GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
Opsera and Lineaje announced a strategic partnership to transform how enterprises secure and remediate open source and containerized software autonomously and at scale.
Through this partnership, Opsera and Lineaje integrated their AI and automation capabilities to deliver an agentic AI-powered auto-remediation platform. The integrated solution identifies vulnerabilities, remediates them in real-time, and delivers Secure Container Images autonomously remediating 90% of critical vulnerabilities and high vulnerabilities. Enterprises can now dramatically reduce their vulnerability risk without developer involvement enabling developers to focus on innovation rather than maintaining insecure dependencies.
With this integration, enterprises can now provide:
- Automated Vulnerability Detection and Remediation at scale: Automatically remediates 90% of open source vulnerabilities at scale. Opsera ingests Lineaje AI generated Fix Plans and rebuilds secure containers autonomously using Lineaje Gold Source creating secure, patched container images autonomously.
- Faster Development Cycles and reduced risk exposure: Automation eliminates manual security bottlenecks. Vulnerabilities are remediated before they reach production.
- Seamless integration and experience: Joint capabilities are available directly through both the Opsera and Lineaje platforms. Enterprises can translate Lineaje’s vulnerability remediation plans into secure pipelines with Opsera’s no-code automation.
- Continuous Compliance Reporting: The fixed images undergo security and functionality validation, with Opsera generating detailed continuous compliance reports for audits and governance.
“At Lineaje, we don’t just help enterprises find and prioritize vulnerabilities—we help eliminate them. Together with Opsera, we’re enabling customers to take immediate action through automation and jointly created Gold Images, driving secure innovation from code to deployment,” said Javed Hasan, CEO, Lineaje.
“Software supply chain security is one of the biggest challenges enterprises face today. Our partnership with Lineaje brings together best-in-class detection and automated remediation, enabling customers to go beyond patching and adopt proactive security at scale,” said Kumar Chivukula, Co-Founder & CEO, Opsera.
Key Capabilities of the Joint Solution:
- Self-Healing, Application-Aware Secure Containers: By integrating Lineaje’s SCA360 engine with Opsera’s AI-powered DevOps platform, enterprises can now detect and remediate 100% of sophisticated threats across open-source software and containers. Vulnerabilities are automatically resolved before deployment, reducing remediation time by up to 90% and minimizing manual overhead by 80%.
- Gold Open Source Images: A catalog of over 3,000+ fully attested, vulnerability-free Gold Images, aligned with the most commonly used container images in enterprise environments. Leveraging Lineaje’s and Opsera’s AI deployment automation, developers can also generate custom Gold Images by submitting any public container image. The system then produces a hardened, compliant version and seamlessly adds it to the organization’s Gold Image subscription, ensuring consistent, secure deployments at scale.
- Application-aware images and end-to-end Security and Compliance: Remediation actions executed through the Opsera and Lineaje platforms are automatically documented, enabling the generation of audit-ready compliance reports and application-awareness. This empowers security, engineering, and compliance teams to stay aligned with evolving industry standards and regulatory frameworks.
- The Opsera and Lineaje partnership empowers enterprises to focus on innovation rather than security concerns. By integrating security into the Opsera AI-powered DevOps platform with auto-remediation capabilities, enterprises can confidently develop and deploy applications without compromising speed or reliability.
Industry News
Perforce Software is partnering with Siemens Digital Industries Software to transform how smart, connected products are designed and developed.
Reply launched Silicon Shoring, a new software delivery model powered by Artificial Intelligence.
CIQ announced the tech preview launch of Rocky Linux from CIQ for AI (RLC-AI), an operating system engineered and optimized for artificial intelligence workloads.
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the Cybersecurity Skills Framework, a global reference guide that helps organizations identify and address critical cybersecurity competencies across a broad range of IT job families; extending beyond cybersecurity specialists.
CodeRabbit is now available on the Visual Studio Code editor.
The integration brings CodeRabbit’s AI code reviews directly into Cursor, Windsurf, and VS Code at the earliest stages of software development—inside the code editor itself—at no cost to the developers.
Chainguard announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from source on SLSA L2 infrastructure.
Sysdig announced the donation of Stratoshark, the company’s open source cloud forensics tool, to the Wireshark Foundation.
Pegasystems unveiled Pega Predictable AI™ Agents that give enterprises extraordinary control and visibility as they design and deploy AI-optimized processes.
Kong announced the introduction of the Kong Event Gateway as a part of their unified API platform.
Azul and Moderne announced a technical partnership to help Java development teams identify, remove and refactor unused and dead code to improve productivity and dramatically accelerate modernization initiatives.
Parasoft has added Agentic AI capabilities to SOAtest, featuring API test planning and creation.
Zerve unveiled a multi-agent system engineered specifically for enterprise-grade data and AI development.
LambdaTest, a unified agentic AI and cloud engineering platform, has announced its partnership with MacStadium, the industry-leading private Mac cloud provider enabling enterprise macOS workloads, to accelerate its AI-native software testing by leveraging Apple Silicon.
Tricentis announced a new capability that injects Tricentis’ AI-driven testing intelligence into SAP’s integrated toolchain, part of RISE with SAP methodology.