Endor Labs launches free tool AURI after study finds only 10% of AI-generated code is secure

2 2 minutes read

Endor Labs, a pioneering application security startup with over $208 million in venture funding, has just introduced AURI, a groundbreaking platform that incorporates real-time security intelligence directly into AI coding tools. This innovative product is now available for free to individual developers and seamlessly integrates with popular AI coding assistants like Cursor, Claude, and Augment through the Model Context Protocol (MCP).

The launch of AURI comes at a critical time when research has shown that while AI coding assistants are becoming increasingly prevalent, they still struggle to produce secure code consistently. According to a study conducted by Carnegie Mellon University, Columbia University, and Johns Hopkins University, leading AI models only deliver functionally correct and secure code about 10% of the time, highlighting the urgent need for a solution like AURI.

Endor Labs CEO Varun Badhwar emphasized the importance of bridging the gap between functional code and secure code, stating that AI coding agents, while adept at generating code based on best practices, often replicate security issues from the past due to their training on open source code from various sources.

To address this challenge, AURI was developed to provide developers with real-time security intelligence embedded directly into their coding workflows. The platform’s key differentiator is its “code context graph,” which offers a comprehensive map of how different code components interact within an application. By tracing vulnerabilities across every layer of an application, AURI can pinpoint security flaws with unparalleled accuracy.

AURI’s advanced capabilities are the result of Endor Labs’ investment in top talent, including 13 PhDs specializing in program analysis. The platform combines deterministic analysis with AI reasoning to detect, triage, and remediate vulnerabilities automatically, resulting in a significant reduction in security findings for enterprise customers.

Endor Labs has adopted a freemium model for AURI, offering core functionality for free to individual developers while providing enterprise customers with a paid platform that includes customization, role-based access control, and integration with CI/CD pipelines. The company’s strategic approach aims to drive rapid adoption among developers while also catering to the needs of large organizations.

In a rapidly evolving landscape where AI coding tools are reshaping software development, Endor Labs believes that independence from AI coding tools is essential for effective security. By providing a separate platform for security review, AURI ensures that code is thoroughly analyzed for vulnerabilities without relying solely on the same tool that generated it.

Real-world results have already demonstrated AURI’s effectiveness in identifying zero-day vulnerabilities and active malware campaigns. Endor Labs’ impressive growth and success in securing millions of applications for top-tier customers underscore the platform’s value in addressing the security challenges posed by the AI coding revolution.

As the industry continues to grapple with the security implications of autonomous software agents, Endor Labs remains committed to empowering developers with the tools they need to build secure code efficiently. With AURI, the company aims to bridge the gap between AI-driven development and robust security practices, ensuring that code is not only functional but also resilient to cyber threats.