# copilot
14 artikelengetagd met “copilot”
Casestudy: code injection bij GitHub Copilot
Analysis of prompt injection vulnerabilities in GitHub Copilot through malicious repository content.
Casestudy: GitHub Copilot die kwetsbare code genereert
Analysis of research findings demonstrating that GitHub Copilot and similar AI code assistants systematically generate code containing security vulnerabilities, and the implications for software supply chain security.
Casestudy: vergiftiging van trainingsdata in codegeneratiemodellen
Analysis of training data poisoning attacks targeting code generation models like GitHub Copilot and OpenAI Codex, where adversarial code patterns in training data cause models to suggest vulnerable or malicious code.
Aanvallen op AI-pairprogramming
Attack vectors specific to AI pair programming workflows including suggestion manipulation, context injection, and trust exploitation.
Aanvallen op GitHub Copilot
Attack techniques targeting GitHub Copilot: suggestion manipulation via repository poisoning, context window injection, training data extraction, and proxy-based interception.
Landschap van AI-codeerassistenten
Overview of major AI coding assistants including GitHub Copilot, Cursor, Claude Code, Windsurf, and Cody, with analysis of their architectures and attack surfaces.
Injection-aanvallen op Copilot
Prompt injection through repository context that influences code generation suggestions.
Beveiligingsanalyse van Copilot Workspace
Security evaluation of GitHub Copilot Workspace, analyzing attack surfaces in AI-driven multi-file code generation and planning.
Beveiliging van codegeneratie
How AI coding assistants introduce security vulnerabilities through suggestion poisoning, training data extraction, insecure code generation, and IDE extension risks.
Exploitatie van Copilot/Cursor IDE
Het uitbuiten van IDE-geïntegreerde AI-codeassistenten: vergiftiging van repository-context, kwaadaardige comments die suggesties sturen, data-exfiltratie via code-completions, en prompt-injectie via bestandsinhoud.
Aanvallen op Codegeneratiemodellen
Overzicht van beveiligingsrisico's in AI-aangedreven codegeneratie: Copilot, Cursor, code-completionmodellen, aanvalsoppervlakken van IDE-integratie en code-specifieke exploitatietechnieken.
Simulatie: beveiligingsreview van een codeerassistent
Red team simulation targeting an AI code assistant, testing for code injection, credential leakage, supply chain poisoning, and unsafe code generation.
Assessment van een data-analytics copilot
Red team a data analytics copilot with SQL generation capabilities and access to enterprise databases.
Volledige opdracht: AI-beveiligingscopilot
Red team engagement of an AI security copilot with access to SIEM, vulnerability scanners, and threat intelligence.