[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"branding":3,"analytics":7,"article-redcoder-automates-multi-turn-attacks-on-code-ai":10,"sections":34},{"siteName":4,"siteTagline":5,"publisherName":4,"contactEmail":6},"The Revision","Tech news, decoded.","editor@therevision.news",{"gaMeasurementId":8,"adsenseClientId":9},"G-ZW2MV82GYR","ca-pub-8533917693782264",{"article":11},{"id":12,"slug":13,"title":14,"dek":15,"body_md":16,"tags_json":17,"published_at":18,"created_at":19,"updated_at":20,"status":21,"review_note":22,"review_notes":23,"image_url":22,"persona_id":22,"persona_name":22,"section":24,"tags":25,"sources":29,"feedback":33,"feedback_at":22,"cost_usd":33,"total_tokens":33},3588,"redcoder-automates-multi-turn-attacks-on-code-ai","RedCoder Automates Multi-Turn Attacks on Code AI","A new red-teaming agent called RedCoder probes code-generating AI over multi-turn chats to surface vulnerabilities that single-shot tests miss.","An automated red-teaming tool called RedCoder can coax code-generating AI models into producing vulnerable code through extended, multi-turn conversations.\n\nResearchers built RedCoder as a pipeline with two phases. First, a multi-agent simulation plays out adversarial dialogues, generating prototype conversations and a reusable library of attack strategies. Then a base LLM is fine-tuned on those conversations, producing an agent that can autonomously probe target code models, pulling from the strategy library in real time to steer exchanges toward vulnerability-inducing outputs. In tests across several code-generation models, RedCoder outperformed both single-turn and existing multi-turn red-teaming methods at surfacing security weaknesses.\n\nThe work matters because code-generation tools are now embedded in daily developer workflows, and most security evaluations still treat the model as a single-shot oracle — one prompt in, one answer out. Real coding sessions are iterative: a developer refines, asks follow-ups, and shares partial code. An attacker operating the same way has more surface area than a single malicious prompt ever could. RedCoder closes the gap between how these models are tested and how they are actually used.\n\nThe study also highlights a scalability problem with today's red-teaming practice: it leans heavily on human effort, which caps how many models or scenarios can be evaluated. Automated multi-turn probing does not solve alignment — it just makes the audit cheaper. Whether the labs shipping these coding tools will adopt it before adversaries build the same thing independently is the more uncomfortable question.","[\"ai\",\"security\",\"code-generation\",\"red-teaming\"]","2026-07-03T04:00:00.000Z","2026-07-03T09:09:44.148Z","2026-07-03T09:09:47.014Z","published",null,[],"security",[26,24,27,28],"ai","code-generation","red-teaming",[30],{"name":31,"url":32},"arXiv cs.AI","https:\u002F\u002Farxiv.org\u002Fabs\u002F2507.22063",0,{"sections":35},[36,40,44,49,54,59,64,69,74,79,84,88,93,98],{"name":37,"slug":26,"count":38,"latest_published_at":39},"AI",2590,"2026-07-16T04:00:00.000Z",{"name":41,"slug":24,"count":42,"latest_published_at":43},"Security",294,"2026-07-15T19:59:48.000Z",{"name":45,"slug":46,"count":47,"latest_published_at":48},"Deals","deals",179,"2026-06-29T20:02:07.000Z",{"name":50,"slug":51,"count":52,"latest_published_at":53},"Policy","policy",158,"2026-07-16T00:02:48.000Z",{"name":55,"slug":56,"count":57,"latest_published_at":58},"Hardware","hardware",122,"2026-07-14T19:46:26.000Z",{"name":60,"slug":61,"count":62,"latest_published_at":63},"Consumer Tech","consumer-tech",93,"2026-07-13T13:20:48.000Z",{"name":65,"slug":66,"count":67,"latest_published_at":68},"Software","software",70,"2026-07-13T19:52:25.000Z",{"name":70,"slug":71,"count":72,"latest_published_at":73},"Science","science",66,"2026-07-10T10:29:37.000Z",{"name":75,"slug":76,"count":77,"latest_published_at":78},"Dev Tools","dev-tools",59,"2026-07-07T04:00:00.000Z",{"name":80,"slug":81,"count":82,"latest_published_at":83},"Gaming","gaming",41,"2026-07-09T04:00:00.000Z",{"name":85,"slug":86,"count":82,"latest_published_at":87},"Startups","startups","2026-06-29T20:55:50.000Z",{"name":89,"slug":90,"count":91,"latest_published_at":92},"General","general",29,"2026-07-10T22:28:58.000Z",{"name":94,"slug":95,"count":96,"latest_published_at":97},"Reviews","reviews",20,"2026-06-24T12:00:01.000Z",{"name":99,"slug":100,"count":101,"latest_published_at":102},"How-To","how-to",6,"2026-06-16T09:00:00.000Z"]