Flaws uncovered in proprietary and open-source projects
In its first testing cycle, OpenAI said Codex Security scanned more than 1.2 million commits across external repositories, identifying 792 critical vulnerabilities and 10,561 high severity issues. The company said the findings came from a wide range of real-world codebases while maintaining relatively low noise, as critical issues appeared in under 0.1% of scanned commits.
“Netgear was pleased to join the early access program, and the results exceeded expectations,” Chandan Nandakumaraiah, head of product security at Netgear, said in a comment shared within the post. “Codex Security integrated effortlessly into our robust security development environment, strengthening the pace and depth of our review processes.”
Beyond proprietary repositories, vulnerabilities were flagged in several widely used open-source projects too, including OpenSSH, GnuTLS, GOGS, Thorium, libssh, PHP, and Chromium, with 14 CVEs assigned so far.
