AI Coding Tools Are Creating a Security Gap We Must Close Immediately

Natalie Tischler

By Natalie Tischler

Developers love AI coding tools. And why wouldn’t they? After all, they write code faster. They reduce repetitive work. They help junior engineers ship features that used to take days. But there’s a problem no one wants to talk about at the planning meeting. AI coding tools are producing insecure code at massive scale. And the industry is running out of time to fix it.

The Number That Should Keep Every CISO Up at Night

Here it is, plain and simple. Across more than 150 large language models tested, only 55% of AI-generated code passes basic security tests. That means in nearly half of all cases, an AI coding tool may introduce a known security vulnerability directly into your codebase.

Not a theoretical risk. A known flaw. The kind attackers already have playbooks for.

What makes this worse is the contrast. Those same AI models achieve syntax correctness rates above 95%. The code looks right. It runs. It passes unit tests. It gets merged. And it contains a security hole.

That gap — between code that works and code that works securely — isn’t closing. It’s been stuck in the same place since 2023. Syntax scores climbed from 50% to 95% over two years. Security scores barely moved. Model generations came and went. GPT-4, GPT-5. Gemini 2, Gemini 3. Claude 4. The marketing got louder. The security pass rate stayed flat.

Where AI Coding Tools Get It Right — and Where They Fail Badly

The picture isn’t completely bleak. AI coding tools do handle some vulnerabilities reasonably well.

For SQL injection, AI models achieve an 82% security pass rate. For insecure cryptographic algorithms, it’s 86%. These are common, well-documented patterns. The models have seen them thousands of times in training data. They’ve learned to avoid the obvious anti-patterns.

But move to less visible vulnerabilities, and the story falls apart completely.

For cross-site scripting (XSS), the security pass rate is just 15%. For log injection, it drops to 13%.

Read that again. In 87% of cases, when an AI coding tool generates code involving XSS-risk scenarios, it produces vulnerable code.

These numbers have barely moved since initial research began two years ago. This isn’t a bug that’s getting patched. It’s a structural limitation. AI models are pattern-matchers. They’re excellent at reproducing what they’ve seen. They’re poor at reasoning through subtle, context-dependent security logic — exactly the kind that produces XSS and log injection vulnerabilities.

There is one bright spot worth noting. OpenAI’s reasoning-focused models — the GPT-5 series with extended reasoning — achieved security pass rates between 70–72%. That’s a real improvement over the standard 55% baseline. It suggests that models built to think through problems, not just autocomplete them, produce safer code. But 70% still means 30% of AI-generated code contains known flaws. That’s not a solution. It’s a direction.

The Real-World Consequence: 81% of Organizations Are Getting Breached

This isn’t abstract. The insecure code produced by AI coding tools has to land somewhere.

According to the 2026 Cyberthreat Defense Report, 81% of organizations experienced at least one successful cyberattack in the past year. And the number of organizations suffering six or more successful attacks is actually increasing.

Cybersecurity budgets are going up. Security stacks are getting more complex. Breach rates are staying high. Something isn’t working.

Here’s what the data points to. Only 42.2% of organizations have fully implemented secure coding and code review practices. That leaves a 58% implementation gap where vulnerabilities can slip from development into production without anyone catching them.

When AI coding tools are shipping code at higher velocity than before — and nearly half of that code contains security flaws — that 58% gap becomes a highway for attackers.

Security professionals ranked “Application development and testing (SDLC, DevSecOps)” among the most difficult IT functions to perform, scoring it 4.10 out of 5 for difficulty. It’s hard. Developers are under pressure to ship faster. Security gets treated as a bottleneck, not an enabler.

AI coding tools make the volume problem worse. You can’t have developers moving at machine speed while security reviews move at human speed.

Attackers Are Using AI Too

Here’s the part of the conversation that tends to get skipped.

AI doesn’t just help developers write code faster. It helps attackers find vulnerabilities faster.

The 2026 Cyberthreat Defense Report found that AI-enabled evasive malware is the number one AI-related threat concern, cited by 45.5% of security professionals. This isn’t standard malware with a new coat of paint. It learns from your environment in real-time. It creates new evasion strategies on the fly. It uses fileless execution and delayed activation to get past conventional anti-malware tools entirely.

Put those two things together. A 58% gap in secure coding practices. Malware that can dynamically rewrite itself to avoid detection. The math becomes uncomfortable. An 81% breach rate suddenly makes perfect sense.

The Security Debt Problem Is Getting Harder to Ignore

There’s a term circulating in security circles right now: the vulnpocalypse. It’s a bit dramatic as names go, but the concept it describes is worth understanding clearly.

The concern isn’t that AI is creating entirely new categories of vulnerability. Rather, it’s that AI is getting better at finding the ones that already exist — vulnerabilities that have been sitting dormant in codebases for years, quietly accumulating as teams shipped faster than they secured. As AI-powered discovery tools become more capable and more accessible, that dormant debt becomes easier to surface and easier to exploit.

Veracode’s Chris Wysopal framed it plainly: “We are compressing time. Years of latent technical debt are now being surfaced in months.”

The 2026 State of Software Security report puts real numbers to this. Security debt now affects 82% of organizations, up from 74% a year ago. Critical security debt — the kind representing severe, exploitable vulnerabilities — impacts 60% of organizations, a 20% relative increase year-over-year. High-risk vulnerabilities are up 36% year-over-year.

None of this is cause for panic. It is cause for a clear-eyed plan. Organizations that treat security debt as a strategic business priority — not just a technical backlog — will be far better positioned as AI-powered discovery tools become mainstream. Security experts estimate that window is 6–12 months. That’s enough time to make meaningful progress. It’s not enough time to wait.

The Real Problem Isn’t Building Fast. It’s Trusting Fast.

Here’s a reframe worth sitting with.

The challenge was never just finding vulnerabilities. Security tools have been finding vulnerabilities for decades. The real bottleneck has always been fixing them, governing how they enter codebases, and proving to boards, regulators, and customers that the software you’re running is trustworthy.

AI coding tools blew up the development speed equation. But they didn’t solve the trust equation. They made it harder.

Software is now being created faster than at any prior point in history. Every new line of AI-generated code is a line that needs to be trusted, verified, and governed. Every release is something your CISO, your board, and your customers are implicitly betting on.

The companies that win in this environment aren’t the ones that simply move fastest. They’re the ones that can answer — with confidence and with evidence — whether the software they’re building and deploying is safe, compliant, and production-ready.

Speed of finding was never the hard part. Speed of trust is.

What Needs to Change Right Now

The solution isn’t to stop using AI coding tools. Teams that avoid them will lose competitive ground; the solution is to use them with a strategy that actually matches the risk.

The 2026 State of Software Security report offers a practical framework: Prioritize, Protect, and Prove. Here’s what that looks like in practice.

1. Stop trying to fix everything. Fix the right things first.

Security debt now affects 82% of organizations. When every vulnerability gets flagged as urgent, nothing gets fixed. The SoSS data is clear: move from “fix all flaws” to “fix the most exploitable flaws in your most critical assets.” High-risk vulnerabilities are up 36% year-over-year — those are the ones attackers are most likely to weaponize, and the ones that should drive your remediation calendar.

2. Make security prompting a standard, not a suggestion.

When AI coding tools receive no security guidance, only 55% of their output is secure. That’s the baseline. Explicit secure-by-design prompting improves outcomes. Organizations need to standardize secure prompting frameworks across their developer toolchains — not leave it up to individual engineers to remember on a deadline.

3. Replace manual testing with continuous, automated scanning.

The 2026 SoSS report is direct on this: manual security testing is obsolete. It creates a bottleneck developers route around. The answer is automated SAST for first-party code, SCA for third-party dependencies, and build gates that block critical vulnerabilities from reaching production. Catching flaws while code is being written — not days after deployment — is what changes the math.

4. Build visibility before you build remediation plans.

You can’t prioritize what you can’t see. Organizations need a clear map of their software assets — what’s public-facing, what’s business-critical, what carries the most exploitable debt. That visibility is what separates reactive firefighting from a risk-based security program.

5. Prove it — to your board, your regulators, and your customers.

Finding and fixing vulnerabilities isn’t enough anymore. Organizations need continuous verification of what’s running in production, governance policies around AI-assisted development, and auditable evidence of security posture. Attestation isn’t a compliance checkbox. It’s how you build software trust at scale.

The Bottom Line

AI coding tools are here; they’re not going away. It’s clear they make developers significantly more productive.

They also produce insecure code nearly half the time, by default, at a scale and speed that has no historical precedent.

The security gap this creates isn’t a future problem. It’s measurable today — in the 81% breach rate, in the 58% implementation gap, in the 15% XXS security pass rate that hasn’t moved in two years. And it’s growing — 82% of organizations now carry security debt, up from 74% a year ago.

The organizations that treat this as urgent will build software people can trust. The ones that don’t will be in the breach statistics next year.

The gap is real. The window is short. The time to close it is now.

Veracode helps organizations secure AI-generated code at scale — from static analysis and automated remediation to governance frameworks built for the pace of modern development. Learn more about Veracode’s approach to AI code security.

May 8, 2026

The AI Inflection Point That Will Redefine Software Trust

Read More
Brian Roche

Brian Roche

May 7, 2026

The $10 Million Question: Why Are 81% of Organizations Still Getting Breached?

Read More
Natalie Tischler

Natalie Tischler

May 5, 2026

6 Best Practices for Application Risk Assessments

Read More
Natalie Tischler

Natalie Tischler

Photo of Natalie Tischler

By Natalie Tischler

Natalie Tischler believes in a world where software is built secure from the start. She writes content for Veracode that focuses on empowering harmony between Security and Development teams.