Checkmarx

The Agentic AppSec Summit lineup is here, and it’s packed with voices shaping the future of AppSec💥 On June 16 at 10:00 am EST, we’re bringing together leaders across AI, security, DevSecOps, and engineering to explore AgentSecOps, AI-generated code risk, runtime security, AI supply chain visibility, and remediation at AI speed. You’ll hear from industry experts like: → Andrew Zigler, LinearB / DevInterrupted → 🎩 Baruch Sadogursky, Tessl → Caroline Wong, Axari / The AI Cyber Security Handbook → Praneetha Goli, Capital One Register by June 8 to unlock four early-access sessions: https://lnkd.in/e2pCs2QV

AI-generated code is forcing AppSec teams to rethink what trust looks like in the development lifecycle. As AI helps teams build faster, security teams need new ways to validate, govern, and reduce risk without slowing innovation. This upcoming fireside chat with 🚀 Eran Kinsbruner and Mohana B. will dig into how application security is evolving in the AI era, where human oversight still matters, and how teams can secure AI-generated code with the right controls in place. Looking forward to this one.

We’re heading to the Gartner Security & Risk Management Summit, and we’re bringing a big topic with us: speed. AI coding tools are speeding up development, and introducing new risks just as fast. Stop by Booth #1030 to see how Checkmarx helps teams secure AI-generated code, prioritize exploitable risk, and deliver fixes developers can act on. We’ll also be hosting a live theater session with 🚀 Eran Kinsbruner: When Code Secures Itself: The Rise of Agentic AI in Application Security Monday, June 1 | 6:05–6:25 PM | Theater 3 If you’ll be in National Harbor, come say hi.👋 https://lnkd.in/eaDRkFcn

Security works best when it meets developers where they are. Looking forward to this session on how Kiro and Checkmarx Developer Assist help bring real-time security guidance directly into the development workflow. https://lnkd.in/eusyt6pD

Most teams don’t struggle to find vulnerabilities. They struggle to fix them. That’s what Merito was seeing across their customers. As teams moved faster, worked with more code, and brought AI into the mix, security wasn’t keeping up. Findings piled up, issues kept resurfacing, and it became harder to turn insight into action. With Checkmarx, that changed. Teams gained clarity. Signals developers could trust, results they could act on, and security that shows up early enough to matter. From there, the impact was clear. Faster remediation, fewer repeat vulnerabilities, and more confidence in what’s getting shipped. It’s a strong example of what happens when security aligns with how development actually works today. Read the full story here: https://lnkd.in/eh_E99_S

Vibe coding may feel like momentum… until the security hangover hits 😵💫 AI coding tools have accelerated development, but they’ve also exposed a new reality for AppSec: code that ships faster also introduces risk faster. As AI-generated code enters the codebase at scale, organizations are facing new security gaps around accountability, policy, and automation. In our latest blog, we unpack what Gartner reveals about the risks behind AI-driven development. Read the full blog: https://lnkd.in/eReNNxA8

The countdown is on. Register by June 8 for the Agentic AppSec Summit and get early access to four sessions ahead of the full virtual event on June 16. It’s a chance to start exploring the ideas, challenges, and strategies that will define the next chapter of AppSec, before the summit even begins. Save your spot: https://checkmarx.ai/

New on Secure by Design: In Episode 2, host Bill Weinberg sits down with Adi Kavaler CTO at Exiger, to explore the hidden blind spots of AI-first development — and what security teams need to rethink as engineering velocity accelerates. They discuss: → Why security can’t stay at the end of the pipeline → How AI-assisted triage can help teams focus on the vulnerabilities that matter → Why human oversight, context, and guardrails are still essential → How teams can balance speed, quality, and trust when working with AI-generated code The takeaway: AI can help teams move faster, but secure development still depends on the right data, the right guardrails, and the right human judgment. Listen to Episode 2 of Secure by Design: https://lnkd.in/e7skHsFM

The Checkmarx Zero research team discovered an OverDoS, a high-severity vulnerability that could allow attackers to take down n8n instances they can reach. With more than 70,000 publicly reachable n8n instances potentially exposed, this is an important reminder of how quickly risk can scale across the tools teams rely on every day. The issue was responsibly disclosed to n8n and has since been patched. We appreciate the n8n team’s quick response and collaboration throughout the process. Read the full Checkmarx Zero research for more details and remediation guidance: https://lnkd.in/e865bcjW

AI isn’t just helping developers write code faster. It’s generating and refactoring it. That changes the risk equation in ways most security programs aren’t built for. In our latest piece, we unpack what this shift means for security teams and how we’re building for the agentic AI era: https://lnkd.in/ek8YTYY5