[{"data":1,"prerenderedAt":482},["ShallowReactive",2],{"/ja-jp/the-source/ai/understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo":3,"footer-ja-jp":33,"the-source-banner-ja-jp":365,"the-source-navigation-ja-jp":371,"article-site-categories-ja-jp":394,"the-source-newsletter-ja-jp":396,"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo-the-source-source-cta-ja-jp":6,"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo-article-hero-category-ja-jp":403,"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo-category-ja-jp":428,"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo-article-hero-author-ja-jp":441,"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo-the-source-resources-ja-jp":462},{"id":4,"title":5,"body":6,"category":7,"config":8,"content":13,"description":6,"extension":24,"meta":25,"navigation":26,"path":27,"seo":28,"slug":29,"stem":30,"type":31,"__hash__":32},"theSource/ja-jp/the-source/ai/understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo.yml","Understand And Resolve Vulnerabilities With Ai Powered Gitlab Duo",null,"ai",{"layout":9,"template":10,"author":11,"featured":12},"the-source","TheSourceArticle","iganbaruch",false,{"title":14,"date":15,"description":16,"timeToRead":17,"heroImage":18,"keyTakeaways":19,"articleBody":23},"AI搭載のGitLab Duoで脆弱性を把握し解決","2024-02-21","デベロッパーは、自動の説明機能やマージリクエストの自動生成を活用して脆弱性を特定し修正することで、スムーズな開発プロセスを実現できます。","3分で読めます","https://res.cloudinary.com/about-gitlab-com/image/upload/v1751464462/a8lhn3mrjyjuq55m1yqc.png",[20,21,22],"GitLab DuoはAIを活用して脆弱性を説明し、知識のギャップを埋め、問題解決のスピードを向上させます。","ワンクリックで利用できるGitLab DuoのAI修正機能は、マージリクエストを自動生成し、セキュリティパッチにかかる時間を節約します。","GitLab Duoは、デベロッパーが脆弱性について効率的に理解して解決できるよう支援し、積極的なセキュリティ対策を促進します。","変化の激しいソフトウェア開発の世界では、企業は迅速かつ効率的なイノベーションの提供に努めると同時に、安全なアプリケーションを提供する重要性も認識しています。GitLabは、最も包括的な[AIを搭載した](https://about.gitlab.com/gitlab-duo-agent-platform/)DevSecOpsプラットフォームです。GitLabのCIパイプラインにはセキュリティスキャンが標準搭載されており、コード内の潜在的な問題を明確に示す詳細なスキャンレポートを生成します。しかし、すべてのデベロッパーがサイバーセキュリティに精通しているわけではなく、すべての種類の脆弱性に対処した経験があるわけでもありません。そのため、知識の格差が生じ、セキュリティ問題への対処に混乱や遅延が発生することがあります。\n\n![静的アプリケーションセキュリティテストで検出された脆弱性の例](https://res.cloudinary.com/about-gitlab-com/image/upload/v1752175720/Blog/vrukdl5d06omgln77s7x.png)\n\n\u003Ccenter>\u003Ci>静的アプリケーションセキュリティテストで検出された脆弱性の例\u003C/i>\u003C/center>\u003Cp>\u003C/p>\n\n## GitLab Duo（AI）による脆弱性の解決\n\n[GitLab Duo](https://about.gitlab.com/gitlab-duo-agent-platform/)は、AIを活用して脆弱性の解決を支援します。その仕組みをご紹介します。\n\n### 脆弱性を理解する\nデベロッパーのコードで見つかった致命的な脆弱性は、コードのマージを遅らせる原因となります。多くの場合、これらの問題を迅速に解決するにはセキュリティ専門家の支援が必要です。これにより、オープンのマージリクエストの期間が長くなり、機能のリリースも遅延するという状況につながります。GitLabは、こうした専門知識を補うために、スキャンで検出されたセキュリティの脆弱性をデベロッパーが理解できるよう、[脆弱性の説明機能](https://docs.gitlab.com/ja-jp/user/application_security/vulnerabilities/#explaining-a-vulnerability)を提供しています。この機能は、検出された脆弱性に関する明確なインサイト、潜在的なリスクや攻撃の例、および実用的な解決策やコードスニペットの例を提供します。\n\n脆弱性の説明は、脆弱性に関する情報のみを集めて、概要を生成します。この概要にアクセスするには、各脆弱性レポート内の「脆弱性の説明」ボタンをクリックします。\n\n![脆弱性の説明の例](https://res.cloudinary.com/about-gitlab-com/image/upload/v1752175726/Blog/bxuwzj9ize3wffo0ydfj.png)\n\u003Ccenter>\u003Ci>脆弱性の説明の例\u003C/i>\u003C/center>\u003Cp>\u003C/p>\n\nデベロッパーは、この説明の各セクションに従って迅速に脆弱性に対処できます。これにより、脅威の軽減に積極的に取り組む文化が育まれます。こうした取り組みを通じて、デベロッパーは、気負いすることなくセキュリティ問題に対処する自信がつき、結果として、より積極的かつ安全な開発環境が促進されます。\n\n### 脆弱性を修正する\n\nGitLabは、検出された脆弱性の説明にとどまらず、AIの力を活用して、ワンクリックで迅速に解決策を提案できるようになりました。この機能は、脆弱性に関する詳細な情報とその修正方法を含むマージリクエストを自動的に生成します。さらに、脆弱性に対処するために必要なコードも提案します。これにより、デベロッパーは時間を大幅に節約できます。後は修正内容を確認し、必要に応じて調整を行い、マージするだけです。\n\n![脆弱性の詳細とそれを解決するための推奨コードを含む、AIによって自動的に生成されるマージリクエスト](https://res.cloudinary.com/about-gitlab-com/image/upload/v1752175733/Blog/emogf7awocdtudjbjhzd.png)\n\n上記の画像は、AIが自動生成したマージリクエストを示しています。このリクエストには、脆弱性の詳細と、それを解決するための推奨コードが含まれています。\n\n## 製品ツアーを体験する\n\n機能の概要や実際の使い方をまとめた簡単な製品ツアーをご用意しました。画像をクリックし、「Next」ボタンを使用してデモを進めてください（英語）。\n\n[![脆弱性の説明製品ツアーのスクリーンショット](https://res.cloudinary.com/about-gitlab-com/image/upload/v1752175738/Blog/fd7yws7a1anvzhffv9sg.png)](https://tech-marketing.gitlab.io/static-demos/pt-explain-vulnerability.html)\n\n> [今日からGitLabを始めましょう！](https://about.gitlab.com/gitlab-duo-agent-platform/).\n","yml",{},true,"/ja-jp/the-source/ai/understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo",{"title":14,"description":16,"ogImage":18},"understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo","ja-jp/the-source/ai/understand-and-resolve-vulnerabilities-with-ai-powered-gitlab-duo","article","GQ-3qG-EO4JzbmJECVc-_83NqzYUU6EK8brBxMng9go",{"data":34},{"text":35,"source":36,"edit":42,"contribute":47,"config":52,"items":57,"minimal":356},"GitはSoftware Freedom Conservancyの商標です。当社は「GitLab」をライセンスに基づいて使用しています",{"text":37,"config":38},"ページのソースを表示",{"href":39,"dataGaName":40,"dataGaLocation":41},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":43,"config":44},"このページを編集",{"href":45,"dataGaName":46,"dataGaLocation":41},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":48,"config":49},"ご協力をお願いします",{"href":50,"dataGaName":51,"dataGaLocation":41},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":53,"facebook":54,"youtube":55,"linkedin":56},"https://twitter.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[58,114,171,231,294],{"title":59,"links":60,"subMenu":76},"価格",[61,66,71],{"text":62,"config":63},"プランの表示",{"href":64,"dataGaName":65,"dataGaLocation":41},"/ja-jp/pricing/","view plans",{"text":67,"config":68},"Premiumを選ぶ理由",{"href":69,"dataGaName":70,"dataGaLocation":41},"/ja-jp/pricing/premium/","why premium",{"text":72,"config":73},"Ultimateを選ぶ理由",{"href":74,"dataGaName":75,"dataGaLocation":41},"/ja-jp/pricing/ultimate/","why ultimate",[77],{"title":78,"links":79},"お問い合わせ",[80,84,89,94,99,104,109],{"text":78,"config":81},{"href":82,"dataGaName":83,"dataGaLocation":41},"/ja-jp/sales/","sales",{"text":85,"config":86},"サポートを受ける",{"href":87,"dataGaName":88,"dataGaLocation":41},"https://support.gitlab.com","support portal",{"text":90,"config":91},"カスタマーポータル",{"href":92,"dataGaName":93,"dataGaLocation":41},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"text":95,"config":96},"ステータス",{"href":97,"dataGaName":98,"dataGaLocation":41},"https://status.gitlab.com/","status",{"text":100,"config":101},"利用規約",{"href":102,"dataGaName":103,"dataGaLocation":41},"/terms/","terms of use",{"text":105,"config":106},"プライバシーに関する声明",{"href":107,"dataGaName":108,"dataGaLocation":41},"/ja-jp/privacy/","privacy statement",{"text":110,"config":111},"Cookie 優先設定",{"dataGaName":112,"dataGaLocation":41,"id":113,"isOneTrustButton":26},"cookie preferences","ot-sdk-btn",{"title":115,"links":116,"subMenu":127},"製品",[117,122],{"text":118,"config":119},"DevSecOpsプラットフォーム",{"href":120,"dataGaName":121,"dataGaLocation":41},"/ja-jp/platform/","devsecops platform",{"text":123,"config":124},"AI支援開発",{"href":125,"dataGaName":126,"dataGaLocation":41},"/ja-jp/gitlab-duo-agent-platform/","ai-assisted development",[128],{"title":129,"links":130},"トピック",[131,136,141,146,151,156,161,166],{"text":132,"config":133},"CI/CD",{"href":134,"dataGaName":135,"dataGaLocation":41},"/ja-jp/topics/ci-cd/","cicd",{"text":137,"config":138},"GitOps",{"href":139,"dataGaName":140,"dataGaLocation":41},"/ja-jp/topics/gitops/","gitops",{"text":142,"config":143},"DevOps",{"href":144,"dataGaName":145,"dataGaLocation":41},"/ja-jp/topics/devops/","devops",{"text":147,"config":148},"バージョン管理",{"href":149,"dataGaName":150,"dataGaLocation":41},"/ja-jp/topics/version-control/","version control",{"text":152,"config":153},"DevSecOps",{"href":154,"dataGaName":155,"dataGaLocation":41},"/ja-jp/topics/devsecops/","devsecops",{"text":157,"config":158},"クラウドネイティブ",{"href":159,"dataGaName":160,"dataGaLocation":41},"/ja-jp/topics/cloud-native/","cloud native",{"text":162,"config":163},"コーディングのためのAI",{"href":164,"dataGaName":165,"dataGaLocation":41},"/ja-jp/topics/devops/ai-for-coding/","ai for coding",{"text":167,"config":168},"エージェント型AI",{"href":169,"dataGaName":170,"dataGaLocation":41},"/ja-jp/topics/agentic-ai/","agentic ai",{"title":172,"links":173},"ソリューション",[174,179,184,189,194,198,203,206,211,216,221,226],{"text":175,"config":176},"アプリケーションセキュリティテスト",{"href":177,"dataGaName":178,"dataGaLocation":41},"/ja-jp/solutions/application-security-testing/","Application Security Testing",{"text":180,"config":181},"自動化されたソフトウェアデリバリー",{"href":182,"dataGaName":183,"dataGaLocation":41},"/ja-jp/solutions/delivery-automation/","automated software delivery",{"text":185,"config":186},"アジャイル開発",{"href":187,"dataGaName":188,"dataGaLocation":41},"/ja-jp/solutions/agile-delivery/","agile delivery",{"text":190,"config":191},"SCM",{"href":192,"dataGaName":193,"dataGaLocation":41},"/ja-jp/solutions/source-code-management/","source code management",{"text":132,"config":195},{"href":196,"dataGaName":197,"dataGaLocation":41},"/ja-jp/solutions/continuous-integration/","continuous integration & delivery",{"text":199,"config":200},"バリューストリーム管理",{"href":201,"dataGaName":202,"dataGaLocation":41},"/ja-jp/solutions/value-stream-management/","value stream management",{"text":137,"config":204},{"href":205,"dataGaName":140,"dataGaLocation":41},"/ja-jp/solutions/gitops/",{"text":207,"config":208},"大企業",{"href":209,"dataGaName":210,"dataGaLocation":41},"/ja-jp/enterprise/","enterprise",{"text":212,"config":213},"スモールビジネス",{"href":214,"dataGaName":215,"dataGaLocation":41},"/ja-jp/small-business/","small business",{"text":217,"config":218},"公共機関",{"href":219,"dataGaName":220,"dataGaLocation":41},"/ja-jp/solutions/public-sector/","public sector",{"text":222,"config":223},"教育",{"href":224,"dataGaName":225,"dataGaLocation":41},"/ja-jp/solutions/education/","education",{"text":227,"config":228},"金融サービス",{"href":229,"dataGaName":230,"dataGaLocation":41},"/ja-jp/solutions/finance/","financial services",{"title":232,"links":233},"リソース",[234,239,244,249,254,259,264,269,274,279,284,289],{"text":235,"config":236},"インストール",{"href":237,"dataGaName":238,"dataGaLocation":41},"/ja-jp/install/","install",{"text":240,"config":241},"クイックスタートガイド",{"href":242,"dataGaName":243,"dataGaLocation":41},"/ja-jp/get-started/","quick setup checklists",{"text":245,"config":246},"学ぶ",{"href":247,"dataGaName":248,"dataGaLocation":41},"https://university.gitlab.com/","learn",{"text":250,"config":251},"製品ドキュメント",{"href":252,"dataGaName":253,"dataGaLocation":41},"https://docs.gitlab.com/ja-jp/","docs",{"text":255,"config":256},"ブログ",{"href":257,"dataGaName":258,"dataGaLocation":41},"/ja-jp/blog/","blog",{"text":260,"config":261},"お客様成功事例",{"href":262,"dataGaName":263,"dataGaLocation":41},"/ja-jp/customers/","customer success stories",{"text":265,"config":266},"リモート",{"href":267,"dataGaName":268,"dataGaLocation":41},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"text":270,"config":271},"GitLabサービス",{"href":272,"dataGaName":273,"dataGaLocation":41},"/ja-jp/services/","services",{"text":275,"config":276},"コミュニティ",{"href":277,"dataGaName":278,"dataGaLocation":41},"/community/","community",{"text":280,"config":281},"フォーラム",{"href":282,"dataGaName":283,"dataGaLocation":41},"https://forum.gitlab.com/","forum",{"text":285,"config":286},"イベント",{"href":287,"dataGaName":288,"dataGaLocation":41},"/events/","events",{"text":290,"config":291},"パートナー",{"href":292,"dataGaName":293,"dataGaLocation":41},"/ja-jp/partners/","partners",{"title":295,"links":296},"会社情報",[297,302,307,312,317,322,327,331,336,341,346,351],{"text":298,"config":299},"GitLabについて",{"href":300,"dataGaName":301,"dataGaLocation":41},"/ja-jp/company/","company",{"text":303,"config":304},"採用情報",{"href":305,"dataGaName":306,"dataGaLocation":41},"/jobs/","jobs",{"text":308,"config":309},"経営陣",{"href":310,"dataGaName":311,"dataGaLocation":41},"/company/team/e-group/","leadership",{"text":313,"config":314},"チーム",{"href":315,"dataGaName":316,"dataGaLocation":41},"/company/team/","team",{"text":318,"config":319},"ハンドブック",{"href":320,"dataGaName":321,"dataGaLocation":41},"https://handbook.gitlab.com/","handbook",{"text":323,"config":324},"投資家向け情報",{"href":325,"dataGaName":326,"dataGaLocation":41},"https://ir.gitlab.com/","investor relations",{"text":328,"config":329},"Sustainability",{"href":330,"dataGaName":328,"dataGaLocation":41},"/sustainability/",{"text":332,"config":333},"ダイバーシティ、インクルージョン、ビロンギング（DIB）",{"href":334,"dataGaName":335,"dataGaLocation":41},"/ja-jp/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":337,"config":338},"トラストセンター",{"href":339,"dataGaName":340,"dataGaLocation":41},"/ja-jp/security/","trust center",{"text":342,"config":343},"ニュースレター",{"href":344,"dataGaName":345,"dataGaLocation":41},"/company/contact/#contact-forms","newsletter",{"text":347,"config":348},"プレス",{"href":349,"dataGaName":350,"dataGaLocation":41},"/press/","press",{"text":352,"config":353},"現代奴隷制の透明性に関する声明",{"href":354,"dataGaName":355,"dataGaLocation":41},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"items":357},[358,360,363],{"text":100,"config":359},{"href":102,"dataGaName":103,"dataGaLocation":41},{"text":361,"config":362},"Cookieの設定",{"dataGaName":112,"dataGaLocation":41,"id":113,"isOneTrustButton":26},{"text":105,"config":364},{"href":107,"dataGaName":108,"dataGaLocation":41},{"visibility":26,"title":366,"button":367},"The Intelligent Software Development Era: How AI is reshaping DevSecOps teams",{"config":368,"text":370},{"href":369},"/ja-jp/developer-survey/japan/","Get the research report",{"logo":372,"subscribeLink":377,"navItems":381},{"altText":373,"config":374},"the source logo",{"src":375,"href":376},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1750191004/t7wz1klfb2kxkezksv9t.svg","/ja-jp/the-source/",{"text":378,"config":379},"購読する",{"href":380},"#subscribe",[382,386,390],{"text":383,"config":384},"人工知能",{"href":385},"/ja-jp/the-source/ai/",{"text":387,"config":388},"セキュリティとコンプライアンス",{"href":389},"/ja-jp/the-source/security/",{"text":391,"config":392},"プラットフォームとインフラストラクチャ",{"href":393},"/ja-jp/the-source/platform/",{"categoryNames":395},{"ai":383,"platform":391,"security":387},{"title":397,"description":398,"submitMessage":399,"formData":400},"The Sourceニュースレター","ソフトウェア開発の未来への洞察に関する最新情報を入手しましょう。","The Sourceのニュースレターへの登録が完了しました。",{"config":401},{"formId":402,"formName":345,"hideRequiredLabel":26},28467,{"id":404,"title":405,"body":6,"category":6,"config":406,"content":407,"description":6,"extension":24,"meta":422,"navigation":26,"path":423,"seo":424,"slug":7,"stem":425,"testContent":6,"type":426,"__hash__":427},"pages/ja-jp/the-source/ai/index.yml","",{"layout":9},[408,415],{"componentName":409,"componentContent":410},"TheSourceCategoryHero",{"title":383,"description":411,"image":412},"AIによってソフトウェア開発がどのように変わりつつあるか、また組織がAI投資を最大限に活用する方法について、専門家によるインサイトをご紹介します。",{"config":413},{"src":414},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463300/eoudcbj5aoucl0spsp0c.png",{"componentName":416,"componentContent":417},"TheSourceCategoryMainSection",{"config":418},{"sourceCTAs":419},[420,421],"source-lp-how-to-get-started-using-ai-in-software-development","navigating-ai-maturity-in-devsecops",{},"/ja-jp/the-source/ai",{"title":383,"description":411,"ogImage":405},"ja-jp/the-source/ai/index","category","oU-WMVgmXN1wZzRhxforaQukla1nCzgIlr4R9TMYpM8",{"id":404,"title":405,"body":6,"category":6,"config":429,"content":430,"description":6,"extension":24,"meta":439,"navigation":26,"path":423,"seo":440,"slug":7,"stem":425,"testContent":6,"type":426,"__hash__":427},{"layout":9},[431,435],{"componentName":409,"componentContent":432},{"title":383,"description":411,"image":433},{"config":434},{"src":414},{"componentName":416,"componentContent":436},{"config":437},{"sourceCTAs":438},[420,421],{},{"title":383,"description":411,"ogImage":405},{"id":442,"title":443,"body":6,"category":6,"config":444,"content":445,"description":6,"extension":24,"meta":456,"navigation":26,"path":457,"seo":458,"slug":11,"stem":459,"testContent":6,"type":460,"__hash__":461},"theSourceAuthors/ja-jp/the-source/authors/iganbaruch.yml","Iganbaruch",{"layout":9},[446,454],{"componentName":447,"componentContent":448},"TheSourceAuthorHero",{"config":449,"name":450,"headshot":451},{"gitlabHandle":11},"Itzik Gan Baruch",{"altText":450,"config":452},{"src":453},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463443/vibb2fkc0ojni2d1eqde.png",{"componentName":455},"TheSourceArticlesList",{},"/ja-jp/the-source/authors/iganbaruch",{"title":450},"ja-jp/the-source/authors/iganbaruch","author","LhjbARWedtfmEdydMC791hB0_uP8pNF8mapKMVZTiSw",[463,473],{"config":464,"title":465,"description":466,"link":467},{"slug":421},"DevSecOpsにおいてAIの活用を進める","組織がソフトウェア開発ライフサイクルにAIをどのように組み込んでいるかのインサイトについては、[世界中の5,000人を超えるDevSecOpsプロフェッショナルからの調査結果](/ja-jp/developer-survey/2024/ai/)をご覧ください。",{"text":468,"config":469},"レポートを読む",{"href":470,"dataGaName":471,"dataGaLocation":472},"/ja-jp/developer-survey/2024/ai/","Navigating AI Maturity in DevSecOps","thesource",{"config":474,"title":475,"description":476,"link":477},{"slug":420},"ソフトウェア開発でAIを使用する方法","安全なソフトウェアをより迅速に開発する上で、戦略的なAIのフレームワークの構築に役立つ具体的なヒントが満載のeBookをぜひご一読ください（英語版のみ）。",{"text":478,"config":479},"ebookを読む",{"href":480,"dataGaName":481,"dataGaLocation":472},"/the-source/ai/getting-started-with-ai-in-software-development-a-guide-for-leaders/","How to Get Started Using AI in Software Development",1777493642538]