To me this seems obvious, the models are trained off of GitHub as a whole. Most code on GitHub either is unsecure, or it was written without needing to be secure.
I'm already getting pull requests from juniors trying to sneak in AI generated code without actually reading it.