{"id":"https://openalex.org/W4396868147","doi":"https://doi.org/10.3389/fdata.2024.1386720","title":"A systematic literature review on the impact of AI models on the security of code generation","display_name":"A systematic literature review on the impact of AI models on the security of code generation","publication_year":2024,"publication_date":"2024-05-13","ids":{"openalex":"https://openalex.org/W4396868147","doi":"https://doi.org/10.3389/fdata.2024.1386720","pmid":"https://pubmed.ncbi.nlm.nih.gov/38803522"},"language":"en","primary_location":{"id":"doi:10.3389/fdata.2024.1386720","is_oa":true,"landing_page_url":"https://doi.org/10.3389/fdata.2024.1386720","pdf_url":"https://www.frontiersin.org/articles/10.3389/fdata.2024.1386720/pdf?isPublishedV2=False","source":{"id":"https://openalex.org/S4210201220","display_name":"Frontiers in Big Data","issn_l":"2624-909X","issn":["2624-909X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320527","host_organization_name":"Frontiers Media","host_organization_lineage":["https://openalex.org/P4310320527"],"host_organization_lineage_names":["Frontiers Media"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in Big Data","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj","pubmed"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.frontiersin.org/articles/10.3389/fdata.2024.1386720/pdf?isPublishedV2=False","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5027209623","display_name":"Claudia Negri-Ribalta","orcid":"https://orcid.org/0009-0003-8480-5788"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":true,"raw_author_name":"Claudia Negri-Ribalta","raw_affiliation_strings":["Security and Trust, University of Luxembourg, Luxembourg, Luxembourg"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Security and Trust, University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068256409","display_name":"R\u00e9mi G\u00e9raud","orcid":"https://orcid.org/0000-0001-8719-1724"},"institutions":[{"id":"https://openalex.org/I4210162280","display_name":"Laboratoire de G\u00e9ologie de l\u2019\u00c9cole Normale Sup\u00e9rieure","ror":"https://ror.org/05vg9cw43","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I2746051580","https://openalex.org/I29607241","https://openalex.org/I4210148025","https://openalex.org/I4210162280"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"R\u00e9mi Geraud-Stewart","raw_affiliation_strings":["\u00c9cole Normale Sup\u00e9rieure, Paris, France"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"\u00c9cole Normale Sup\u00e9rieure, Paris, France","institution_ids":["https://openalex.org/I4210162280"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5064938031","display_name":"Anastasia Sergeeva","orcid":"https://orcid.org/0000-0003-3701-3123"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Anastasia Sergeeva","raw_affiliation_strings":["Faculty of Humanities, Education, and Social Sciences, University of Luxembourg, Luxembourg, Luxembourg"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Faculty of Humanities, Education, and Social Sciences, University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5070924321","display_name":"Gabriele Lenzini","orcid":"https://orcid.org/0000-0001-8229-3270"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Gabriele Lenzini","raw_affiliation_strings":["Security and Trust, University of Luxembourg, Luxembourg, Luxembourg"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Security and Trust, University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5027209623"],"corresponding_institution_ids":["https://openalex.org/I186903577"],"apc_list":{"value":1150,"currency":"USD","value_usd":1150},"apc_paid":{"value":1150,"currency":"USD","value_usd":1150},"fwci":10.3315,"has_fulltext":true,"cited_by_count":34,"citation_normalized_percentile":{"value":0.98563091,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":100},"biblio":{"volume":"7","issue":null,"first_page":"1386720","last_page":"1386720"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.29919999837875366,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.29919999837875366,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.18129999935626984,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11636","display_name":"Artificial Intelligence in Healthcare and Education","score":0.06340000033378601,"subfield":{"id":"https://openalex.org/subfields/2718","display_name":"Health Informatics"},"field":{"id":"https://openalex.org/fields/27","display_name":"Medicine"},"domain":{"id":"https://openalex.org/domains/4","display_name":"Health Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5405524969100952},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5336345434188843},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3491518795490265}],"concepts":[{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5405524969100952},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5336345434188843},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3491518795490265},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.3389/fdata.2024.1386720","is_oa":true,"landing_page_url":"https://doi.org/10.3389/fdata.2024.1386720","pdf_url":"https://www.frontiersin.org/articles/10.3389/fdata.2024.1386720/pdf?isPublishedV2=False","source":{"id":"https://openalex.org/S4210201220","display_name":"Frontiers in Big Data","issn_l":"2624-909X","issn":["2624-909X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320527","host_organization_name":"Frontiers Media","host_organization_lineage":["https://openalex.org/P4310320527"],"host_organization_lineage_names":["Frontiers Media"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in Big Data","raw_type":"journal-article"},{"id":"pmid:38803522","is_oa":false,"landing_page_url":"https://pubmed.ncbi.nlm.nih.gov/38803522","pdf_url":null,"source":{"id":"https://openalex.org/S4306525036","display_name":"PubMed","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in big data","raw_type":null},{"id":"pmh:oai:orbilu.uni.lu:10993/62198","is_oa":true,"landing_page_url":"https://orbilu.uni.lu/handle/10993/62198","pdf_url":"https://orbilu.uni.lu/bitstream/10993/62198/1/fdata-07-1386720-2.pdf","source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Frontiers in Big Data, 7, 1386720 (2024)","raw_type":"peer reviewed"},{"id":"pmh:oai:pubmedcentral.nih.gov:11128619","is_oa":true,"landing_page_url":"https://www.ncbi.nlm.nih.gov/pmc/articles/11128619","pdf_url":"https://pmc.ncbi.nlm.nih.gov/articles/PMC11128619/pdf/fdata-07-1386720.pdf","source":{"id":"https://openalex.org/S2764455111","display_name":"PubMed Central","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Front Big Data","raw_type":"Text"},{"id":"pmh:oai:doaj.org/article:89cb2fda819d4e6486c5a50b91b4f3b4","is_oa":true,"landing_page_url":"https://doaj.org/article/89cb2fda819d4e6486c5a50b91b4f3b4","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Frontiers in Big Data, Vol 7 (2024)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.3389/fdata.2024.1386720","is_oa":true,"landing_page_url":"https://doi.org/10.3389/fdata.2024.1386720","pdf_url":"https://www.frontiersin.org/articles/10.3389/fdata.2024.1386720/pdf?isPublishedV2=False","source":{"id":"https://openalex.org/S4210201220","display_name":"Frontiers in Big Data","issn_l":"2624-909X","issn":["2624-909X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320527","host_organization_name":"Frontiers Media","host_organization_lineage":["https://openalex.org/P4310320527"],"host_organization_lineage_names":["Frontiers Media"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Frontiers in Big Data","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.5899999737739563,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G6326759832","display_name":null,"funder_award_id":"NCER22/IS/16570468/NCER-FT","funder_id":"https://openalex.org/F4320321038","funder_display_name":"Fonds National de la Recherche Luxembourg"}],"funders":[{"id":"https://openalex.org/F4320321038","display_name":"Fonds National de la Recherche Luxembourg","ror":"https://ror.org/039z13y21"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4396868147.pdf"},"referenced_works_count":48,"referenced_works":["https://openalex.org/W1975675278","https://openalex.org/W1999798506","https://openalex.org/W2008411739","https://openalex.org/W2128961774","https://openalex.org/W2159715729","https://openalex.org/W2887280559","https://openalex.org/W2892181857","https://openalex.org/W2938704169","https://openalex.org/W2952564229","https://openalex.org/W2965373594","https://openalex.org/W3004658838","https://openalex.org/W3086007799","https://openalex.org/W3091588759","https://openalex.org/W3101118213","https://openalex.org/W3177813494","https://openalex.org/W3198685994","https://openalex.org/W4205371973","https://openalex.org/W4223574077","https://openalex.org/W4224060952","https://openalex.org/W4226485558","https://openalex.org/W4281763794","https://openalex.org/W4283775237","https://openalex.org/W4288057765","https://openalex.org/W4288080276","https://openalex.org/W4308346016","https://openalex.org/W4311431721","https://openalex.org/W4315815628","https://openalex.org/W4320560161","https://openalex.org/W4323033785","https://openalex.org/W4328028645","https://openalex.org/W4376167329","https://openalex.org/W4376606850","https://openalex.org/W4381416574","https://openalex.org/W4382317573","https://openalex.org/W4384026634","https://openalex.org/W4385187279","https://openalex.org/W4385270173","https://openalex.org/W4386033770","https://openalex.org/W4386794865","https://openalex.org/W4388212693","https://openalex.org/W4388858772","https://openalex.org/W4401360062","https://openalex.org/W6800415165","https://openalex.org/W6841333436","https://openalex.org/W6850781855","https://openalex.org/W6852718761","https://openalex.org/W6891829129","https://openalex.org/W6948081457"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W2382290278","https://openalex.org/W4395014643"],"abstract_inverted_index":{"Introduction:":[0],"Artificial":[1],"Intelligence":[2],"(AI)":[3],"is":[4],"increasingly":[5],"used":[6],"as":[7,197],"a":[8,67,159],"helper":[9],"to":[10,48,139,146],"develop":[11],"computing":[12],"programs.":[13],"While":[14],"it":[15],"can":[16,136],"boost":[17],"software":[18,42,84,181],"development":[19],"and":[20,53,142,161,177,194,200],"improve":[21,147],"coding":[22,97],"proficiency,":[23],"this":[24,71,156],"practice":[25],"offers":[26],"no":[27],"guarantee":[28],"of":[29,76,93,106,150,164,167,189],"security.":[30,85],"On":[31],"the":[32,49,56,74,77,88,91,110,144,148,165,180,187],"contrary,":[33],"recent":[34],"research":[35],"shows":[36],"that":[37,129,201],"some":[38],"AI":[39,63,81,95,168],"models":[40,82],"produce":[41],"with":[43],"vulnerabilities.":[44],"This":[45,172],"situation":[46],"leads":[47],"question:":[50],"How":[51],"serious":[52],"widespread":[54],"are":[55,119],"security":[57,104,141,149,182,192],"flaws":[58,105],"in":[59,96,122,133,169],"code":[60,135,198,209],"generated":[61],"using":[62,94],"models?":[64],"Methods:":[65],"Through":[66],"systematic":[68,162],"literature":[69],"review,":[70],"work":[72,157],"reviews":[73,102,127],"state":[75],"art":[78],"on":[79],"how":[80,131],"impact":[83,166],"It":[86,101,125,185],"systematizes":[87],"knowledge":[89],"about":[90],"risks":[92],"security-critical":[98],"software.":[99],"Results:":[100],"what":[103],"well-known":[107],"vulnerabilities":[108,132],"(e.g.,":[109],"MITRE":[111],"CWE":[112],"Top":[113],"25":[114],"Most":[115],"Dangerous":[116],"Software":[117],"Weaknesses)":[118],"commonly":[120],"hidden":[121],"AI-generated":[123,134,152],"code.":[124,153],"also":[126],"works":[128],"discuss":[130],"be":[137,205],"exploited":[138],"compromise":[140],"lists":[143],"attempts":[145],"such":[151,196,202],"Discussion:":[154],"Overall,":[155],"provides":[158],"comprehensive":[160],"overview":[163],"secure":[170],"coding.":[171],"topic":[173],"has":[174],"sparked":[175],"interest":[176],"concern":[178],"within":[179],"engineering":[183],"community.":[184],"highlights":[186],"importance":[188],"setting":[190],"up":[191],"measures":[193],"processes,":[195],"verification,":[199],"practices":[203],"could":[204],"customized":[206],"for":[207],"AI-aided":[208],"production.":[210]},"counts_by_year":[{"year":2026,"cited_by_count":15},{"year":2025,"cited_by_count":17},{"year":2024,"cited_by_count":2}],"updated_date":"2026-06-14T07:44:22.658603","created_date":"2025-10-10T00:00:00"}