2025 GenAI Code Security Report Assessing the Security of Using LLMs for Coding

Generative AI is reshaping software development, yet its impact on code security remains largely overlooked. This report assesses over 100 large language models (LLMs) across four major programming languages— Java, JavaScript, Python, and C#—to determine how often AI-generated code is secure by default. Findings reveal that only 55% of generated code avoids common vulnerabilities, with no significant improvements tied to model size or recency. This report provides valuable insights for organizations adopting AI-driven development, underlining the need for proactive security measures and developer oversight.