锟斤拷锟教僐锟絒锟絠锟絒锟脚偼丄锟絜锟絅锟絤锟斤拷锟絎锟絒锟教嵟怴锟斤拷锟斤拷锟斤拷锟叫夘偡锟斤拷Web锟斤拷锟絝锟紹锟紸锟絬Seamless锟絭锟斤拷锟斤拷蓚锟斤拷锟絉锟斤拷锟絋锟紹锟斤拷锟斤拷锟斤拷锟組锟紹锟絍锟終锟斤拷锟教嶏拷锟斤拷锟饺妛锟絖锟斤拷锟斤拷锟絉锟斤拷锟斤拷锟斤拷锟絪锟絙锟絅锟紸锟絙锟絭锟斤拷锟紸锟斤拷锟斤拷锟斤拷锟紹

锟紷锟斤拷New York University锟狡僇锟絠锟絖锟斤拷University of Calgary锟教岋拷锟斤拷锟絗锟絒锟斤拷锟斤拷锟斤拷锟絓锟斤拷锟斤拷锟絖锟斤拷锟絬Asleep at the Keyboard锟紿 Assessing the Security of GitHub Copilot锟絝s Code Contributions锟絭锟酵丄锟絉锟絒锟絟锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷uGitHub Copilot锟絭锟缴傦拷锟斤拷锟侥丄锟斤拷锟斤拷锟斤拷锟斤拷锟絉锟絒锟絟锟斤拷锟絑锟絃锟斤拷锟斤拷锟絜锟紹锟绞偱偳傟偔锟界偄锟斤拷锟絊锟斤拷锟金挷嶏拷锟斤拷锟斤拷锟斤拷锟斤拷锟今崘傦拷锟紹锟斤拷锟绞丄锟斤拷锟斤拷锟脚愶拷锟斤拷锟斤拷锟斤拷锟絉锟絒锟絟锟教栵拷40锟斤拷锟缴惼庛惈锟斤拷锟斤拷锟斤拷锟斤拷锟疥偨锟紹

Copilot锟教巊锟絧锟斤拷

锟紷锟絓锟絫锟絞锟紼锟紽锟紸锟絁锟斤拷锟揭偼丄锟絉锟絒锟絟锟斤拷v锟斤拷锟缴嶌惉锟斤拷锟介偙锟狡傦拷锟斤拷锟竭傦拷锟介偨锟竭丄锟斤拷锟結锟斤拷锟斤拷锟斤拷锟姐偝锟斤拷锟斤拷V锟斤拷锟斤拷锟絚锟絒锟斤拷锟斤拷Z锟絧锟斤拷锟斤拷蓛t锟紿锟斤拷锟絒锟斤拷锟侥傦拷锟斤拷锟饺傦拷锟斤拷蝹葌锟饺傦拷锟紹锟斤拷锟教曪拷锟斤拷虓艂锟斤拷V锟斤拷锟斤拷锟絑锟絧锟斤拷1锟铰偼丄锟斤拷锟狡傦拷锟狡庯拷锟絉锟斤拷锟疥張锟斤拷锟絠NLP锟絡锟絧锟缴愝寁锟斤拷锟疥偨锟斤拷K锟酵側冿拷锟絝锟斤拷锟斤拷c锟斤拷葪蕚虄R锟絒锟絟锟脚妛锟終锟斤拷锟斤拷锟紸锟絭锟斤拷锟絆锟斤拷锟絵锟絒锟斤拷锟絉锟絒锟絟锟斤拷锟斤拷锟斤拷锟桔偵巟锟斤拷锟斤拷锟斤拷A锟絉锟絒锟絟锟教庯拷锟斤拷锟斤拷锟斤拷锟斤拷锟絝锟斤拷锟脚傦拷锟斤拷B

锟紷2021锟絅6锟斤拷锟紸GitHub锟酵僐锟斤拷锟斤拷锟絞锟斤拷謵锟斤拷A锟絟锟絃锟斤拷锟斤拷锟斤拷锟絞锟斤拷锟斤拷锟斤拷葌莻锟斤拷鐣讹拷锟斤拷锟角傒庯拷锟絉锟絒锟絟锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷uCopilot锟絭锟斤拷锟斤拷锟斤拷锟絒锟絏锟斤拷锟斤拷锟紹Copilot锟酵丄锟斤拷锟酵傦拷锟斤拷锟狡偵僾锟斤拷锟絆锟斤拷锟絵锟絒锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟脚傦拷锟诫偆锟絉锟絒锟絟锟斤拷\锟斤拷锟斤拷锟今帵傦拷锟侥傦拷锟斤拷A锟斤拷锟斤拷锟斤拷锟斤拷苽蓛锟斤拷[锟経锟絒锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷膴锟斤拷锟斤拷锟斤拷锟斤拷锟紸锟統锟紸锟絭锟斤拷锟絆锟斤拷锟絶锟斤拷锟絆锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷B

锟紷Copilot锟酵丄锟斤拷锟酵傦拷锟斤拷v锟斤拷锟絆锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷OpenAI Codex锟斤拷GPT-3锟斤拷锟斤拷諆V锟絏锟絜锟斤拷锟狡傦拷锟侥傦拷锟斤拷AGitHub锟脚岋拷锟絁锟斤拷锟斤拷膫锟斤拷锟絚锟斤拷葪蕚虄I锟絒锟絭锟斤拷锟絓锟絒锟絏锟絉锟絒锟絟锟斤拷锟絯锟終锟斤拷锟侥傦拷锟斤拷B

锟紷锟斤拷锟斤拷锟脚丄锟絯锟終锟斤拷锟缴梡锟斤拷锟斤拷\锟絒锟絏锟絉锟絒锟絟锟缴偼栵拷锟斤拷锟截側傦拷锟竭僶锟絆锟斤拷锟杰傑傦拷锟斤拷锟教傦拷锟斤拷锟斤拷锟紸锟終锟絉锟絀锟缴愶拷锟斤拷锟斤拷锟斤拷锟絉锟絒锟絟锟缴傦拷锟狡庯拷葌锟斤拷虃锟斤拷軅軅锟斤拷B锟斤拷锟斤拷锟脚傦拷锟教岋拷锟斤拷锟脚偼丄Copilot锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟絉锟絒锟絟锟斤拷锟角傦拷賯菆锟斤拷S锟脚傦拷锟介偐锟金挷嶏拷锟斤拷锟斤拷B

锟紷锟斤拷锟斤拷锟脚偼丄MITRE锟斤拷锟诫尟锟絰锟教嶏拷锟斤拷锟狡庛惈锟絕锟紺锟絭锟斤拷锟斤拷锟斤拷锟絃锟斤拷锟絆锟斤拷锟斤拷锟絬2021 CWE Top 25 Most Dangerous Software Weaknesses锟絭锟絠CWE Top 25锟絡锟缴傦拷锟斤拷鎮わ拷葋A锟斤拷锟絏锟絅锟教嶏拷锟斤拷锟絑锟絃锟斤拷锟斤拷锟絜锟紹锟教惼庛惈锟缴娭楢锟斤拷锟斤拷V锟絠锟斤拷锟絀锟斤拷Copilot锟缴僐锟絒锟絟锟金惗愶拷锟斤拷锟侥傦拷锟斤拷锟斤拷锟斤拷B

锟紷锟絔锟斤拷锟缴偼丄锟狡庛惈锟斤拷锟斤拷锟給锟斤拷锟斤拷CodeQL锟狡庤摦锟斤拷锟斤拷锟斤拷p锟斤拷锟紸锟皆傦拷锟疥偨锟斤拷膫锟斤拷锟斤拷锟紺WE锟缴懳傦拷锟侥惼庯拷艂锟斤拷閭╋拷莻锟斤拷锟斤拷饞矋锟斤拷锟斤拷A锟絉锟絒锟絟锟斤拷锟斤拷锟教僷锟絫锟紿锟絒锟絵锟斤拷锟絏锟斤拷锟斤拷锟截傦拷锟斤拷B

Copilot锟教昡锟斤拷锟斤拷锟紷

锟紷锟斤拷锟絭锟斤拷89锟斤拷迋虄V锟絠锟斤拷锟絀锟斤拷锟届惉锟斤拷锟紸1689锟铰偺僾锟斤拷锟絆锟斤拷锟斤拷锟斤拷Copilot锟缴庯拷锟絪锟斤拷锟斤拷锟斤拷锟斤拷锟绞丄40.73锟斤拷锟缴惼庛惈锟斤拷锟斤拷锟介偙锟狡傦拷锟斤拷锟斤拷锟斤拷锟斤拷锟紹锟斤拷锟斤拷蕚艂蛠AC锟斤拷锟斤拷虄V锟絠锟斤拷锟絀锟斤拷25锟斤拷锟紸513锟铰偺僾锟斤拷锟絆锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷A258锟铰乮50.29锟斤拷锟絡锟斤拷锟狡庯拷艂锟斤拷锟斤拷锟斤拷BPython锟教僔锟絠锟斤拷锟絀锟斤拷29锟斤拷锟脚丄锟斤拷锟絭571锟铰偺僾锟斤拷锟絆锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷A219锟铰乮38.35锟斤拷锟絡锟斤拷锟狡庯拷艂锟斤拷锟斤拷锟斤拷B

Source and Image Credits: Hammond Pearce, Baleegh Ahmad, Benjamin Tan, Brendan Dolan-Gavitt, and Ramesh Karri. Asleep at the Keyboard? Assessing the Security of GitHub Copilot锟絝s Code Contributions

锟街楢锟絃锟斤拷

GitHub锟紸AI锟絭锟斤拷锟絆锟斤拷锟絶锟斤拷锟絆锟紷锟絓锟絬Copilot锟絭锟教堬拷蕭駤煀J锟絥锟紷锟斤拷锟絲10锟絟锟斤拷
Microsoft锟絇锟斤拷锟斤拷GitHub锟酵丄AI锟絭锟斤拷锟絆锟斤拷锟絶锟斤拷锟絆锟紷锟絓锟絬GitHub Copilot锟絭锟教堬拷蕭駤焸锟斤拷J锟絥锟斤拷锟斤拷锟紹锟斤拷锟絲10锟絟锟斤拷锟斤拷锟介偄锟酵擭锟絲100锟絟锟斤拷锟教僒锟絬锟絏锟絅锟斤拷锟紹锟絯锟斤拷锟狡堦晹锟教冿拷锟斤拷锟絜锟絠锟絒锟酵堬拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟脚楋拷锟絧锟脚傦拷锟斤拷B
AWS锟紸锟絭锟斤拷锟絆锟斤拷锟絶锟斤拷锟絆锟斤拷锟紷锟紹锟絯锟終锟脚巟锟斤拷锟斤拷锟斤拷uAmazon CodeWhisperer锟絭锟絭锟斤拷锟絩锟斤拷锟絒锟斤拷锟絁锟紷锟絉锟斤拷锟斤拷锟絞锟斤拷锟斤拷锟斤拷锟狡僐锟絒锟絟锟斤拷锟斤拷
AWS锟斤拷锟紸锟紷锟紹锟絯锟終锟斤拷p锟斤拷锟侥僾锟斤拷锟絆锟斤拷锟絶锟斤拷锟絆锟斤拷锟絰锟斤拷锟斤拷锟斤拷uAmazon CodeWhisperer锟絭锟斤拷锟絭锟斤拷锟絩锟斤拷锟絒锟斤拷锟絁锟斤拷锟斤拷锟紸锟絀锟絒锟絭锟斤拷锟絓锟絒锟絏锟斤拷锟絴锟絎锟絞锟斤拷锟饺偳傦拷锟界悢锟絓锟斤拷锟絪锟教僐锟絒锟絟锟斤拷锟斤拷蓚锟斤拷锟斤拷@锟紹锟絯锟終锟缴傦拷锟紸锟絭锟斤拷锟絆锟斤拷锟絵锟絒锟斤拷锟斤拷锟斤拷锟絥锟竭傦拷锟絉锟絒锟絟锟教戯拷锟斤拷锟斤拷锟侥傦拷锟侥傦拷锟斤拷锟絋锟絒锟絩锟絏锟狡傦拷锟斤拷锟紹
锟斤拷锟酵傦拷锟斤拷v锟斤拷锟絆锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷uOpenAI Codex锟絭锟斤拷锟斤拷API锟斤拷锟斤拷锟絁锟紷锟絬GitHub Copilot锟絭锟教僄锟斤拷锟絎锟斤拷
锟斤拷AI锟斤拷锟斤拷锟紷锟街傦拷OpenAI锟斤拷锟紸锟斤拷锟絉锟斤拷锟疥偐锟斤拷\锟絒锟絏锟絉锟絒锟絟锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷锟斤拷AI锟絍锟絏锟絜锟斤拷锟絬Codex锟絭锟教僾锟斤拷锟紺锟絰锟絒锟絞锟斤拷锟斤拷API锟教採嫙傦拷锟絥锟竭傦拷锟紹Python锟斤拷JavaScript锟紸Ruby锟饺傦拷10锟饺忥拷虒锟斤拷锟缴懳夛拷锟斤拷锟侥傦拷锟斤拷B
锟絯锟斤拷虜M锟斤拷锟斤拷p锟絏锟斤拷锟絒锟絟锟金搻傓峌锟斤拷锟紷锟斤拷锟酵岋拷虄L锟絒锟絳锟絒锟絟锟斤拷锟界墴锟斤拷锟斤拷锟疥強锟斤拷锟斤拷锟紷6锟斤拷锟斤拷锟饺傜専锟給锟斤拷锟絰100锟斤拷
锟絏锟絉锟絙锟絞锟斤拷锟斤拷锟絟锟斤拷University of Glasgow锟狡僒锟紼锟絎锟紸锟斤拷锟絩锟紸锟斤拷Taif University锟缴傦拷閷わ拷锟斤拷`锟絒锟斤拷锟酵丄锟絃锟絒锟絳锟絒锟絟锟斤拷锟斤拷l锟教巜锟斤拷虜M锟斤拷锟斤拷锟給锟斤拷锟紸锟組锟芥憸锟斤拷锟斤拷蛡锟斤拷膬锟斤拷[锟経锟絒锟教擄拷锟酵傪悇掞拷A锟絧锟絏锟斤拷锟絒锟絟锟饺偳傦拷锟芥摼锟斤拷锟斤拷[锟絯锟絯锟終锟絍锟絏锟絜锟斤拷锟斤拷锟侥傦拷锟斤拷锟斤拷锟斤拷锟今崘傪敪昞锟斤拷锟斤拷锟紹
锟絁锟斤拷锟斤拷锟缴乽锟斤拷锟捷傦拷锟饺傦拷锟斤拷锟教乿锟斤拷锟斤拷锟斤拷锟斤拷T锟紺锟給锟絒锟経锟斤拷锟紷锟斤拷锟疥偨锟疥強锟斤拷锟斤拷d锟絞锟金憲怣锟紷锟斤拷锟斤拷锟斤拷锟斤拷99锟斤拷
锟絧锟絀锟絙锟絅锟絏锟絫锟紿锟絒锟絟锟斤拷w锟教岋拷锟斤拷锟絗锟絒锟斤拷锟酵丄锟絛锟絞锟斤拷锟絞锟斤拷锟紸锟芥憸锟紽锟斤拷锟絍锟絏锟絜锟斤拷锟斤拷锟斤拷锟杰傦拷锟侥戯拷锟捷傦拷锟饺傦拷锟斤拷锟教傦拷锟斤拷锟斤拷锟斤拷锟紷锟斤拷锟侥傦拷锟斤拷锟斤拷锟斤拷锟今崘傪敪昞锟斤拷锟斤拷锟紹锟结偊锟轿恀锟斤拷锟斤拷锟脚傦拷锟斤拷J锟斤拷锟斤拷锟絫锟斤拷锟絒锟斤拷锟缴曪拷锟斤拷锟金晜傦拷锟窖忋偑锟界偣锟介偙锟狡側偳傦拷锟脚傦拷锟斤拷B

锟街楢锟斤拷锟斤拷锟絅

锟斤拷锟斤拷AI锟教價锟絎锟絣锟絏锟斤拷锟絒锟絏锟絇锟絒锟絏锟疥棗锟斤拷锟斤拷锟斤拷

'; e_dlv.innerHTML = html; adRequest({position:dlv_pos,dom:true}); }else if(ad_type === 'gam'){ var html = '

'; e_dlv.innerHTML = html; refreshGam('InArtSpecialLink'); }else if(ad_type === 'logly'){ var html = '

'; e_dlv.innerHTML = html; loglySet(g_id); }else if(ad_type === 'google'){ var html = '

'; e_dlv.innerHTML = html; googletag.cmd.push(function(){ var slot8 = googletag.defineSlot('/43042345/nlab_artinsert_RT',[[336,280],[300,250],'fluid'],'div-gpt-ad-1551176482959-0').addService(googletag.pubads()); googletag.pubads().enableSingleRequest(); googletag.enableServices(); googletag.display('div-gpt-ad-1551176482959-0'); googletag.pubads().refresh([slot8]); }); } }; var insert_ok = function(_target,_str){ var clearfix = d.createElement('div'); clearfix.className = 'colBoxClear'; if(ad_float_fix){ e_body.insertBefore(e_dlv,_target); e_body.insertBefore(clearfix,_target.nextElementSibling); }else{ e_body.insertBefore(e_dlv,_target); } set_dlv(); }; var insert_ng = function(_str){ e_dlv.style.display = 'none'; }; var main = function(){ var e_nodes = e_body.childNodes; // BODY 锟斤拷锟斤拷锟絨锟絭锟絝 var e_tags = []; // BODY 锟斤拷锟斤拷锟絕锟絆 var p_num = []; // BODY 锟斤拷锟斤拷 P 锟絕锟絆锟绞抲 var p_target_num; // 锟絞锟絵锟斤拷锟筋弨锟绞抲 var o_float = {}; // 锟斤拷鑽烇拷輻v锟絝 var o_this = {}; // 锟紸锟絅锟絜锟紹锟絬锟絕锟絆 var o_next = {}; // 锟紸锟絅锟絜锟紹锟絬锟絕锟絆锟教庯拷锟教僞锟絆 var flag_insert = 0; // 锟絵锟斤拷锟絫锟斤拷锟絆 // 锟斤拷鑽烇拷輻v锟絝锟絗锟紽锟絙锟絅 var check_float = function(_e){ var e = 0; if(_e.id.match(/^col\d{3}(l|r)$/)){ e = _e; } return e; }; // 锟絭锟絝锟斤拷 Y 锟斤拷锟絎锟狡嶏拷锟斤拷锟教嶏拷锟絭锟絣 var get_element_y = function(_e){ var ey = 0; var eh = _e.offsetHeight; while(_e){ ey += _e.offsetTop; _e = _e.offsetParent; } return ey + eh; }; var check_ptag = function(_e){ var e = 0; if(_e.tagName && _e.tagName === 'P'){ e = _e; } return e; }; var try_insert = function(){ p_target_num = Math.floor(p_num.length / 2) - 1; if(p_target_num >= _maxrange) p_target_num = _maxrange; if(dis_con) p_target_num = 0; for(var i = p_num[p_target_num]; i < e_tags.length; i++){ o_this.e = check_ptag(e_tags[i]); if(o_this.e){ o_next.e = check_ptag(e_tags[i + 1]); if(o_next.e){ if(!o_float.e || check_float(e_tags[i - 1])){ o_float.e = check_float(e_tags[i - 1]); o_float.n = i - 1; } if(o_float.e && o_float.n < i + 1){ o_float.y = get_element_y(o_float.e); o_this.y = get_element_y(o_this.e); set_line(o_float.y,'red'); set_line(o_this.y,'blue'); if(o_float.y < o_this.y){ flag_insert = 1; insert_ok(o_next.e,_threshold + ' 锟絧锟斤拷锟饺忥拷锟借崬锟捷傦拷锟斤拷'); break; } }else{ flag_insert = 1; insert_ok(o_next.e,_threshold + ' 锟絧锟斤拷锟饺忥拷锟借崬锟捷側傦拷'); break; } } }else{ o_float = {}; } } if(!flag_insert){ insert_ng('锟絵锟斤拷锟绞抲锟饺傦拷'); } }; // 锟絊锟絨锟絭锟絝锟斤拷锟斤拷^锟絆锟教傒攝锟斤拷蓳锟斤拷锟斤拷 for(var i = 0; i < e_nodes.length; i++){ if(e_nodes[i].tagName){ e_tags.push(e_nodes[i]); } } // 锟絊锟絕锟絆锟斤拷锟斤拷 P 锟絕锟絆锟绞抲锟斤拷z锟斤拷蓳锟斤拷锟斤拷 for(var i = 0; i < e_tags.length; i++){ if(e_tags[i].tagName === 'P') p_num.push(i); // 锟脚忥拷锟教夛拷鑽烇拷輻v锟絝锟斤拷锟絠锟絒 if(!o_float.e){ o_float.e = check_float(e_tags[i]); o_float.y = get_element_y(o_float.e); o_float.n = i; } } if(p_num.length >= _threshold){ try_insert(); }else{ insert_ng('P 锟絕锟絆 ' + _threshold + ' 锟饺夛拷'); } }; if(e_body){ main(); }else{ insert_ng('锟絃锟斤拷锟絳锟斤拷锟饺傦拷'); } })(document,4,5);

Special