Black Duck, a leading provider of application security solutions, has announced significant enhancements to its AI-powered Black Duck Assist™, now integrated into the Code Sight™ IDE plugin. Unveiled at Black Hat 2025, these updates enable real-time security scanning and AI-driven fixes for both human- and AI-generated code, streamlining secure development processes.
Black Duck unveils AI-powered enhancements to Black Duck Assist at Black Hat 2025.
Integrated into Code Sight IDE plugin for real-time code security scanning.
Supports traditional IDEs and AI editors like Cursor and Windsurf.
Provides AI-generated vulnerability summaries and code fix suggestions.
Enables natural language queries for project stats and configuration.
Enhances secure coding for AI tools like GitHub CoPilot and Claude Code.
Black Duck Assist, now embedded in the Code Sight IDE plugin, offers real-time scanning for both human- and AI-generated code, identifying security vulnerabilities and potential IP violations as code is written. “These advancements underscore Black Duck’s commitment to harnessing the power of AI to enhance our products and help our customers securely and confidently embrace the benefits of AI-augmented development,” said Dipto Chakravarty, Chief Product and Technology Officer at Black Duck. The solution supports traditional IDEs like Eclipse, IntelliJ, and Visual Studio, as well as AI-first editors like Cursor and Windsurf, ensuring compatibility with AI coding assistants such as GitHub CoPilot and Claude Code. This integration allows developers to address issues immediately, reducing the risk of vulnerabilities persisting into later development stages.
The enhanced Black Duck Assist provides AI-generated vulnerability summaries, detailed code analysis, and tailored code fix suggestions directly within the developer’s environment. This eliminates the need to switch tools or consult security experts, enabling faster delivery of secure, compliant code. “By extending Black Duck Assist directly into the developer’s workflow, we empower them to build secure software faster and more efficiently than ever before,” said Chakravarty. The platform also supports natural language queries in both the IDE and the Polaris™ platform, allowing developers to access project statistics, testing results, and configuration guidance effortlessly, enhancing productivity and decision-making.
As AI-generated code becomes prevalent, Black Duck Assist addresses the security challenges posed by tools like GitHub CoPilot and Claude Code. According to Gartner, “Generative AI will deliver the greatest impact when adjacent activities complement the gains in coding efficiency. For example, AI code security assistants and AI-augmented software-testing tools can help reduce the mismatch in cadence between coding, scanning and testing activities.” By integrating real-time scanning and AI-driven remediation into developer workflows, Black Duck ensures that organizations can safely leverage AI coding assistants while maintaining robust security and compliance standards, serving over 2,000 global customers.
Black Duck’s enhanced AI-powered assistant, showcased at Black Hat 2025, sets a new benchmark for application security by embedding real-time, AI-driven solutions into developer environments. With support for both traditional and AI-first IDEs, Black Duck Assist empowers developers to build secure software efficiently, addressing the evolving demands of AI-augmented development.
Black Duck® meets the board-level risks of modern software with True Scale Application Security, ensuring uncompromised trust in software for the regulated, AI-powered world. Only Black Duck solutions free organizations from tradeoffs between speed, accuracy, and compliance at scale while eliminating security, regulatory, and licensing risks. Whether in the cloud or on premises, Black Duck is the only choice for securing mission-critical software everywhere code happens. With Black Duck, security leaders can make smarter decisions and unleash business innovation with confidence.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.