Harness Expands Application Security with Qwiet AI Acquisition to Enhance AI-Powered Vulnerability Detection
On September 29, 2025, Harness, a prominent AI DevOps platform, made headlines with its strategic acquisition of Qwiet AI, previously known as ShiftLeft, Inc. This move is part of Harness's commitment to advancing its application security business, which is on track to reach $50 million in annual recurring revenue this year. The integration of Qwiet AI, a pioneer in agentic AI-powered vulnerability detection, aligns with Harness's broader goals to enhance software security in an era characterized by rapid coding innovations driven by AI.
The swift rise of AI coding tools and practices, such as the concept of "vibe coding," has revolutionized software development by enabling developers to write code quickly. However, this increased velocity comes at a significant risk. AI-generated code frequently includes insecure patterns and lacks the necessary safeguards, leading to the emergence of hidden vulnerabilities that can jeopardize organizational security. Security teams are inundated with alerts, many of which are low-value or false positives. This barrage not only consumes valuable resources but also allows critical risks to escape notice, exacerbating the chasm between innovation and security.
Harness aims to bridge this gap with its innovative approach that focuses on unifying security with DevOps processes. By doing so, every step of software development—from building to testing and deployment—can be conducted with security at the forefront, ensuring that risk is mitigated while innovation thrives. The company emphasizes that integrating security from the start is crucial in combatting the vulnerabilities that AI-generated code can introduce.
Jyoti Bansal, the co-founder and CEO of Harness, remarked on the acquisition by stating, "AI-generated code is transforming how software gets built, but it’s also introducing a new wave of hidden vulnerabilities.” He added that merging with Qwiet AI will not only enhance Harness's application security portfolio but also shift the paradigms of how enterprises can protect themselves while achieving rapid deployment.
Qwiet AI's state-of-the-art Code Property Graph (CPG) technology complements Harness’s existing AI capabilities. Integrating this technology with the Software Delivery Knowledge Graph amplifies the application’s awareness and precision in identifying vulnerabilities. This collaboration aims to eliminate excessive alerts by ensuring that developers only receive notifications about genuine security threats, thus allowing them to focus on real issues quickly.
The enhancements brought by Qwiet AI include:
Stuart McClure, CEO of Qwiet AI, expressed confidence in this partnership, stating, "Our technology was built for the future of AI-driven development, and Harness provides the platform and scale to bring that vision to life.” This sentiment is echoed by Katie Norton, Research Manager for DevSecOps at IDC, who noted the increasing demand for integrated security solutions that are easily scaled and managed.
Moreover, to spearhead this initiative, Rahul Sood, an experienced leader in the tech industry, has been appointed as Harness's General Manager. With a robust background that includes pivotal roles at companies like Palo Alto Networks and Google Cloud, Sood is set to lead the charge in redefining application security as a critical component of the software delivery process. He remarked, "Application security is one of the most urgent challenges enterprises face in the AI era, and Harness is uniquely positioned to meet developers where they are."
The acquisition of Qwiet AI not only enhances Harness's capability in securing software development but also sets a new benchmark for how enterprises can embrace both speed and security. By intertwining robust security measures with DevOps practices, Harness is paving the way for a future where organizations can innovate with confidence, ensuring their processes are both efficient and secure. The acquisition is a significant step towards providing engineering and DevOps teams with the tools they need to deliver applications securely and efficiently.
For more information about Harness’s application security offerings and to view live demonstrations of their products, customers and interested parties can schedule a meeting with the company, marking a new era in secure software delivery.
The swift rise of AI coding tools and practices, such as the concept of "vibe coding," has revolutionized software development by enabling developers to write code quickly. However, this increased velocity comes at a significant risk. AI-generated code frequently includes insecure patterns and lacks the necessary safeguards, leading to the emergence of hidden vulnerabilities that can jeopardize organizational security. Security teams are inundated with alerts, many of which are low-value or false positives. This barrage not only consumes valuable resources but also allows critical risks to escape notice, exacerbating the chasm between innovation and security.
Harness aims to bridge this gap with its innovative approach that focuses on unifying security with DevOps processes. By doing so, every step of software development—from building to testing and deployment—can be conducted with security at the forefront, ensuring that risk is mitigated while innovation thrives. The company emphasizes that integrating security from the start is crucial in combatting the vulnerabilities that AI-generated code can introduce.
Jyoti Bansal, the co-founder and CEO of Harness, remarked on the acquisition by stating, "AI-generated code is transforming how software gets built, but it’s also introducing a new wave of hidden vulnerabilities.” He added that merging with Qwiet AI will not only enhance Harness's application security portfolio but also shift the paradigms of how enterprises can protect themselves while achieving rapid deployment.
Qwiet AI's state-of-the-art Code Property Graph (CPG) technology complements Harness’s existing AI capabilities. Integrating this technology with the Software Delivery Knowledge Graph amplifies the application’s awareness and precision in identifying vulnerabilities. This collaboration aims to eliminate excessive alerts by ensuring that developers only receive notifications about genuine security threats, thus allowing them to focus on real issues quickly.
The enhancements brought by Qwiet AI include:
- - Reduced Alert Noise: Qwiet AI's renowned 97% true positive rate drastically minimizes unnecessary alerts.
- - Accelerated Remediation: Developers can resolve genuine issues up to 95% faster, streamlining the development process significantly.
- - Prioritized Vulnerability Focus: Advanced reachability analysis enables developers to concentrate on vulnerabilities that are actually exploitative, filtering out 92% of open-source vulnerabilities.
- - Understanding Actual Risks: The synergy between deep code comprehension and real-time production insights allows teams to grasp which vulnerabilities are genuinely exploitable, directing their efforts where it matters most.
Stuart McClure, CEO of Qwiet AI, expressed confidence in this partnership, stating, "Our technology was built for the future of AI-driven development, and Harness provides the platform and scale to bring that vision to life.” This sentiment is echoed by Katie Norton, Research Manager for DevSecOps at IDC, who noted the increasing demand for integrated security solutions that are easily scaled and managed.
Moreover, to spearhead this initiative, Rahul Sood, an experienced leader in the tech industry, has been appointed as Harness's General Manager. With a robust background that includes pivotal roles at companies like Palo Alto Networks and Google Cloud, Sood is set to lead the charge in redefining application security as a critical component of the software delivery process. He remarked, "Application security is one of the most urgent challenges enterprises face in the AI era, and Harness is uniquely positioned to meet developers where they are."
The acquisition of Qwiet AI not only enhances Harness's capability in securing software development but also sets a new benchmark for how enterprises can embrace both speed and security. By intertwining robust security measures with DevOps practices, Harness is paving the way for a future where organizations can innovate with confidence, ensuring their processes are both efficient and secure. The acquisition is a significant step towards providing engineering and DevOps teams with the tools they need to deliver applications securely and efficiently.
For more information about Harness’s application security offerings and to view live demonstrations of their products, customers and interested parties can schedule a meeting with the company, marking a new era in secure software delivery.
Topics Business Technology)
【About Using Articles】
You can freely use the title and article content by linking to the page where the article is posted.
※ Images cannot be used.
【About Links】
Links are free to use.