{"id":217139,"date":"2026-02-24T17:36:00","date_gmt":"2026-02-24T22:36:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/24\/ai-gets-good-at-finding-bugs-not-as-good-at-fixing-them-the-register\/"},"modified":"2026-02-25T01:05:10","modified_gmt":"2026-02-25T06:05:10","slug":"ai-gets-good-at-finding-bugs-not-as-good-at-fixing-them-the-register","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/24\/ai-gets-good-at-finding-bugs-not-as-good-at-fixing-them-the-register\/","title":{"rendered":"AI gets good at finding bugs, not as good at fixing them \u2022 The Register"},"content":{"rendered":"<p><a href=\"https:\/\/www.theregister.com\/2026\/02\/24\/ai_finding_bugs\/\">AI gets good at finding bugs, not as good at fixing them \u2022 The Register<\/a><\/p>\n<p><a href=\"https:\/\/www.theregister.com\/2026\/02\/24\/ai_finding_bugs\/\">https:\/\/www.theregister.com\/2026\/02\/24\/ai_finding_bugs\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-24 17:36:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.theregister.com\">www.theregister.com<\/a><\/p>\n<p>What good is finding a hole if you can&#8217;t fix it? Anthropic last week talked up Claude Code&#8217;s improved ability to find software vulnerabilities and propose patches. But security researchers say that&#8217;s not enough.<\/p>\n<p>The AI biz describes the research preview capability, dubbed Claude Code Security, as a way for security teams to find and fix flaws they might otherwise have missed.<\/p>\n<p>&#8220;This is a pivotal time for cybersecurity,&#8221; the company said. &#8220;We expect that a significant share of the world&#8217;s code will be scanned by AI in the near future, given how effective models have become at finding long-hidden bugs and security issues.&#8221;<\/p>\n<p>To highlight Claude Code Security&#8217;s bug hunting potential, the company pointed to how its red team had used Claude Opus 4.6 to find &#8220;over 500 vulnerabilities in production open-source codebases.&#8221;<\/p>\n<p>Guy Azari, a stealth startup founder who worked previously as a security researcher at Microsoft and Palo Alto Networks, told The Register, &#8220;Out of the 500 vulnerabilities that they reported, only two to three vulnerabilities were fixed. If they haven&#8217;t fixed them, it means that you haven&#8217;t done anything right.&#8221;\u00a0<\/p>\n<p>Azari pointed to the absence of Common Vulnerabilities and Exposures (CVE) assignments as evidence that the security process remains incomplete. Finding vulnerabilities was never the issue, he said, pointing to his time running vulnerability management at the Microsoft Security Response Center.<\/p>\n<p>&#8220;We used to get the reports all day long,&#8221; he said. &#8220;When AI was introduced, it just multiplied by 100x or 200x and added a lot of noise because AI assumes that these are vulnerabilities, but there wasn&#8217;t like a unit that actually can show the real value or the real impact. And if it&#8217;s not there, you&#8217;re probably not gonna fix it.&#8221;<\/p>\n<p>In 2025, according to Azari, the National Vulnerability Database had a&#8230;<\/p>\n<p><a href=\"https:\/\/www.theregister.com\/2026\/02\/24\/ai_finding_bugs\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>AI gets good at finding bugs, not as good at fixing them \u2022 The Register&#8230;<\/p>\n","protected":false},"author":1,"featured_media":217140,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/regmedia.co.uk\/2025\/08\/29\/robot-overload.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,27],"class_list":["post-217139","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217139"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=217139"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217139\/revisions"}],"predecessor-version":[{"id":217141,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217139\/revisions\/217141"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/217140"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=217139"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=217139"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=217139"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}