The landscape of software development is undergoing a profound transformation, driven by the advent of AI and its ability to accelerate creation beyond human capabilities.
In response to this paradigm shift, Checkmarx has unveiled a reimagined Checkmarx One platform, specifically engineered for this new era of agentic development.
This platform integrates AI-driven security across code, open-source dependencies, AI assets, and runtime environments, empowering organisations to innovate at machine speed with security embedded from the outset.
At the heart of the revamped Checkmarx One platform lies a novel architecture that harnesses agentic security agents and AI-native intelligence throughout the software and AI supply chain.
Key innovations include Triage Assist, an autonomous AI agent that prioritises vulnerabilities based on real-world exploitability and contextual risk, allowing teams to concentrate on critical issues rather than static severity scores.
Remediation Assist generates ready-to-review fixes for validated vulnerabilities before code merges, thereby accelerating secure delivery and reducing the manual effort involved in remediation.
The platform also introduces AI Supply Chain Security, a centralised layer for governance and visibility of AI components integrated into modern applications.
This feature discovers hidden AI assets such as models, agents, datasets, and prompts, detects model-loading and execution risks, and enforces policies within existing development workflows. AI SAST, a hybrid LLM-powered and query-based analysis engine, expands detection capabilities to emerging, unsupported, and AI-generated programming languages, extending security beyond conventional rule-based scanning.
DAST for AI, a next-generation dynamic analysis engine, enhances runtime protection across CI/CD and production environments, supporting adaptable testing strategies for AI-accelerated applications.
"The AI era has fundamentally disrupted the balance between software creation and assurance," stated Sandeep Johri, CEO of Checkmarx. "Code is now produced at machine speed, but successful security in this environment requires more than speed alone."
He explains that: "It requires independent oversight, full visibility across the AI software supply chain, and unified governance that spans code, dependencies, AI assets, and runtime.
"Agentic application security brings those capabilities together, helping enterprises close the risk gap without slowing innovation." Sandeep Johnri
Jonathan Rende, chief product officer at Checkmarx, added, "AI has compressed the software development lifecycle from months to minutes. When applications move that fast, risk compounds just as quickly."
"Our redesigned agentic platform allows development organisations to innovate at machine speed while securing AI generated applications to protect the business." Jonathan Rende
These new capabilities are available as part of the Checkmarx One Enterprise Edition or as add-ons to the Essentials or Professional Editions.
