Kong announced the launch of the latest version of Kong AI Gateway, which introduces new features to provide the AI security and governance guardrails needed to make GenAI and Agentic AI production-ready.
StackHawk announced API Discovery Powered by HawkAI, an AI driven feature, that gives security teams a more efficient way to understand their organization's attack surface.
HawkAI not only uncovers and recommends which APIs and applications to bring under test, but also boosts teamwork between security and developer teams, giving businesses the critical insights they need.
StackHawk's approach to API discovery leverages source code as the source of truth to obtain the full scope of an organization's APIs and applications. This offers a level of visibility, previously unavailable for AppSec teams to understand their organization's attack surface. StackHawk provides a prioritized view on which APIs and applications to bring under test to boost overall operational efficiency of your AppSec testing program while fostering improved workflows with development teams.
"Many security teams are struggling to keep pace with the rapid development of APIs," said Joni Klippert, CEO of StackHawk. "Our internal analysis reveals that a significant portion of APIs go untested simply because they are undiscovered. API Discovery powered by HawkAI solves this problem by automatically identifying all APIs within an organization's code repositories, giving security teams a complete picture of their attack surface."
Security teams benefit from API Discovery layered with HawkAI's comprehensive suite of features, including:
- Effortless Discovery and Attack Surface Definition: API Discovery powered by HawkAI integrates seamlessly with existing code repositories to automatically identify repositories containing running applications and APIs. This AI-powered solution uncovers previously unknown APIs, providing a comprehensive view of an organization's attack surface. Security teams can then monitor progress toward achieving complete API coverage.
- Continuous Oversight and Alignment with Security Policies: Once API assets are identified, HawkAI helps ensure that security processes keep pace with the constant stream of code changes. HawkAI tracks how often code is deployed to API assets and compares it to testing frequency. This enables security teams to identify discrepancies between security policies and actual testing coverage.
- Collaboration and Streamlined Security Testing: HawkAI goes beyond just discovery. It provides valuable insights to foster collaboration with development teams. When a previously untested asset is discovered, HawkAI identifies the last developer who committed code, allowing for easy communication and a deeper understanding of the asset's purpose. This streamlines the process of bringing the asset under security testing.
API Discovery powered by HawkAI ensures comprehensive testing coverage by prioritizing the identification of the API attack surface. The source code serves as the definitive source of truth for understanding this attack surface, providing a holistic view of APIs and applications. StackHawk's solution not only excels in discovering vulnerabilities but also enhances collaboration between security and developer teams. It simplifies the process of subjecting APIs and applications to thorough security testing, thereby fortifying your defenses effectively.
StackHawk is offering API Discovery powered by HawkAI to all Enterprise and trial customers.
Industry News
Traefik Labs announced significant enhancements to its AI Gateway platform along with new developer tools designed to streamline enterprise AI adoption and API development.
Zencoder released its next-generation AI coding and unit testing agents, designed to accelerate software development for professional engineers.
Windsurf (formerly Codeium) and Netlify announced a new technology partnership that brings seamless, one-click deployment directly into the developer's integrated development environment (IDE.)
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, is making significant updates to its certification offerings.
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the Golden Kubestronaut program, a distinguished recognition for professionals who have demonstrated the highest level of expertise in Kubernetes, cloud native technologies, and Linux administration.
Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade internal developer portal based on the Backstage project.
Platform9 announced that Private Cloud Director Community Edition is generally available.
Sonatype expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite.
CloudBolt Software announced its acquisition of StormForge, a provider of machine learning-powered Kubernetes resource optimization.
Mirantis announced the k0rdent Application Catalog – with 19 validated infrastructure and software integrations that empower platform engineers to accelerate the delivery of cloud-native and AI workloads wherever the\y need to be deployed.
Traefik Labs announced its Kubernetes-native API Management product suite is now available on the Oracle Cloud Marketplace.
webAI and MacStadium(link is external) announced a strategic partnership that will revolutionize the deployment of large-scale artificial intelligence models using Apple's cutting-edge silicon technology.
Development work on the Linux kernel — the core software that underpins the open source Linux operating system — has a new infrastructure partner in Akamai. The company's cloud computing service and content delivery network (CDN) will support kernel.org, the main distribution system for Linux kernel source code and the primary coordination vehicle for its global developer network.