Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: usconservative

Yeah, you did say all this. As far as content creation, AI has a long way to go.

Technically, I’m finding that AI has a lot of limitations. I
am in a pilot project to have AI identify unused code and supporting classes, so that they can be removed from our repos, and thus not spend time and money either correcting or false-positive-flagging security violations. If we succeed, it will be a company-wide game changer, possibly saving us millions of dollars (Apex Award, here I come).

But so far, it has been as helpless as a baby. For whatever reason, our inhouse AI app (based on ChatGPT 4, and trained on our company’s code and procedures/processes) doesn’t have access to our repos, nor can I attach large amounts of code for analysis.

I’ll be directly working with the AI people in our company as of March 4. I’ll keep you posted on what we get accomplished. You may want to copy my techniques if we succeed. You will likely save your bank millions too.

All I ask is 1% of what your bank saves. 🤣😂🤣 (j/k)

(Or maybe hire me as an Architect over there? Not that I’m eager to leave my company but a big salary increase could sway me LOL)


37 posted on 02/23/2024 6:40:08 AM PST by Lazamataz (Laz 2005: "First, we beat the Soviet Union. Then we became them.")
[ Post Reply | Private Reply | To 13 | View Replies ]

To: Lazamataz
Personally, I think the mask has been torn off AI with this, at least for as long as people can remember it.

Looks like you and I are attempting to do the same thing with connecting your in-house code with an in-house AI implementation to scan code and do other things.

We have Wiz in house connected to our apps and repositories to do code scanning and flag for CSPM violations as well as code vulnerabilities. We use Terraform for our IAC on Azure and AWS. Here's why that's important to us:

Wiz released a new feature that scans app code for compliance and vulnerabilities, and upon finding them can recommend the specific changes to the Terraform code to bring it into compliance.

Update the code, re-run the pipeline, bingo-bango-boingo! App deploys with no compliance or vulnerability issues.

Working on a way to automate that process but you know big global banks: "HEY, THAT SOUNDS RISKY!" so I've already initiated the process to get approval to do it while we work on the automation.

It's really cool stuff. And to think, four months ago when I took on this new role @ the big global bank I knew nothing about this stuff!

We need to compare notes in the next few weeks once my schedule settles down and I'm all settled in at the long term girlfriend's house. Getting ready to sell my townhome while she and I consolidate expenses together. :-)

38 posted on 02/23/2024 9:48:42 AM PST by usconservative (When The Ballot Box No Longer Counts, The Ammunition Box Does. (What's In Your Ammo Box?))
[ Post Reply | Private Reply | To 37 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson