Automated Secure Code Review at Scale Using Static Analysis and Generative AI (opens in new tab)

As part of solving a code review exercise in a large inventory of code, I resorted to using Static Analysis + LLMs to capture and summarize, analyze code. The approach yielded useful results, and made me rethink SAST rule patterns.