AIToday

Researchers develop GoCoMA tool to identify which AI wrote a piece of code—addressing security and licensing risks as LLM-generated code becomes indistinguishable from human work

arXiv cs.CLApr 21, 20262 min read

Summaries like this, in your inbox every morning.

Sign up free →

3 Key Points

  1. Researchers published GoCoMA, a system that analyzes code to determine whether it was written by a human or generated by an LLM (large language model—AI trained on millions of code samples). The system examines two layers: the code's writing style and structure, plus the binary 'fingerprint' left by the compiler (the software that translates code into machine instructions).

  2. Unlike previous detection methods that focus on one aspect of code, GoCoMA fuses multiple signals together using hyperbolic geometry (a mathematical technique that better captures hierarchical relationships), making it more accurate at catching LLM-generated code that mimics human writing. This matters because LLMs now write code so convincingly that existing detection methods struggle.

  3. For business and security teams, this unlocks code auditing at scale—you can now scan open-source repositories or internal codebases to flag AI-generated contributions, catching potential licensing violations (using GPL code without attribution), supply-chain risks, or unvetted AI code before deployment. For companies managing compliance or intellectual property, this removes uncertainty about code origin.

Discussion

No comments yet. Be the first to share your thoughts!

Log in to join the discussion

Related Articles

Stay ahead with AI news

Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.

Get Started Free

Free · takes 30 seconds · unsubscribe anytime

1 minute a day. The AI essentials.

200+ sources · Email / LINE / Slack

Get it free →