Research
CodeTracer Performs Forensic Attribution of Backdoored Code Completions
Code completion models remain vulnerable to backdoors implanted through malicious fine-tuning data, and adaptive attacks still evade current detection and mitigation. CodeTracer (arXiv 2607.08011, July 9) shifts from prevention to forensics, tracing a malicious completion back to the specific backdoor fine-tuning data that produced it. For teams consuming third-party or fine-tuned coding models, attribution changes the risk calculus — you can identify the poisoned corpus after the fact rather than only discovering that something is wrong.
Source
↳ Follow the thread