Have you ever thought of leveraging AI for triaging security findings?

peter.balzer · August 28, 2025, 8:43am

Static Application Security Testing (SAST) is essential—but the findings it produces often overwhelm teams. Between false positives, misprioritized vulnerabilities, and developer pushback, AppSec teams are spending more time sorting issues than fixing them.

A LLM could be trained with context information about deployment and architecture and help with triaging and prioritizing findings.

Alexandre_Gigleux · August 29, 2025, 7:29am

Hello,

Thanks for the suggestion.

We are working to provide a better prioritization of security issues, and all issues in general.

Alex

Topic		Replies	Views
Looking for information on security analysis (SAST, vulnerabilities, and hotspots) SonarQube Cloud	3	307	January 30, 2024
Blog post: Security Hotspots bring a new approach to C++ SAST Sonar Updates cfamily	0	420	July 30, 2020
SonarQube Advanced Security now available Sonar Updates sonarqube , security	0	153	May 29, 2025
Looking for a SAST based plugin, please suggest SonarQube Cloud java , sonarqube , node	4	1732	August 5, 2024
Looking for a IAST app and software scanner SonarQube Server / Community Build	2	2162	June 13, 2019

Have you ever thought of leveraging AI for triaging security findings?

Related topics