codesanitize

How far can we push AI autonomy in code era?

Software Development

codesanitize

-

5 August 2025

How far can we push AI autonomy in code era?

When individuals ask about the way forward for Generative AI in coding, what they
typically need to know is: Will there be a degree the place Massive Language Fashions can
autonomously generate and keep a working software program software? Will we
have the ability to simply writer a pure language specification, hit “generate” and
stroll away, and AI will have the ability to do all of the coding, testing and deployment
for us?

To be taught extra about the place we’re at present, and what must be solved
on a path from at present to a future like that, we ran some experiments to see
how far we might push the autonomy of Generative AI code era with a
easy software, at present. The usual and the standard lens utilized to
the outcomes is the use case of growing digital merchandise, enterprise
software software program, the kind of software program that I have been constructing most in
my profession. For instance, I’ve labored loads on massive retail and listings
web sites, methods that sometimes present RESTful APIs, retailer information into
relational databases, ship occasions to one another. Threat assessments and
definitions of what good code seems to be like can be completely different for different
conditions.

The principle purpose was to study AI’s capabilities. A Spring Boot
software just like the one in our setup can in all probability be written in 1-2 hours
by an skilled developer with a robust IDE, and we do not even bootstrap
issues that a lot in actual life. Nevertheless, it was an fascinating check case to
discover our important query: How may we push autonomy and repeatability of
AI code era?

For the overwhelming majority of our iterations, we used Claude-Sonnet fashions
(both 3.7 or 4). These in our expertise constantly present the best
coding capabilities of the out there LLMs, so we discovered them probably the most
appropriate for this experiment.

The methods

We employed a set of “methods” one after the other to see if and the way they’ll
enhance the reliability of the era and high quality of the generated
code. All the methods had been used to enhance the likelihood that the
setup generates a working, examined and prime quality codebase with out human
intervention. They had been all makes an attempt to introduce extra management into the
era course of.

Selection of the tech stack

We selected a easy “CRUD” API backend (Create, Learn, Replace, Delete)
applied in Spring Boot because the purpose of the era.

Determine 1: Diagram of the supposed
goal software, with typical Spring Boot layers of persistence,
providers, and controllers. Highlights how every layer ought to have assessments,
plus a set of E2E assessments.

As talked about earlier than, constructing an software like this can be a fairly
easy use case. The thought was to start out quite simple, after which if that
works, crank up the complexity or number of necessities.

How can this enhance the success charge?

The selection of Spring Boot because the goal stack was in itself our first
technique of accelerating the probabilities of success.

A widespread tech stack that needs to be fairly prevalent within the coaching
information
A runtime framework that may do loads of the heavy lifting, which suggests
much less code to generate for AI
An software topology that has very clearly established patterns:
Controller -> Service -> Repository -> Entity, which signifies that it’s
comparatively simple to offer AI a set of patterns to observe

A number of brokers

We break up the era course of into a number of brokers. “Agent” right here
signifies that every of those steps is dealt with by a separate LLM session, with
a particular position and instruction set. We didn’t make another
configurations per step for now, e.g. we didn’t use completely different fashions for
completely different steps.

Determine 2: A number of brokers within the era
course of: Necessities analyst -> Bootstrapper -> Backend designer ->
Persistence layer generator -> Service layer generator -> Controller layer
generator -> E2E tester -> Code reviewer

To not taint the outcomes with subpar coding skills, we used a setup
on prime of an current coding assistant that has a bunch of coding-specific
skills already: It could possibly learn and search a codebase, react to linting
errors, retry when it fails, and so forth. We would have liked one that may orchestrate
subtasks with their very own context window. The one one we had been conscious of on the time
that may do that’s Roo Code, and
its fork Kilo Code. We used the latter. This gave
us a facsimile of a multi-agent coding setup with out having to construct
one thing from scratch.

Determine 3: Subtasking setup in Kilo: An
orchestrator session delegates to subtask classes

With a rigorously curated allow-list of terminal instructions, a human solely
must hit “approve” right here and there. We let it run within the background and
checked on it from time to time, and Kilo gave us a sound notification
at any time when it wanted enter or an approval.

How can this enhance the success charge?

Despite the fact that technically the context window sizes of LLMs are
rising, LLM era outcomes nonetheless develop into extra hit or miss the
longer a session turns into. Many coding assistants now provide the power to
compress the context intermittently, however a standard recommendation to coders utilizing
brokers remains to be that they need to restart coding classes as ceaselessly as
attainable.

Secondly, it’s a very established prompting observe is to assign
roles and views to LLMs to extend the standard of their outcomes.
We might reap the benefits of that as effectively with this separation into a number of
agentic steps.

Stack-specific over basic goal

As you possibly can perhaps already inform from the workflow and its separation
into the standard controller, service and persistence layers, we did not
draw back from utilizing methods and prompts particular to the Spring goal
stack.

How can this enhance the success charge?

One of many key issues individuals are enthusiastic about with Generative AI is
that it may be a basic goal code generator that may flip pure
language specs into code in any stack. Nevertheless, simply telling
an LLM to “write a Spring Boot software” shouldn’t be going to yield the
prime quality and contextual code you want in a real-world digital
product state of affairs with out additional directions (extra on that within the
outcomes part). So we wished to see how stack-specific our setup would
must develop into to make the outcomes prime quality and repeatable.

Use of deterministic scripts

For bootstrapping the appliance, we used a shell script moderately than
having the LLM do that. In any case, there’s a CLI to create an as much as
date, idiomatically structured Spring Boot software, so why would we
need AI to do that?

The bootstrapping step was the one one the place we used this system,
but it surely’s price remembering that an agentic workflow like this by no
means must be completely as much as AI, we will combine and match with “correct
software program” wherever acceptable.

Code examples in prompts

Utilizing instance code snippets for the varied patterns (Entity,
Repository, …) turned out to be the simplest technique to get AI
to generate the kind of code we wished.

How can this enhance the success charge?

Why do we’d like these code samples, why does it matter for our digital
merchandise and enterprise software software program lens?

The best instance from our experiment is the usage of libraries. For
instance, if not particularly prompted, we discovered that the LLM ceaselessly
makes use of javax.persistence, which has been outmoded by
jakarta.persistence. Extrapolate that instance to a big engineering
group that has a particular set of coding patterns, libraries, and
idioms that they need to use constantly throughout all their codebases.
Pattern code snippets are a really efficient approach to talk these
patterns to the LLM, and make sure that it makes use of them within the generated
code.

Additionally think about the use case of AI sustaining this software over time,
and never simply creating its first model. We might need it to be prepared to make use of
a brand new framework or new framework model as and when it turns into related, with out
having to attend for it to be dominant within the mannequin’s coaching information. We might
want a manner for the AI tooling to reliably decide up on these library nuances.

Reference software as an anchor

It turned out that sustaining the code examples within the pure
language prompts is sort of tedious. If you iterate on them, you do not
get rapid suggestions to see in case your pattern would truly compile, and
you additionally must be sure that all of the separate samples you present are
according to one another.

To enhance the developer expertise of the developer implementing the
agentic workflow, we arrange a reference software and an MCP (Mannequin
Context Protocol) server that may present the pattern code to the agent
from this reference software. This fashion we might simply be sure that
the samples compile and are according to one another.

Determine 4: Reference software as an
anchor

Generate-review loops

We launched a evaluation agent to double test AI’s work in opposition to the
unique prompts. This added a further security web to catch errors
and make sure the generated code adhered to the necessities and
directions.

How can this enhance the success charge?

In an LLM’s first era, it typically doesn’t observe all of the
directions accurately, particularly when there are loads of them.
Nevertheless, when requested to evaluation what it created, and the way it matches the
unique directions, it’s often fairly good at reasoning in regards to the
constancy of its work, and may repair a lot of its personal errors.

Codebase modularization

We requested the AI to divide the area into aggregates, and use these
to find out the package deal construction.

Determine 5: Pattern of modularised
package deal construction

That is truly an instance of one thing that was laborious to get AI to
do with out human oversight and correction. It’s a idea that can also be
laborious for people to do effectively.

Here’s a immediate excerpt the place we ask AI to
group entities into aggregates throughout the necessities evaluation
step:

          An combination is a cluster of area objects that may be handled as a
          single unit, it should keep internally constant after every enterprise
          operation.

          For every combination:
          - Title root and contained entities
          - Clarify why this combination is sized the best way it's
          (transaction dimension, concurrency, learn/write patterns).

We did not spend a lot effort on tuning these directions and so they can in all probability be improved,
however usually, it isn’t trivial to get AI to use an idea like this effectively.

How can this enhance the success charge?

There are a lot of advantages of code modularisation that
enhance the standard of the runtime, like efficiency of queries, or
transactionality issues. But it surely additionally has many advantages for
maintainability and extensibility – for each people and AI:

Good modularisation limits the variety of locations the place a change must be
made, which suggests much less context for the LLM to remember throughout a change.
You may re-apply an agentic workflow like this one to 1 module at a time,
limiting token utilization, and lowering the dimensions of a change set.
Having the ability to clearly restrict an AI job’s context to particular code modules
opens up prospects to “freeze” all others, to cut back the prospect of
unintended adjustments. (We didn’t do this right here although.)

Outcomes

Spherical 1: 3-5 entities

For many of our iterations, we used domains like “Easy product catalog”
or “E-book monitoring in a library”, and edited down the area design carried out by the
necessities evaluation part to a most of 3-5 entities. The one logic in
the necessities had been a number of validations, aside from that we simply requested for
easy CRUD APIs.

We ran about 15 iterations of this class, with rising sophistication
of the prompts and setup. An iteration for the total workflow often took
about 25-Half-hour, and value $2-3 of Anthropic tokens ($4-5 with
“considering” enabled).

In the end, this setup might repeatedly generate a working software that
adopted most of our specs and conventions with hardly any human
intervention. It all the time bumped into some errors, however might ceaselessly repair its
personal errors itself.

Spherical 2: Pre-existing schema with 10 entities

To crank up the dimensions and complexity, we pointed the workflow at a
pared down current schema for a Buyer Relationship Administration
software (~10 entities), and likewise switched from in-memory H2 to
Postgres. Like in spherical 1, there have been a number of validation and enterprise
guidelines, however no logic past that, and we requested it to generate CRUD API
endpoints.

The workflow ran for 4–5 hours, with fairly a number of human
interventions in between.

As a second step, we supplied it with the total set of fields for the
important entity, requested it to develop it from 15 to 50 fields. This ran
one other 1 hour.

A sport of whac-a-mole

Total, we might positively see an enchancment as we had been making use of
extra of the methods. However in the end, even on this fairly managed
setup with very particular prompting and a comparatively easy goal
software, we nonetheless discovered points within the generated code on a regular basis.
It’s kind of like whac-a-mole, each time you run the workflow, one thing
else occurs, and also you add one thing else to the prompts or the workflow
to attempt to mitigate that.

These had been a few of the patterns which are notably problematic for
an actual world enterprise software or digital product:

Overeagerness

We ceaselessly acquired extra endpoints and options that we didn’t
ask for within the necessities. We even noticed it add enterprise logic that we
did not ask for, e.g. when it got here throughout a website time period that it knew how
to calculate. (“Professional-rated income, I do know what that’s! Let me add the
calculation for that.”)

Doable mitigation

Could be reigned in to an extent with the prompts, and repeatedly
reminding AI that we ONLY need what’s specified. The reviewer agent can
additionally assist catch a few of the extra code (although we have seen the reviewer
delete an excessive amount of code in its try to repair that). However this nonetheless
occurred in some form or kind in nearly all of our iterations. We made
one try at decreasing the temperature to see if that may assist, however
because it was just one try in an earlier model of the setup, we won’t
conclude a lot from the outcomes.

Gaps within the necessities can be stuffed with assumptions

A precedence: String area in an entity was assumed by AI to have the
worth set “1”, “2”, “3”. After we launched the enlargement to extra fields
later, although we did not ask for any adjustments to the precedence
area, it modified its assumptions to “low”, “medium”, “excessive”. Other than
the truth that it could be loads higher to have launched an Enum
right here, so long as the assumptions keep within the assessments solely, it won’t be
a giant situation but. However this may very well be fairly problematic and have heavy
influence on a manufacturing database if it could occur to a default
worth.

Doable mitigation

We might one way or the other must be sure that the necessities we give are as
full and detailed as attainable, and embrace a price set on this case.
However traditionally, we have now not been nice at that… We have now seen some AI
be very useful in serving to people discover gaps of their necessities, however
the danger of incomplete or incoherent necessities all the time stays. And
the purpose right here was to check the boundaries of AI autonomy, in order that
autonomy is unquestionably restricted at this necessities step.

Brute pressure fixes

“[There is a ] lazy-loaded relationship that’s inflicting JSON
serialization issues. Let me repair this by including @JsonIgnore to the
area”. Related issues have additionally occurred to me a number of instances in
agent-assisted coding classes, from “the construct is operating out of
reminiscence, let’s simply allocate extra reminiscence” to “I can not get the check to
work proper now, let’s skip it for now and transfer on to the following job”.

Doable mitigation

We have no thought find out how to stop this.

Declaring success despite purple assessments

AI ceaselessly claimed the construct and assessments had been profitable and moved
on to the following step, although they weren’t, and although our
directions explicitly said that the duty shouldn’t be carried out if construct or
assessments are failing.

Doable mitigation

This is perhaps simpler to repair than the opposite issues talked about right here,
by a extra subtle agent workflow setup that has deterministic
checkpoints and doesn’t permit the workflow to proceed except assessments are
inexperienced. Nevertheless, expertise from agentic workflows in enterprise course of
automation have already proven that LLMs discover methods to get round
that. Within the case of code era,
I might think about they might nonetheless delete or skip assessments to get past that
checkpoint.

Static code evaluation points

We ran SonarQube static code evaluation on
two of the generated codebases, right here is an excerpt of the problems that
had been discovered:

Difficulty	Severity	Sonar tags	Notes
Change this utilization of ‘Stream.gather(Collectors.toList())’ with ‘Stream.toList()’ and make sure that the listing is unmodified.	Main	java16	From Sonar’s “Why”: The important thing downside is that .gather(Collectors.toList()) truly returns a mutable type of Record whereas within the majority of instances unmodifiable lists are most well-liked.
Merge this if assertion with the enclosing one.	Main	clumsy	Generally, we noticed loads of ifs and nested ifs within the generated code, specifically in mapping and validation code. On a facet word, we additionally noticed loads of null checks with `if` as an alternative of the usage of `Non-obligatory`.
Take away this unused methodology parameter “occasion”.	Main	cert, unused	From Sonar’s “Why”: A typical code scent often called unused operate parameters refers to parameters declared in a operate however not used wherever inside the operate’s physique. Whereas this may appear innocent at first look, it may well result in confusion and potential errors in your code.
Full the duty related to this TODO remark.	Information		AI left TODOs within the code, e.g. “// TODO: This may be populated by becoming a member of with lead entity or separate service calls. For now, we’ll depart it null – it may be populated by the service layer”
Outline a continuing as an alternative of duplicating this literal (…) 10 instances.	Important	design	From Sonar’s “Why”: Duplicated string literals make the method of refactoring advanced and error-prone, as any change would must be propagated on all occurrences.
Name transactional strategies by way of an injected dependency as an alternative of instantly by way of ‘this’.	Important		From Sonar’s “Why”: A way annotated with Spring’s @Async, @Cacheable or @Transactional annotations won’t work as anticipated if invoked instantly from inside its class.

I might argue that each one of those points are related observations that result in
more durable and riskier maintainability, even in a world the place AI does all of the
upkeep.

Doable mitigation

It’s in fact attainable so as to add an agent to the workflow that appears on the
points and fixes them one after the other. Nevertheless, I do know from the actual world that not
all of them are related in each context, and groups typically intentionally mark
points as “will not repair”. So there’s nonetheless some nuance

flutter – Firebase Cloud Messaging notifications work in Debug however not in Launch mode on iOS

iOS Development

codesanitize

-

5 August 2025

0

Downside Description

I’ve a Flutter app with Firebase Cloud Messaging (FCM) that works completely in Debug mode however fails to show notifications visually in Launch mode on iOS. This is what occurs:

✅ Debug mode: Notifications seem appropriately when app is closed/background
❌ Launch mode: Notifications are acquired by the app (standing 200) however by no means displayed visually when app is closed/background
✅ Firebase Console: Notifications despatched straight from Firebase Console work completely in each modes
✅ App foreground: Notifications work in each Debug and Launch when app is open

Present Configuration

iOS AppDelegate.swift

import UIKit
import Flutter
import Firebase
import UserNotifications
import FirebaseMessaging

@principal
@objc class AppDelegate: FlutterAppDelegate {
  override func software(
    _ software: UIApplication,
    didFinishLaunchingWithOptions launchOptions: [UIApplication.LaunchOptionsKey: Any]?
  ) -> Bool {
    FirebaseApp.configure()

    if #out there(iOS 10.0, *) {
      UNUserNotificationCenter.present().delegate = self
      let authOptions: UNAuthorizationOptions = [.alert, .badge, .sound]
      UNUserNotificationCenter.present().requestAuthorization(
        choices: authOptions,
        completionHandler: { granted, error in
          print("🔔 Notification permission: (granted)")
        })
    }
    
    software.registerForRemoteNotifications()
    GeneratedPluginRegistrant.register(with: self)
    return tremendous.software(software, didFinishLaunchingWithOptions: launchOptions)
  }

  override func software(_ software: UIApplication,
                          didRegisterForRemoteNotificationsWithDeviceToken deviceToken: Information) {
    print("�� APNs machine token: (deviceToken.map { String(format: "%02.2hhx", $0) }.joined())")
    Messaging.messaging().apnsToken = deviceToken
  }

  override func software(
    _ software: UIApplication,
    didReceiveRemoteNotification userInfo: [AnyHashable: Any],
    fetchCompletionHandler completionHandler: @escaping (UIBackgroundFetchResult) -> Void
  ) {
    print("📱 Notification acquired in background: (userInfo)")
    completionHandler(.newData)
  }

  override func userNotificationCenter(
    _ heart: UNUserNotificationCenter,
    willPresent notification: UNNotification,
    withCompletionHandler completionHandler: @escaping (UNNotificationPresentationOptions) -> Void
  ) {
    if #out there(iOS 14.0, *) {
      completionHandler([.banner, .sound, .badge])
    } else {
      completionHandler([.alert, .sound, .badge])
    }
  }
}

Information.plist

UIBackgroundModes

    fetch
    remote-notification

FirebaseAppDelegateProxyEnabled

Runner.entitlements

aps-environment
manufacturing

Firebase Perform (Node.js)

const message = {
  token: token,
  notification: {
    title: title,
    physique: physique,
  },
  apns: {
    headers: {
      "apns-priority": "10",
      "apns-push-type": "alert",
    },
    payload: {
      aps: {
        alert: {
          title: title,
          physique: physique,
        },
        sound: "default",
        badge: 1,
      },
    },
  },
};

Flutter Background Handler

@pragma('vm:entry-point')
Future backgroundMessageHandler(RemoteMessage remoteMessage) async {
  await Firebase.initializeApp();
  debugPrint('�� Background message acquired: ${remoteMessage.notification?.title}');
  return Future.worth(true);
}

Key Observations

FCM tokens are legitimate (standing 200 from Firebase Perform)
APNs configuration works (Firebase Console notifications work)
Permissions are granted (notifications work when app is foreground)
Background modes are enabled in Information.plist
AppDelegate strategies are known as (logs present notifications are acquired)

Query

What could possibly be inflicting iOS to obtain FCM notifications in Launch mode however not show them visually when the app is closed or in background? The truth that Firebase Console notifications work suggests the APNs configuration is right, however there’s one thing particular about my customized Firebase Perform payload or iOS configuration that is stopping visible show in Launch mode.

✅ Verified APNs setting is about to “manufacturing” in entitlements
✅ Confirmed software.registerForRemoteNotifications() is known as
✅ Added @pragma('vm:entry-point') to forestall tree shaking
✅ Set FirebaseAppDelegateProxyEnabled to false
✅ Simplified APNs payload (eliminated content-available: 1)
✅ Verified Xcode Signing & Capabilities has Push Notifications enabled
✅ Examined with recent FCM tokens as a substitute of saved ones

Middle Stage at Cisco: How Interns Are Seen and Celebrated

Computer Networking

codesanitize

-

5 August 2025

0

Middle Stage at Cisco: How Interns Are Seen and Celebrated

This put up was authored by Abinaya, a 2025 intern on the Failure Evaluation Group.

I believed an internship meant staying behind the scenes — till Cisco put me middle stage, mic in hand, with leaders cheering me on.

What occurs when an intern isn’t simply welcomed however celebrated? Whenever you’re not simply given duties, however trusted with a voice? My Cisco journey wasn’t confined to a desk or display screen — it put me within the highlight, not simply as soon as, however twice inside two to 3 months of becoming a member of as a Failure Evaluation Technical Intern beneath Provide Chain Operations (SCO). I didn’t simply contribute to initiatives — I used to be seen, heard, and trusted in methods I by no means imagined attainable as a newcomer.

In a band alongside eight different interns, I had an opportunity to carry out reside music on the International Manufacturing Operations and Provide Chain Operations Gross sales and Logistics Management (GMO & S&L) all palms assembly the place we sang, and performed devices like cajon and guitar, trying into the viewers as prime leaders of Cisco cheered on us, not simply as interns, however as artists. It was a second the place Cisco stated, “We see you.”

Performing in entrance of the management staff was a surreal combine of pleasure and disbelief. Just some weeks into my internship, there I used to be — on stage, guitar strings buzzing, surrounded by fellow interns, in entrance of among the prime minds of Cisco. In that second, all I may assume was, “How unbelievable is it to be in a spot the place even the most recent voices are heard and celebrated?” That efficiency wasn’t only a musical reminiscence — it was the second I actually felt like I belonged.

However that wasn’t all. A number of weeks later, the mic was symbolic, however simply as highly effective.

I hosted an industrial go to for college kids from my faculty, the place I welcomed varied Cisco leaders who had been additionally alumni, my juniors, and interviewed my seniors who had already transitioned from campus to company to assist the juniors perceive what the leap from faculty to profession appears like, in addition to sharing my very own story of transition as an alumna.

Every little thing was full circle — standing at Cisco, not as a customer however as a bunch for my faculty juniors. I felt a deep sense of satisfaction, pleasure, and gratitude abruptly. Only a 12 months in the past, I used to be of their sneakers — impressed by this surroundings. And now, I used to be the one welcoming them, guiding them, and sharing my journey. It felt like my probability to provide again, to be the voice I as soon as regarded as much as. Extra than simply internet hosting, it was about inspiring, connecting, and making a bridge A group of Cisco interns standing together for a group photo. between the place we got here from and the place we’re headed. I felt really empowered as a result of Cisco trusted me to steer, characterize, and have a good time this significant second

These moments weren’t a part of a job description. They weren’t assignments. They had been born out of Cisco’s perception in individuals. It speaks volumes about Cisco’s tradition of belief, openness, and real human connection.

At Cisco, I wasn’t only a line in an org chat. I used to be a part of a narrative — my very own story — and Cisco handed me the pen. I didn’t simply find out about expertise or enterprise right here. I realized that when individuals are trusted, they rise. And I’ll carry that lesson with me properly past this internship.

These alternatives weren’t simply occasions — they had been experiences that confirmed me what it means to develop in a spot that empowers, trusts, and celebrates its individuals, irrespective of how new they’re. Cisco didn’t simply let me be a part of the tradition — it let me create it. That’s the Cisco distinction. If that is just the start, I can’t wait to see what’s subsequent.

Wish to learn extra in regards to the early-in-career Cisco expertise. Try extra tales from our interns.

Subscribe to the WeAreCisco Weblog.

Share:

Basis AI Advances AI Safety With Hugging Face

Computer Networking

codesanitize

-

5 August 2025

0

Basis AI Advances AI Safety With Hugging Face

Immediately, Hugging Face provides a brand new mannequin on common each 7 seconds, and the platform now hosts almost 1.9 million fashions obtainable to builders worldwide. This unprecedented scale — pushed by contributors globally, spanning each trusted establishments and unbiased creators — fuels a wave of innovation whereas additionally reinforcing the necessity to safe the AI provide chain.

As highlighted in our earlier evaluation, AI provide chain dangers now permeate each stage of the AI lifecycle — from susceptible software program dependencies and malicious or backdoored mannequin information to poisoned or non-compliant datasets. Given this complexity, it’s more and more difficult for any single group to handle these points alone. Efficient safety of the AI panorama requires shut collaboration throughout the neighborhood to safe AI.

Elevating AI Provide Chain Safety with Hugging Face

At Cisco, we’re on a mission to assist each group on the planet securely execute their AI technique. Immediately, we’re taking this mission a step additional. We’re excited to announce a strategic relationship between the Basis AI workforce at Cisco and Hugging Face, bringing collectively the world’s main AI mannequin hub with Cisco’s experience in securing digital infrastructure.

As a part of this expanded collaboration, Cisco Basis AI will present the platform and scanning of each public file uploaded to Hugging Face — AI mannequin information and different information alike — in a unified malware scanning functionality powered by custom-fit detection capabilities in an up to date ClamAV engine.

By combining Hugging Face’s central function in open-source AI with Cisco’s complete malware scanning capabilities, this permits extra rigorous mannequin vetting, early detection of vulnerabilities, and shared menace intelligence — constructing higher belief and stronger safety throughout the complete AI ecosystem.

“We’re thrilled to accomplice with Cisco Basis AI to assist safe Hugging Face customers. We have now been scanning information with ClamAV, the free and open supply malware detection scanner from Cisco Talos, for just a few years. With ClamAV’s new replace we will now present complete safety in opposition to each conventional malware and threats distinctive to AI fashions—all with a single software. We’re grateful to Cisco to turning into our accomplice to scan all information uploaded to Hugging Face. By combining our management in open-source AI with Cisco’s deep cybersecurity experience, we’re empowering organizations and people worldwide to undertake AI with confidence”

Julien Chaumond, CTO, Hugging Face

As well as, on account of our collaboration, we’re democratizing AI mannequin antimalware:

ClamAV can now detect malicious code in AI fashions– We’re releasing this functionality to the world. At no cost. Along with its protection of conventional malware, ClamAV can now detect deserialization dangers in frequent mannequin file codecs comparable to .pt and .pkl (in milliseconds, not minutes). This enhanced performance is obtainable immediately for everybody utilizing ClamAV.

ClamAV is the one antivirus engine targeted on AI threat in VirusTotal– ClamAV is the one antivirus engine to detect malicious fashions in each Hugging Face and VirusTotal – a preferred menace intelligence platform that may scan uploaded fashions.

We’re proud to ship our work on AI provide chain safety to Cisco prospects and now, the higher AI and safety neighborhood. Extra is on the way in which to assist defend AI builders from provide chain dangers.

Be taught Extra

The Cisco Basis AI workforce lately launched Cerberus, a 24/7 guard for the AI provide chain. Cerberus inspects fashions as they enter Hugging Face, sharing ends in standardized menace feeds that Cisco Safety merchandise use to construct and implement granular entry insurance policies for the AI provide chain.

With the discharge of ClamAV 1.5, Cisco brings deeper visibility into the AI mannequin provide chain to the safety neighborhood. ClamAV 1.5 provides native help for figuring out AI mannequin information throughout scanning to permit for model-specific detection logic and safer dealing with of embedded threats. Along with our signature updates (which don’t require ClamAV 1.5) to ClamAV, ClamAV is now positioned as a foundational software for securing the rising AI mannequin ecosystem. These capabilities are additionally obtainable throughout the Cisco portfolio of merchandise with our Talos menace intelligence companies.

Customers of Cisco Safe Entry can configure tips on how to present entry to Hugging Face repositories, block entry to potential threats in AI fashions, block AI fashions with dangerous licenses, and implement compliance insurance policies on AI fashions that originate from delicate organizations or politically delicate areas.

We beforehand launched protections for Safe Endpoint, Safe Electronic mail Menace Protection, Safe Entry and Safe Firewall. All present customers of Cisco Safe Endpoint and Electronic mail Menace Protection are protected in opposition to malicious AI Provide Chain artifacts.

For extra info on the Basis AI workforce, take a look at our web site and be happy to ship us a message!

We’d love to listen to what you suppose! Ask a query and keep related with Cisco Safety on social media.

Cisco Safety Social Media

LinkedIn
Fb
Instagram
X

Share:

ios – Learn how to name an API at precisely 00 and half-hour each hour in Swift?

iOS Development

codesanitize

-

5 August 2025

0

I’m making an attempt to implement a repeating API name in my iOS app (Swift), and I would like the decision to occur at precisely 00 and half-hour of each hour (e.g., 1:00, 1:30, 2:00, and so on.).

On launch (when app is in foreground), I wish to make the primary API name to examine if a slot is offered.
Then, I wish to schedule the API to run at each hour and half-hour mark.
This must be correct to the clock (not simply each 1800 seconds), so the API ought to hearth precisely at hh:00 and hh:30.

Utilizing this strategy, the API is known as 30–40 occasions per minute inside a single view controller. The API name is triggered from a customized navigation bar (ENavigationBar), which is subclass of UIView.

func scheduleFunctionCall() {
    if UIApplication.shared.applicationState == .background { return }

    // We examine the physician appointment the primary time to see if it is obtainable.
    self.drTimer?.invalidate()
    self.drTimer = nil
    
    if !GlobalConstant.appCONSTANT.isDrAppointmentCheckedFirstTime {
        checkDrAppointmentAvailable()
    } else {
        if GlobalConstant.appCONSTANT.roomName != "" {
            showNeedHelpDrButton()
        } else {
            hideNeedHelpDrView()
        }
    }

    // Get the present time
    let calendar = Calendar.present
    let now = Date()
    let minute = calendar.part(.minute, from: now)
    let second = calendar.part(.second, from: now)
    var fireInSeconds: TimeInterval = 0

    if minute < 1 || (minute >= 31 && minute < 32) {
        // If it is already at :00 or :30, simply look ahead to the subsequent second alignment
        fireInSeconds = TimeInterval(60 - second)
    } else if minute < 31 {
        fireInSeconds = TimeInterval((31 - minute) * 60 - second)
    } else {
        fireInSeconds = TimeInterval((61 - minute) * 60 - second)
    }

    Timer.scheduledTimer(withTimeInterval: fireInSeconds, repeats: false) { _ in
        self.checkDrAppointmentAvailable()
        
        // Now arrange the repeating timer each half-hour
        self.drTimer = Timer.scheduledTimer(withTimeInterval: 1800, repeats: true) { _ in
            self.checkDrAppointmentAvailable()
            let nextMinute = minute < 31 ? "00" : "30"
            print("Operate known as at (calendar.part(.hour, from: Date())):(nextMinute)")
        }
    }
}