for AI-driven software development.
The improved areas include:
Context and insights
Legit now leverages AI to drive advanced discovery for code-to-cloud correlation. This enhancement expands coverage to more development pipelines and greatly increases the accuracy of discovery results. Organizations can minimize their risk by automating detection of malicious models and insecure implementations of AI and gain real-time visibility into how and where AI-developed code is being used across all development environments.
Legit’s AI-enabled code-to-cloud capabilities provide a vendor-agnostic approach to pull data from multiple scanners. Legit uses AI to then correlate scans and run code analysis so that organizations can quickly identify business risks and provide contextual depth unlike any other platform.
.png?width=1245&height=356&name=graph-continer%20(3).png)
Prioritization
Legit is using AI to increase precision in issues prioritization and scoring. Legit’s risk score is now AI-assisted and has greater accuracy, precision, and explainability. Legit’s prioritization features continue to build upon its notable contextual capabilities and enable AI to analyze dozens of risk factors, delivering a contextual risk score that is much more accurate and precise than simple math-based formulae. This also extends Legit’s AI-based secrets scanning that uses AI to reduce noise and prioritize real secrets.
Security teams can easily deliver deep, contextual insights through the detection of AI false positives, exposed secrets in code, and risk scoring mechanisms, highlighting fixes that are top priority.
Remediation
Legit’s new AI-assisted remediation offers proactive methods to fix at speed with AI-generated remediation guidance. Integrated into the developer flows like pull-request checks, embedded code suggestions help developers save time on code validation.
Learn more
Note that use of these new AI-powered capabilities is completely optional, and users have full control over when and where these AI capabilities are employed based on their organization’s policies and risk tolerance.
To learn more about how we are securing and leveraging AI, visit us at RSAC Booth 3131, or contact us for a demo.
*** This is a Security Bloggers Network syndicated blog from Legit Security Blog authored by Liav Caspi. Read the original post at: https://www.legitsecurity.com/blog/announcing-new-legit-aspm-ai-capabilities
Original Post URL: https://securityboulevard.com/2025/04/announcing-new-legit-aspm-ai-capabilities/?utm_source=rss&utm_medium=rss&utm_campaign=announcing-new-legit-aspm-ai-capabilities
Category & Tags: CISO Suite,DevOps,Security Bloggers Network,AppSec,Best Practices,CISO,DEVOPS,Legit – CISO Suite,DevOps,Security Bloggers Network,AppSec,Best Practices,CISO,DEVOPS,Legit
Views: 2
