GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
Aqua Security Releases Secure AI
April 29, 2025
Aqua Security introduced Secure AI, full lifecycle security from code to cloud to prompt.
These new capabilities secure AI applications through the development process and into production, including deep visibility, continuous governance, and real-time protection against threats specific to AI workloads, without requiring changes to application code or development workflows. It is security for AI that does not compromise speed.
“The rise of AI is redefining how applications are built, with most of these workloads deployed in containers,” said Amir Jerbi, CTO and co-founder at Aqua Security. “Aqua has spent nearly a decade protecting cloud native applications and this is the natural extension of that leadership. We’re bringing the same deep runtime protection that made Aqua the gold standard in container security to the next generation of AI-powered applications, with AI-first capabilities designed to address the unique risks and complexity introduced by LLMs, autonomous agents, and evolving AI-driven workflows.”
With Secure AI, security teams can detect AI usage including models, platforms, and versions, enforce governance policies aligned to OWASP Top 10 for LLMs, and stop emerging threats in real time. This includes visibility into AI agent-driven workloads, helping organizations understand how increasingly autonomous applications behave and where risk may emerge.
Aqua’s Full Lifecycle Security for AI Applications now includes:
- AI Code Scanning and Validation – Detects AI usage during development by scanning application code and validating secure handling of inputs and outputs related to LLMs and generative AI features.
- AI Cloud Services Configuration Checks (AI-SPM) – Assesses the security posture of cloud-based AI services, ensuring configurations align with organizational policies.
- Runtime Detection and Response to AI Threats – Identifies unsafe AI usage, detects suspicious activity and stops malicious activity, without requiring any changes to your application or code
- AI Visibility and Governance at Runtime – Provides comprehensive visibility into the AI models, platforms, and versions used across environments, mapped to the OWASP Top 10 for LLMs to enforce usage policies.
- Prompt Defense – Evaluates LLM prompts to identify LLM-based attacks, including code injection, JailBreak and more.
- AI Security Dashboard – Correlates insights from development, infrastructure, and runtime into a single-pane-of-glass view of AI-related risks across the organization.
“There’s growing demand for AI-specific security controls from customers across every vertical,” said Dror Davidoff, CEO and co-founder at Aqua Security. “By embedding Secure AI into the Aqua Platform, we’re giving security teams the control and visibility they need to enable safe and scalable GenAI innovation.”
Aqua’s solution directly addresses threats outlined in OWASP’s Top 10 for LLMs and mitigates AI risks across development, infrastructure, and runtime layers. As a core capability of the Aqua Platform, it empowers enterprises with a scalable, policy-driven approach to securing the next generation of cloud native applications.
Industry News
May 15, 2025
Perforce Software is partnering with Siemens Digital Industries Software to transform how smart, connected products are designed and developed.
May 15, 2025
Reply launched Silicon Shoring, a new software delivery model powered by Artificial Intelligence.
May 15, 2025
CIQ announced the tech preview launch of Rocky Linux from CIQ for AI (RLC-AI), an operating system engineered and optimized for artificial intelligence workloads.
May 14, 2025
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the Cybersecurity Skills Framework, a global reference guide that helps organizations identify and address critical cybersecurity competencies across a broad range of IT job families; extending beyond cybersecurity specialists.
May 14, 2025
CodeRabbit is now available on the Visual Studio Code editor.
The integration brings CodeRabbit’s AI code reviews directly into Cursor, Windsurf, and VS Code at the earliest stages of software development—inside the code editor itself—at no cost to the developers.
May 14, 2025
Chainguard announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from source on SLSA L2 infrastructure.
May 14, 2025
Sysdig announced the donation of Stratoshark, the company’s open source cloud forensics tool, to the Wireshark Foundation.
May 13, 2025
Pegasystems unveiled Pega Predictable AI™ Agents that give enterprises extraordinary control and visibility as they design and deploy AI-optimized processes.
May 13, 2025
Kong announced the introduction of the Kong Event Gateway as a part of their unified API platform.
May 13, 2025
Azul and Moderne announced a technical partnership to help Java development teams identify, remove and refactor unused and dead code to improve productivity and dramatically accelerate modernization initiatives.
May 13, 2025
Parasoft has added Agentic AI capabilities to SOAtest, featuring API test planning and creation.
May 13, 2025
Zerve unveiled a multi-agent system engineered specifically for enterprise-grade data and AI development.
May 12, 2025
LambdaTest, a unified agentic AI and cloud engineering platform, has announced its partnership with MacStadium, the industry-leading private Mac cloud provider enabling enterprise macOS workloads, to accelerate its AI-native software testing by leveraging Apple Silicon.
May 12, 2025
Tricentis announced a new capability that injects Tricentis’ AI-driven testing intelligence into SAP’s integrated toolchain, part of RISE with SAP methodology.
