GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
Postman Introduces Bring Your Own Key (BYOK) Encryption and Spec Hub
April 21, 2025
Postman announced new releases designed to help organizations build APIs faster, more securely, and with less friction.
These new capabilities – Bring Your Own Key (BYOK) Encryption, a new capability that puts data protection fully in the hands of the enterprise, and Spec Hub, a developer-friendly API design and governance solution – mark a major step forward in secure API development at scale.
"Security and governance have long been seen as blockers to innovation, but they don’t have to be,” said Sam Chehab, Head of Information Security, Postman. “With BYOK Encryption and Spec Hub, Postman is redefining how enterprises can scale API development while staying in full control of their data. BYOK Encryption ensures that even in the face of a breach, organizations can instantly isolate risk and maintain compliance, while Spec Hub delivers governance that developers actually want to use—eliminating friction without compromising security. This is the future of secure, scalable API development."
BYOK Encryption gives enterprises complete control over data protection, enabling organizations to manage and safeguard their own encryption keys for data stored in the Postman Cloud. This ensures sensitive information remains private, encrypted, and completely under customer control—even in a zero-trust environment.
Key capabilities of BYOK Encryption include:
- Customer-managed encryption: Protects API environments, globals, and history using organization-controlled keys
- Zero trust security model: Revoke access to sensitive data by disabling your encryption keys—no vendor involvement needed
- Audit-ready controls: Automatically logs encryption events to support internal policies and regulatory compliance
With the introduction of Spec Hub and types in collections, Postman provides developers with a centralized environment to design, manage, and maintain API specifications—eliminating the need to switch between multiple tools or manually sync specifications across platforms. Spec Hub and types in collections provide a seamless experience for developers, regardless of their API development approach—Spec Hub empowers teams embracing a specification-first approach, while types in collections caters to developers who prefer a code-first workflow.
Key capabilities of Spec Hub and types in collections include:
- Multi-format specification support: Integrates with widely-used specifications including OpenAPI 3.0 and AsyncAPI 2.0
- Real-time validation: Allows developers to identify and resolve issues early with built-in linting powered by Spectral
- One-click collection generation and sync: Enables finalized specs to be instantly converted into Postman Collections for downstream use
- Bring structure and consistency to every request with types in collections: Adds schema-level structure to collections by letting you define request and response types—enabling smarter authoring, stronger validation, and seamless sync with your API specs.
With BYOK Encryption, Spec Hub, and types in collections, Postman continues to redefine how teams build and scale APIs—bringing security, speed, and structure together in one unified platform. These new capabilities are now available to Postman customers.
Industry News
May 15, 2025
Perforce Software is partnering with Siemens Digital Industries Software to transform how smart, connected products are designed and developed.
May 15, 2025
Reply launched Silicon Shoring, a new software delivery model powered by Artificial Intelligence.
May 15, 2025
CIQ announced the tech preview launch of Rocky Linux from CIQ for AI (RLC-AI), an operating system engineered and optimized for artificial intelligence workloads.
May 14, 2025
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the Cybersecurity Skills Framework, a global reference guide that helps organizations identify and address critical cybersecurity competencies across a broad range of IT job families; extending beyond cybersecurity specialists.
May 14, 2025
CodeRabbit is now available on the Visual Studio Code editor.
The integration brings CodeRabbit’s AI code reviews directly into Cursor, Windsurf, and VS Code at the earliest stages of software development—inside the code editor itself—at no cost to the developers.
May 14, 2025
Chainguard announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from source on SLSA L2 infrastructure.
May 14, 2025
Sysdig announced the donation of Stratoshark, the company’s open source cloud forensics tool, to the Wireshark Foundation.
May 13, 2025
Pegasystems unveiled Pega Predictable AI™ Agents that give enterprises extraordinary control and visibility as they design and deploy AI-optimized processes.
May 13, 2025
Kong announced the introduction of the Kong Event Gateway as a part of their unified API platform.
May 13, 2025
Azul and Moderne announced a technical partnership to help Java development teams identify, remove and refactor unused and dead code to improve productivity and dramatically accelerate modernization initiatives.
May 13, 2025
Parasoft has added Agentic AI capabilities to SOAtest, featuring API test planning and creation.
May 13, 2025
Zerve unveiled a multi-agent system engineered specifically for enterprise-grade data and AI development.
May 12, 2025
LambdaTest, a unified agentic AI and cloud engineering platform, has announced its partnership with MacStadium, the industry-leading private Mac cloud provider enabling enterprise macOS workloads, to accelerate its AI-native software testing by leveraging Apple Silicon.
May 12, 2025
Tricentis announced a new capability that injects Tricentis’ AI-driven testing intelligence into SAP’s integrated toolchain, part of RISE with SAP methodology.
