SmartBear announced AI enhancements for API testing, UI test automation, and test management across its product suite, the SmartBear Application Integrity Core™.
Backslash Security Adds Discovery and Guardrails for Agentic AI Skills
New platform capability enables security teams to discover, assess, and govern AI Skills across AI coding agents and IDEs as the vibe coding ecosystem rapidly expands
March 24, 2026
Backslash Security announced new cross-product support for agentic AI Skills within its platform, enabling organizations to discover, assess, and apply security guardrails to Skills used across AI-native software development environments.
The developer ecosystem of AI-powered coding agents and tools is rapidly expanding with new extensibility layers, including Skills, Model Context Protocol (MCP) servers, prompt rules, hooks, and plug-in architectures. As these capabilities enhance and automate developer productivity, they also introduce significant new security blind spots.
Skills extend the capabilities of AI agents through externally defined instructions, for example, allowing a coding agent to read and modify files, access secrets from environment variables, or install packages from external registries. Because Skills are often community-authored with broad permissions, they can introduce risks ranging from data exfiltration to unauthorized code execution, making it difficult for security teams to understand or control how AI systems interact with code, data, and developer infrastructure.
To address these emerging risks, the Backslash platform now provides centralized visibility and security controls for Skills across AI coding environments. The new capability enables organizations to continuously discover Skills used in developer workflows, evaluate their risk posture, and define guardrails governing their use.
Key features include:
- Centralized discovery of Skills used by AI agents and AI-native IDEs
- Skill vetting and risk assessment for excessive permissions and unsafe behaviors
- Guardrail policies defining approved Skill usage and configuration
- Cross-platform visibility across heterogeneous AI coding environments
With centralized oversight of Skills and other AI coding components, security teams can ensure that organizations continue to benefit from the productivity gains of AI-driven development while maintaining strong governance and risk management.
“AI coding environments are evolving at an extraordinary pace, and Skills are quickly becoming a powerful way to extend the capabilities of coding agents,” said Yossi Pik, co-founder and CTO of Backslash Security. “But with that flexibility comes risk. Skills can combine with MCPs, rules, hooks, and plug-ins in ways that make it extremely difficult for organizations to understand what their AI systems are actually doing. Our platform enables security teams to see exactly what’s running within their AI dev environments - from Skills and MCP servers to plug-ins and prompt rules. Then it empowers them to create guardrails that enable them to stop attempts that violate policy and put the organization at risk.”
The new capability extends the Backslash platform, which already provides discovery and governance for AI coding agents, IDEs, MCP servers, and LLMs. Adding Skills coverage closes a critical new gap—giving security teams a complete view of the stack from the model layer to the extensibility layer.
The new cross-product Skills security capability is available now on the Backslash platform. Visit the Backslash website to learn more and schedule a demo.
Backslash Security will be at the RSA Conference in San Francisco, March 23 - 26, 2026. Stop by Backslash’s booth, NXT-9, in RSA’s Early Stage Expo hall to see the new platform capability in action.
Industry News
March 31, 2026
JFrog announced its partnership with iZeno Pte Ltd, a Singapore-headquartered enterprise technology solutions provider.
March 30, 2026
Red Hat announced an expanded collaboration with Google Cloud to help organizations accelerate application modernization and cloud migrations.
March 30, 2026
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the contribution of SQLMesh, an open source data transformation framework, to the Foundation by Fivetran.
March 26, 2026
Check Point® Software Technologies Ltd. released the AI Factory Security Architecture Blueprint — a comprehensive, vendor-tested reference architecture for securing private AI infrastructure from the hardware layer to the application layer.
March 26, 2026
CMD+CTRL Security won the following awards from Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine: Most Innovative Cybersecurity Training and Pioneering Secure Coding: Developer Upskilling.
March 25, 2026
Check Point® Software Technologies Ltd. announced the Check Point AI Defense Plane, a unified AI security control plane designed to help enterprises govern how AI is connected, deployed, and operated across the business.
March 25, 2026
Oracle announced the latest updates to Oracle AI Agent Studio for Fusion Applications, a complete development platform for building, connecting, and running AI automation and agentic applications.
March 25, 2026
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced that Istio has launched a host of new features designed to meet the rising needs of modern, AI-driven infrastructure while reducing operational complexity.
March 25, 2026
Chainguard announced Chainguard Repository, a single Chainguard-managed experience for pulling secure-by-default open source containers, dependencies, OS packages, virtual machine images, CI/CD workflows, and agent skills that have built-in, intelligent policies to enforce enterprise security standards.
March 24, 2026
Backslash Security announced new cross-product support for agentic AI Skills within its platform, enabling organizations to discover, assess, and apply security guardrails to Skills used across AI-native software development environments.
March 24, 2026
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the graduation of Kyverno, a Kubernetes-native policy engine that enables organizations to define, manage and enforce policy-as-code across cloud native environments.
March 24, 2026
Zero Networks announced the Kubernetes Access Matrix, a real time visual map that exposes every allowed and denied rule inside Kubernetes clusters.
March 24, 2026
Apiiro announced AI Threat Modeling, a new capability within Apiiro Guardian Agent that automatically generates architecture-aware threat models to identify security and compliance risks before code exists.
March 23, 2026
GitLab released GitLab 18.10, making it easier and more affordable to use agentic AI capabilities across the entire software development lifecycle.
