Document Open Access Logo

Are We There Yet? On Security Vulnerabilities Produced by Open Source Generative AI Models and Its Implications for Security Education

Authors Maria Camila Santos Galeano , Tiago Espinha Gasiba , Sathwik Amburi , Maria Pinto-Albuquerque

PDF HTML 5

Files

Thumbnail PDF
PDF
OASIcs.ICPEC.2025.9.pdf
  • Filesize: 0.54 MB
  • 12 pages
HTML5 Logo HTML (experimental)
OASIcs.ICPEC.2025.9.html

Document Identifiers

Subject Classification

ACM Subject Classification
  • Computing methodologies → Artificial intelligence
  • Security and privacy → Software security engineering
Keywords
  • Generative AI
  • Code Security
  • Programming Education
  • Prompt Engineering
  • Secure Coding
  • Static Analysis

Metrics

Abstract

With the increasing integration of large language models (LLMs) into software development and programming education, concerns have emerged about the security of AI-generated code. This study investigates the security of three open source code generation models. Codestral, DeepSeek R1, and LLaMA 3.3 70B using structured prompts in Python, C, and Java. Some prompts were designed to explicitly trigger known vulnerability patterns, such as unsanitized input handling or unsafe memory operations, in order to assess how each model responds to security-sensitive tasks.
The findings reveal recurring issues, including command execution vulnerabilities, insecure memory handling, and insufficient input validation. In response, we propose a set of recommendations for integrating secure prompt design and code auditing practices into developer training. These guidelines aim to help future developers generate safer code and better identify flaws in GenAI-generated output.
This work offers an initial analysis of the limitations of GenAI-assisted code generation and provides actionable strategies to support the more secure and responsible use of these tools in professional and educational contexts.

Cite As Get BibTex

Maria Camila Santos Galeano, Tiago Espinha Gasiba, Sathwik Amburi, and Maria Pinto-Albuquerque. Are We There Yet? On Security Vulnerabilities Produced by Open Source Generative AI Models and Its Implications for Security Education. In 6th International Computer Programming Education Conference (ICPEC 2025). Open Access Series in Informatics (OASIcs), Volume 133, pp. 9:1-9:12, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2025) https://doi.org/10.4230/OASIcs.ICPEC.2025.9

Author Details

Maria Camila Santos Galeano
  • Instituto Universitário de Lisboa (ISCTE-IUL), Portugal
Tiago Espinha Gasiba
  • Siemens AG, Munich, Germany
Sathwik Amburi
  • Siemens AG, Munich, Germany
Maria Pinto-Albuquerque
  • Instituto Universitário de Lisboa (ISCTE-IUL), ISTAR, Portugal

Funding

  • Pinto-Albuquerque, Maria: This work is partially financed by Portuguese national funds through FCT - Fundação para a Ciência e Tecnologia, I.P., under the projects FCT UIDB/04466/2020 and UIDP/04466/2020.

Acknowledgements

Maria Pinto-Albuquerque acknowledges and thanks the Instituto Universitário de Lisboa and ISTAR, for their support.

References

  1. DeepSeek AI. Deepseek coder, 2024. Accessed: 2024-05-10. URL: https://github.com/deepseek-ai/DeepSeek-Coder.
  2. Mistral AI. Codestral model card, 2024. Accessed: 2024-05-10. URL: https://docs.mistral.ai/models/#codestral.
  3. Autumn Clark, Daniel Igbokwe, Samantha Ross, and Minhaz F. Zibran. A quantitative analysis of quality and consistency in ai-generated code. In 2024 7th International Conference on Software and System Engineering (ICoSSE), pages 37-41, 2024. URL: https://doi.org/10.1109/ICoSSE62619.2024.00014.
  4. Angela Fan, Beliz Gokkaya, Mark Harman, Mitya Lyubarskiy, Shubho Sengupta, Shin Yoo, and Jie M. Zhang. Large language models for software engineering: Survey and open problems. In 2023 IEEE/ACM International Conference on Software Engineering: Future of Software Engineering (ICSE-FoSE), pages 31-53, 2023. URL: https://doi.org/10.1109/ICSE-FoSE59343.2023.00008.
  5. Amanda S. Fernandez and Kimberly A. Cornell. Cs1 with a side of ai: Teaching software verification for secure code in the era of generative ai. In Proceedings of the 55th ACM Technical Symposium on Computer Science Education (SIGCSE), volume 1, pages 345-351, 2024. URL: https://doi.org/10.1145/3626252.3630817.
  6. Center for Security and Emerging Technology (CSET). Cybersecurity risks of ai-generated code. Technical report, Georgetown University, 2024. URL: https://cset.georgetown.edu/publication/cybersecurity-risks-of-ai-generated-code/.
  7. Xinyi Hou, Yanjie Zhao, Yue Liu, Zhou Yang, Kailong Wang, Li Li, Xiapu Luo, David Lo, John Grundy, and Haoyu Wang. Large language models for software engineering: A systematic literature review. ACM Transactions on Software Engineering and Methodology, 33(8), 2024. URL: https://doi.org/10.1145/3695988.
  8. Mahesh Jamdade and Yi Liu. A pilot study on secure code generation with chatgpt for web applications. In Proceedings of the 2024 ACM Southeast Conference (ACMSE), pages 229-234, 2024. URL: https://doi.org/10.1145/3603287.3651194.
  9. Meta AI. Llama 3 model card, 2024. Accessed: 2024-05-10. URL: https://llama.meta.com/docs/model-cards-and-prompt-formats/llama3_3.
  10. MITRE Corporation. Common Weakness Enumeration (CWE), 2024. Accessed: 2024-05-10. URL: https://cwe.mitre.org.
  11. Md Fazle Rabbi, Arifa Champa, Minhaz Zibran, and Md Rakibul Islam. Ai writes, we analyze: The chatgpt python code saga. In 2024 IEEE/ACM 21st International Conference on Mining Software Repositories (MSR), pages 177-181, 2024. URL: https://doi.org/10.1145/3643991.3645076.
  12. Rebeka Tóth, Tamas Bisztray, and László Erdődi. Llms in web development: Evaluating llm-generated php code unveiling vulnerabilities and limitations. In Lecture Notes in Computer Science, 14989, pages 425-437, 2024. URL: https://doi.org/10.1007/978-3-031-68738-9_34.
  13. Junjie Wang, Yuchao Huang, Chunyang Chen, Zhe Liu, Song Wang, and Qing Wang. Software testing with large language models: Survey, landscape, and vision. IEEE Transactions on Software Engineering, 50(4):911-936, 2024. URL: https://doi.org/10.1109/TSE.2024.3368208.
  14. Tao Xiao, Christoph Treude, Hideaki Hata, and Kenichi Matsumoto. Devgpt: Studying developer-chatgpt conversations. In 2024 IEEE/ACM 21st International Conference on Mining Software Repositories (MSR), pages 227-230, 2024. URL: https://doi.org/10.1145/3643991.3648400.
Any Issues?
X

Feedback on the Current Page

CAPTCHA

Thanks for your feedback!

Feedback submitted to Dagstuhl Publishing

Could not send message

Please try again later or send an E-mail
© 2023-2025 Schloss Dagstuhl – LZI GmbH About DROPS Imprint Privacy Contact