Anshu Bansal is the founder/CEO of CloudDefense AI — a CNAPP that secures both applications and cloud infrastructure.
As the world of artificial intelligence (AI) evolves, organizations are rapidly adopting the next-generation AI models for faster development. However, a hidden feedback loop is hampering security. Next-gen AI models are training on AI-generated datasets filled with security flaws. As developers are increasingly relying on AI code editors, the public repositories are getting flooded with vulnerable code.
These repositories become the training data for modern LLMs, standardizing all the security flaws. This is referred to as the “Ouroboros Effect,” causing AI models to poison themselves. This effect highlights the infinite renewal cycle of learning from the flawed data of previous AI models. Organizations need to break this loop and ensure the new AI-generated code is secure by design.
The Ouroboros Effect: AI Is Consuming Itself
Ouroboros is represented as a serpent eating its own tail. In AI, this highlights the feedback loop of modern models that learn from previous AI models.
The AI-generated code may be syntactically accurate, but it hides many subtle flaws, such as poor encryption and missing input validation. As it keeps ingesting data from public repositories, the insecure patterns and security flaws are amplified.
The Ouroboros Effect mirrors model collapse, where synthetic data erodes the richness and nuances of human data. It was found that 45% of AI-generated code contains security flaws.
The Impact Of The Ouroboros Effect
While the next-gen AI models are shaping the future of application development, it is also having a serious impact on the security posture. Below are just a few examples of what this looks like.
Slopsquatting
This is where AI coding assistants and large language models frequently hallucinate about non-existent libraries to accomplish a task. Attackers monitor the hallucination activity of AI models and create fake packages on the public repositories to allow developers to use them.
Minimal Security Expertise
Nowadays, most junior developers leverage AI code editors for vibe coding, a high-velocity development practice. As they often have minimal experience with security basics, they’re more likely to accept AI code suggestions without assessment.
Vulnerability Getting Normalized
A serious side effect of the Ouroboros Effect is that AI models are normalizing various security vulnerabilities. All the flawed code in public repositories teaches next-gen AI, standardizing the errors.
Repeated Vulnerabilities At Scale
As next-gen AI agents continuously learn from other AI models, it usually generates the same vulnerable code for different users. The application may be different, but the vulnerability remains the same throughout. Threat actors can track the identical vulnerable patterns in different apps to exploit them.
Evaporation Of Human Expertise
The reliance on AI agents for writing and explaining code is increasing. As a result, there’s a real concern that the critical thinking capabilities of security analysts will erode. When an AI agent considers a function or code secure, the developers in the loop may believe it to be safer.
Breaking The Ouroboros Loop
Minimizing the impact of the Ouroboros Effect means adopting key security strategies. Here are some examples of the proactive guardrails you can consider.
Maintaining Expert Vetted Datasets
Enterprises should prevent their AI agents from training on publicly available repositories, LLM models and other libraries. Security analysts must maintain clean datasets that are vetted by them and other security experts.
Considering Security First AI
Rather than relying on standard LLMs, organizations should shift to secure Model Context Protocol (MCP) servers. This can help ensure all the issues are fixed in real time before they are committed to the codebase.
Mandating A Zero-Trust Policy
Adopting a zero-trust policy for all AI-generated code and modern security scanning tools in the integrated development environment (IDE) will help to identify vulnerable code before they are accepted by developers. Mandate secure, prompt engineering techniques for every developer.
Ensuring AI Audits
Creating an AI agent that is trained on all security policies and requirements is more necessary than ever. Only then can it be utilized by security analysts to identify and mitigate synthetic vulnerabilities.
Involving Human Expertise
In the vibe coding era, teams must ensure that all the AI-generated code goes through a human security assessment. The internal AI models should be trained on human-generated data. Moreover, the AI-generated code should be tagged in the version control for review.
Key Takeaways
If the recursive training of next-gen AI models isn’t checked, it homogenizes and weakens the AI output. I recommend that organizations implement thorough security scans before committing AI-generated code. Additionally, maintain a clean, siloed dataset for training AI models for internal use, and involve human expertise for AI-generated code evaluation. Minimizing the use of AI models in high-priority security components can also help reduce the risk of propagating repeated vulnerabilities and insecure coding patterns across systems.
Organizations must shift before the flawed code threatens the security posture.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
