AI coding agents are reshaping software development—but they’re also expanding the attack surface. Researchers uncovered a now-patched vulnerability in Anthropic’s Claude Code GitHub Action that could have enabled prompt injection attacks to expose CI/CD secrets, API keys, and credentials. As AI agents gain autonomy in development workflows, organizations must treat untrusted inputs as hostile and rethink CI/CD security models. Natural language is becoming executable code—and attackers know it.
Still Using API Keys for Your AI Agent? Here’s When it’s Time to Upgrade
API keys got you here. They won’t get you where you’re going. OAuth isn’t a future upgrade. It’s the foundation your agents should have been built on from the start.
Postman Adds AI Agent to Automate API Development and Governance
Postman added an artificial intelligence (AI) agent to its portfolio of tools and platforms for building and governing application programming interfaces (APIs) that can autonomously perform tasks ranging from development and documentation to exploration and setting up integrations with continuous integration/continuous deployment (CI/CD) environments. Company CEO Abhinav Asthana said the AI Engineer significantly reduces the […]
The “Day 2” AI Problem: Why Standard API Gateways Fail at GenAI Scale
Injecting GenAI into applications is deceptively easy. Need a new chatbot backed by an LLM? Grab an OpenAI API key and you can throw together an MVP in an afternoon. This is the pattern teams have used to push AI features into apps for the last few years. The problem, as with previous tech hype […]
SmartBear Extends Scope of API Lifecycle Management Ambitions
SmartBear upgrades its API platform with a revamped Swagger Catalog and AI-driven drift detection to secure the modern API lifecycle against rogue, zombie, and misconfigured endpoints.
Survey Surfaces More Focus on Software Security Testing and API Security
A global survey of 828 enterprise IT professionals conducted by the Futurum Group finds well over a third of respondents expect their organization to increase spending on software security testing (39%) and application programming interface (API) security (36%) over the next 12 to 18 months. Overall, about 35% said they also plan to make some […]
Cursor Acquires Graphite to Streamline AI-Powered Development
Cursor, the artificial intelligence (AI) coding assistant valued at $29 billion, has acquired code review startup Graphite to address what Cursor CEO Michael Truell describes as a growing bottleneck in software development. The companies declined to disclose financial terms but confirmed the transaction involves a mix of cash and equity. While AI has dramatically accelerated […]
7 Critical API Protection Strategies to Fortify Your API Security
Against a backdrop of escalating threats and costly consequences, organizations need a comprehensive, multilayered approach to API security.
Modern Application Management Requires Deeper Internet Visibility
Most IT teams regularly employ a range of tools to monitor application performance. But in an era where applications are running everywhere from the cloud to the network edge, the visibility being provided is limited. The metrics and analysis being surfaced are roughly akin to only being able to see a few yards ahead when […]
Smoothing API Onboarding With Simulation and Documentation
“Soon we’ll be making another run…And love, exciting and new, Come aboard, we’re expecting you…”– Theme from The Love Boat, American television program, circa 1977 If software is eating the world, then APIs are eating software. Investment in the API economy is increasing. More than 200 million APIs are already out there in the world, […]
- 1
- 2
- 3
- …
- 10
- Next Page »