ragidi
← back

GitHub's AI Powered Security Platform: Sarah Khalife

323 views · Feb 08, 2025 · 23:45 min · Watch on YouTube ↗
Takeaway

GitHub is shifting from Copilot-only AI to AI embedded across the platform, with AppSec autofix and triage as a major investment area.

Summary

  • Sarah Khalife describes GitHub's push to embed AI across the entire platform — not just Copilot — including AppSec, code review and proactivity features.
  • Scale anchor: 100M+ developers, 4M organizations, 90% of Fortune 100 on GitHub provide a feedback flywheel for AI security features.
  • Security pillar focuses on using AI to improve application security rather than just securing AI itself: triage, autofix, and CodeQL-style scanning enhancements.
  • API-backed integrations so customers can compose GitHub AI security with third-party tools rather than relying on one path.
code-generationsecuritygithub
Original description 
Join this session to learn more about how GitHub is incorporating GenAI across GitHub Advanced Security (GHAS) in addition to the core platform. Sarah Khalife, Principal Solutions Engineer, will provide an overview of key features including code scanning, secret scanning, and supply chain security, highlighting the latest AI-powered capabilities.

Recorded live in San Francisco at the AI Engineer World's Fair. See the full schedule of talks at https://www.ai.engineer/worldsfair/2024/schedule & join us at the AI Engineer World's Fair in 2025! Get your tickets today at https://ai.engineer/2025

About Sarah
Passionate about creating an environment for organizations to implement best practices and improve their software development lifecycle operations, Sarah is a Principal Solutions Engineer at GitHub. She helps drive innersource, automation and security workflows, and most recently, AI-assisted development for her enterprise customers. Sarah is currently focused on helping customers in the Financial Services Industry to overcome challenges, adopt new solutions, and scale them out across their business. Previously, she worked as a senior software engineer, deploying and operating tools related to Industrial IoT platforms and container services in production with Kubernetes, as well as developing microservices.