Checkmarx has upgraded its Checkmarx One platform to bring AI-driven security deeper into modern application development. As software teams increasingly rely on artificial intelligence to speed up coding and delivery, traditional application security methods are starting to fall behind. Therefore, Checkmarx is responding with a platform designed to secure code, dependencies, AI assets, and runtime environments from the beginning of the development process.

With this enhanced version of Checkmarx One, the company aims to embed intelligent, agentic security throughout the software lifecycle. Instead of treating security as a final checkpoint, the platform helps organizations build protection directly into development workflows. As a result, enterprises can move faster with innovation while still maintaining stronger security controls across increasingly complex software environments.

At the core of the updated platform is an architecture that combines agentic security agents with AI-native intelligence across the software and AI supply chain. This foundation is meant to reduce the pressure on development and security teams by automating time-consuming decisions and remediation tasks. In particular, the platform introduces Triage Assist, an AI agent that automatically prioritizes vulnerabilities in source control. Rather than relying only on static severity scores, it evaluates real-world exploitability and contextual risk. Because of that, development teams can focus their attention on the most important threats instead of wasting time on less relevant alerts.

In addition, Checkmarx has introduced Remediation Assist, which delivers review-ready fixes for confirmed vulnerabilities. This feature helps teams accelerate secure code delivery and cut down on manual remediation work. Consequently, organizations can improve both development speed and security response without creating extra friction in the software pipeline.

The platform also expands into AI Supply Chain Security, which gives organizations better governance and visibility into AI components embedded within applications. It can identify hidden AI assets such as models, agents, datasets, and AI-BOM elements. At the same time, it manages risks tied to model loading and execution and applies policy controls inside existing workflows. This matters because many organizations now deploy AI features faster than their governance processes can keep up.

Moreover, the updated platform includes AI SAST, a hybrid analysis engine powered by large language models. This capability extends detection to new and AI-generated programming languages, going beyond the limits of conventional static application security testing. Alongside that, DAST for AI improves runtime protection by using dynamic analysis to support flexible testing strategies for AI-driven applications across both continuous integration and production environments.

Taken together, these updates show a broader shift in how application security is evolving. Rather than reacting to issues after code is shipped, Checkmarx is pushing a proactive approach built around agentic governance. This strategy aligns more closely with the pace and complexity of AI-accelerated software development, where applications can be created, modified, and deployed far more quickly than before.

Sandeep Johri, CEO of Checkmarx, remarked, “The AI era has fundamentally disrupted the balance between software creation and assurance. Code is now produced at machine speed, but successful security in this environment requires more than speed alone. It requires independent oversight, full visibility across the AI software supply chain, and unified governance that spans code, dependencies, AI assets, and runtime. Agentic application security brings those capabilities together, helping enterprises close the risk gap without slowing innovation.”

That message was reinforced by Chief Product Officer Jonathan Rende, who pointed to the shrinking timeline of modern software delivery and the rising importance of securing AI-generated applications from the start.

“AI has compressed the software development lifecycle from months to minutes. When applications move that fast, risk compounds just as quickly. Our redesigned agentic platform allows development organisations to innovate at machine speed while securing AI generated applications to protect the business.”

Recommended Cyber Technology News:

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com