#32 - Hardened container images, Autogenerated OpenAPI specs, and dependency scanning in IDE

Features

• Hardened container images for AutoFix: Stay ahead of your SLAs with the secure-by-default hardened container images. No guesswork. No backlog stuffing. Just containers that are ready for production, without the CVE noise. (in collaboration with Root.io)

• Autogenerated OpenAPI spec: No swagger? No problem. Aikido can automatically generate your OpenAPI spec based on your codebase – no manual work needed. Regular rescans & our AI-capabilities keep everything up to date.

• Open source dependency scanning (SCA) in all IDEs: Scan for open source dependency issues directly in your code editor. Supported in VS Code, all Jetbrains IDEs & Visual Studio.

• Advanced Cloud Rules: We’ve added an additional 21 advanced rules for Azure and AWS. These rules optional checks are not on by default. Turn them on for broader visibility and more stringent compliance.

Aikido Intel - Malware & Vulnerability Database

Our research team has discovered over #49 over the last two weeks, reaching a milestone of over a 1000 security vulnerabilities detected! Get these inside your IDE with our free plugins for VSCode, Cursor, and Windsurf.

Improvements

• Domains & API’s - Exclude routes from security scans

• Zen - Added custom IP blocklists support

• IDE - VS Code 1.0.40 & 1.0.41 & 1.0.42 & 1.0.43

  • Added AutoTriage

• IDE - Jetbrains 1.0.19 & 1.0.20 & 1.0.21

  • Add Open Source Vulnerability Scanning (SCA)

• Task Trackers - Auto close task in Linear after vulnerability has been fixed

• Task Managers - Azure DevOps now allows you to add a label to newly created tickets

• CI Gating - Set default PR configuration for new repos in Bitbucket and Gitlab

• CI Gating - Added training (non blocking) mode for Gitlab PR checks

• API - Manage Zen custom blocklists