SecRL-Prune: Structured Reinforcement Learning-Based Pruning of CodeLLMs for Preserving Adversarial Code Mutation
Shrinking AI code generators while keeping their ability to dodge malware detectors
Researchers compressed large AI code models to 70–90% of their original size while preserving their ability to generate functionally identical but textually different code—a technique criminals could use to evade antivirus detection. In tests on real malware samples, code from these smaller models still reduced detection rates significantly, showing that the security risk persists even after aggressive compression.
As code-generation AI becomes cheaper and easier to deploy on everyday devices, malicious actors gain practical tools to automatically generate undetectable malware variants at scale. Security teams building detection systems now need to account for the fact that compressed AI models remain dangerous, not just the original full-size versions. This shifts the calculus for both offensive and defensive security planning around AI-generated code.