Aikido Code Audit (www.aikido.dev)

Aikido has introduced a new tool called Aikido Code Audit, designed to bridge the gap between static application security testing (SAST) and penetration testing (pentesting). This innovative solution analyzes static codebases to identify complex vulnerabilities, particularly those multi-step and intent-dependent flaws that typical static analysis tools overlook. Aikido Code Audit positions itself as a necessary tool for developers, particularly before major releases, enabling teams to uncover security weaknesses before deploying their code. Significantly, Code Audit addresses the increasing threat posed by advanced AI models, such as Anthropic's recently released Claude Fable 5, which has shown the ability to autonomously discover and exploit vulnerabilities. With Code Audit, companies can leverage similar advanced reasoning capabilities to detect security issues without the need for a live staging environment or specific access credentials. The tool has demonstrated impressive findings, identifying 70-80% of vulnerabilities typically found in full pentests, at a fraction of the cost, while ensuring vulnerabilities are caught at a stage where fixes are easier and less disruptive. This proactive approach could be a game-changer for maintaining robust code security in the fast-evolving landscape of AI and software development.