OpenAI’s new AppSec agent, Codex Security, has already flagged over 11,000 high-severity and critical flaws in real-world codebases during its first 30 days of research testing. The tool, designed to automatically find, validate, and fix vulnerabilities in software repositories, reportedly identified about 800 critical issues in more than a million scanned commits. According to an OpenAI blog post, the tool is meant to function more like a security researcher who studies a codebase, maps potential attack paths, and proposes fixes, rather than a static scanner. “It’s designed to operate at scale and surface the highest-confidence findings with easy-to-accept patches,” the company wrote. Accor...