#USA #New York #Gomboc AI #Open Remediation Language #Automated Remediation

Gomboc Unveils Open Remediation Language for Enhanced Cloud Security

In a major development in the field of cloud security, Gomboc has announced the general availability of its new Open Remediation Language (ORL). This innovative platform significantly expands Gomboc’s deterministic remediation capabilities beyond Infrastructure-as-Code (IaC) and targets automated fixes for cloud configurations, application code, and associated dependencies.

Originally focused on the complexities of IaC, Gomboc has set out to tackle one of the most challenging issues within cloud security: the automatic and safe remediation of code vulnerabilities. The introduction of ORL means that organizations can now handle a broader range of cloud and code-related vulnerabilities with the same predictable and auditable methods they experienced with IaC.

The Need for Reliable Automation

As the technology landscape evolves, organizations face new challenges when it comes to executing automated remediation at scale. Generative AI tools are being used to suggest changes to production systems, but they often present challenges related to trust and completeness, resulting in risks like incomplete fixes and inconsistent behavior. Matthew Sweeney, Co-Founder and CTO of Gomboc, emphasizes that a solution must not only suggest fixes but must also guarantee safe execution in production environments.

“AI that suggests a fix is not the same as AI that executes safely in production,” stated Sweeney. “The industry is moving quickly toward automated change. The real question is whether those changes are deterministic, policy-aligned, and repeatable across an enterprise.” ORL is designed specifically to answer these challenges.

Extending Automation Beyond IaC

Gomboc is differentiated by its focus on providing deterministic remediation solutions. IaC, given its high impact, was just the starting point. With ORL, the platform now supports fixes in over 35 programming languages. ORL translates compliance policies into clear code transformations that follow deterministic rules, making remediation efforts scalable and controllable.

Key Features of ORL

• - Precise Detection of Policy Violations: Leveraging syntax-aware precision, ORL can identify policy breaches accurately.
• - Standards-Aligned Fixes: The language generates repeatable, policy-compliant corrections tailored to meet organizational standards.
• - Safe Code Transformations: ORL applies changes seamlessly across extensive codebases, ensuring that modifications are conducted safely.
• - Outcome Validation: Each fix is verifiable, ensuring consistency and reliability.

By utilizing explicit rule logic instead of unreliable pattern matching, ORL maintains predictability. The same input will yield the same output, allowing for easy review and audit of change sets.

A Bridge Between AI and Stable Execution

ORL connects the reasoning capabilities of generative AI with production-safe execution. As teams define organizational policies, ORL evaluates each one and Gomboc applies these changes in a controlled manner. Fixes are streamlined into existing Git and CI/CD workflows, presented as merge-ready pull requests.

This streamlined process ensures that remediation is not only deterministic but also scalable and aligned with organizational policies, fostering transparency throughout the process.

Real-World Example: Log4Shell

One compelling use case for ORL is illustrated with a case study about the Log4Shell vulnerability. Gomboc’s team was able to implement over 20 rules within 24 hours, addressing various Java dependency management challenges by applying version upgrades and mitigation changes effectively. This signifies how the same remediation technology adapted beyond its original IaC scope into dependencies and configuration layers, showing remarkable flexibility and adherence to policies.

Availability and Next Steps

ORL is available immediately as part of the Gomboc platform. Companies interested in experiencing deterministic remediation can start with Gomboc’s Community Edition to integrate it within their current developer workflows.

For more information, please visit Gomboc's official website. As the reliance on automated code-fixing tools grows in the enterprise sector, the collaborative and governed nature of ORL promises a level of predictability essential for successfully navigating the evolving landscape of cloud security.