SECURITY
SECURITY
SECURITY
Cisco unveils Project CodeGuard, an open-source framework to secure AI-written software
Cisco Systems Inc. today unveiled a new open-source framework aimed at hardening software written with the help of artificial intelligence coding agents.
The framework, called Project CodeGuard, is designed to be unified, model-agnostic and woven into multiple stages of the software lifecycle so guardrails are applied before, during and after AI-assisted code generation. The idea is to deliver “secure by default” code for AI coding and is not meant as a replacement for engineering judgment but as an added defense-in-depth layer.
At launch, CodeGuard is shipping with a core rule set derived from common industry guidance, such as Open Worldwide Application Security Project and Common Weakness Enumeration, to counter recurring flaws including hardcoded secrets, missing input validation, outdated cryptography and reliance on end-of-life dependencies.
The rules can be used in a planning and specification phase to steer agents toward safer patterns that are invoked while code is being produced to block insecure snippets and applied post-generation for review and validation.
Project CodeGuard also offers a community-driven ruleset, translators for popular AI coding agents and validators to help teams enforce security automatically.
Key to the framework is a multi-stage approach, which Cisco argues is important because AI assistants increasingly act across the lifecycle — drafting designs, scaffolding services and proposing fixes.
A single rule, such as input validation or secret management, should exert influence at each step. That includes suggesting safer patterns while generating, flagging risky constructs in real time and verifying that the final code externalizes secrets and sanitizes inputs correctly.
Cisco does stress that CodeGuard won’t guarantee perfectly secure output, as human peer review and standard controls remain necessary. But that aside, the objective of the framework is to cut the probability that “low-hanging” vulnerabilities slip into production as AI accelerates delivery.
The company added that today is just the beginning for Project CodeGuard, with a roadmap that calls for broader language coverage, adapters for additional AI coding platforms and automated rule validation, along with feedback loops that refine rules based on community use.
Cisco is inviting security engineers, developers and AI researchers to submit new rules, build additional translators and provide telemetry-informed improvements via its public repository.
Photo: Cisco
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
