Report by Veracode

October 2025 Update: GenAI Code Security Report

10 FINDINGSPublished Nov 18, 2025
View Original Report →

Key Findings

Over 85% of tasks related to Cryptographic Algorithms passed across the industry.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI code

OpenAI’s GPT-5 Mini achieved a 72% pass rate on security tests, marking the highest recorded to date.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeOpenAIGPT-5 Mini

OpenAI’s standard GPT-5 achieved a 70% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeOpenAIGPT-5

The pass rates for Log Injection vulnerabilities were near 12% across all evaluated models.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeLog Injection vulnerabilities

Qwen3 Coder achieved a 50% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeQwen3 Coder

Google Gemini 2.5 Pro achieved a 59% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeGoogle GeminiGemini 2.5 Pro

Anthropic’s Claude Sonnet 4.5 achieved a 50% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeAnthropicClaude Sonnet 4.5

The pass rates for Cross-Site Scripting (XSS) vulnerabilities remained below 14% across all evaluated models.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeXSS vulnerabilities

xAI Grok 4 achieved a 55% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codexAI Grok 4

OpenAI’s non-reasoning GPT-5-chat model delivered a 52% pass rate on security tests.

VeracodeOctober 2025 Update: GenAI Code Security Report·6mo ago
Gen AIGen AI codeOpenAIGPT-5