The company’s experimental AI agent finds a previously unknown and exploitable software bug in SQLite, an open-source database engine.
ogle AI project is smart enough to uncover real-world software vulnerabilities on its own, according to the company’s researchers.
Google’s AI program recently discovered a previously unknown and exploitable bug in SQLite, an open-source database engine. The company then reported the vulnerability before it reached an official software release, which prompted SQLite to issue a fix last month.
“We believe this is the first public example of an AI agent finding a previously unknown exploitable memory-safety issue in widely used real-world software,” Google’s security researchers wrote in a blog post on Friday.
The news joins growing research that shows today’s large language models hold the potential to find software vulnerabilities, potentially giving the tech industry a much-needed edge in defending software against hackers.
This isn’t the first time an AI program has discovered flaws in software. In August, for example, another large language model program called Atlantis uncovered a separate bug in SQLite.
Start
United States
USA — software Google's 'Big Sleep' AI Project Uncovers Real Software Vulnerabilities