#41 - Aikido MCP, re-testing AI Pentest findings, and Azure Management Group support
30 Dec 2025
Features
Aikido MCP - Aikido MCP brings Aikido’s security knowledge into AI driven workflows by letting AI agents analyze code. This enables AI tools to reason about security risks and fixes without sending code or data to the cloud.
Re-test individual AI Pentest findings - After applying a fix to confirm whether an issue is actually resolved let Aikido AI Pentest verify the results. This helps teams close findings with confidence without running a full pentest.
Azure Management Groups - Connect your Azure Management Group once and Aikido will automatically discover all your existing and future groups and subscriptions.
Aikido Intel - Malware & Vulnerability Database
Our research team has discovered over #165 vulnerabilities over the last month.
We published a detailed blog post on the most significant CVE this month, a React and Next.js denial of service issue (CVE-2025-55184) and the Bad Dependencies Podcast covered an in depth breakdown of ShaiHulud 2.0. You can watch the full episode on YouTube.
Improvements
General - Broker Helm chart released
Code Scanning - Github Enterprise Server on-prem support with Aikido Broker
AutoFix - Support for Bun
Containers - Malware detection in containers
Kubernetes - New checks for ingress-nginx and MongoDB
AI Pentest - GraphQL support
Code Quality - Automatically ignores generated files
Domains & API’s - Added ability to link domains directory to teams
Domains & API’s - Add custom headers for use during API scan
Domains & API’s - OTP/2FA support
Virtual Machines - New local scanner release
IDE - New releases for VSCode, Jetbrains and Visual Studio
Added full python support (pip, pipx, uv, poetry)
Added Circle CI support
Allow to configure custom/private npm registries
Notifications - Email forwarding support
API - Add Kubernetes cluster
API - List all CI scans
Last updated
Was this helpful?