Glad RSA week to those that rejoice! This previous month’s releases embrace an thrilling new functionality that extends API safety to generative AI APIs, DAST for GraphQL, JIRA knowledge heart integration, and several other different enhancements.
Generative AI API Safety – Now in Early Entry
In response to Gartner, 80% of enterprises could have used generative AI APIs or deployed generative AI of their purposes by 2026. At Traceable our mission is to guard each API and generative AI APIs aren’t any exception. To assist safety groups put together for and mitigate the brand new dangers that generative AI introduces to purposes, we’re introducing a brand new set of capabilities that extends our end-to-end API safety to generative AI APIs.
Generative AI introduces new safety dangers to purposes, together with these cataloged within the OWASP High 10 for LLMs. As product and knowledge groups experiment with generative AI to energy consumer experiences and options comparable to content material personalization, chatbots, and AI assistants, safety groups want visibility into the place generative AI is used of their purposes, and the power to observe generative AI inputs (prompts) and outputs to protect in opposition to generative AI dangers. Traceable’s Generative AI API Safety permits groups to just do that. Capabilities embrace:
Discovery and Cataloging of Generative AI APIs
Uncover in all places generative AI is utilized in your purposes by cataloging each generative AI API, whether or not the APIs are from third-party AI suppliers like OpenAI and Anthropic, or from an internally hosted mannequin.
Determine and Block Restricted Information in GenAI Requests and Responses
Monitor all requests and responses to GenAI APIs. Determine when delicate knowledge or different restricted knowledge or language varieties are contained in requests and responses, together with manipulative language indicative of immediate injection.
Repeatedly Check GenAI APIs for Vulnerabilities
Traceable AST will repeatedly take a look at GenAI APIs for normal API vulnerabilities in addition to a number of AI-specific vulnerabilities within the OWASP High 10 for LLMs, empowering safety groups to establish any points rapidly. In case you are a Traceable buyer and your group is constructing generative AI-enabled options in your purposes, please attain out to talk with our product staff about early entry.
DAST for GraphQL APIS
DAST for GraphQL APIs is now usually obtainable and enabled for Traceable prospects inside Testing Suites. This replace lets you add a GraphQL API schema and run a scan to search out vulnerabilities. Now you can add GraphQL schema and run a scan to search out vulnerabilities.
JIRA Information Middle Integration
Traceable can now combine along with your JIRA Information Middle deployment to energy challenge administration for patrons who host JIRA on prem. Traceable beforehand supported integration with JIRA deployments within the cloud. The JIRA integration lets you file a JIRA ticket instantly from the Traceable platform, so you possibly can seamlessly create JIRA tickets for the related groups to repair vulnerabilities and different points recognized in Traceable.
Vulnerability Decision and Information Retention Enhancements
We now have made two updates to enhance your capacity to triage and examine vulnerabilities in Traceable:
- Auto-resolution for passive vulnerabilities: This replace will auto-resolve passive vulnerabilities detected through reside site visitors. When a beforehand detected passive vulnerability will not be seen in subsequent site visitors over a time frame, we’ll routinely resolve the vulnerability. Beforehand passive vulnerabilities needed to be
- Elevated knowledge retention for vulnerability proof: Traceable will now retailer vulnerability proof spans for 90 days, providing you with and your improvement staff extra time to finish investigations of points found in Traceable.
About Traceable
Traceable is the trade’s main API Safety firm serving to organizations obtain API safety in a cloud-first, API-driven world. Traceable is the one contextually-informed answer that powers full API safety – API discovery and posture administration, API safety testing, assault detection and menace searching, and assault safety wherever your APIs reside. Traceable permits organizations to attenuate threat and maximize the worth that APIs convey to their prospects. To be taught extra about how API safety might help your small business, go to https://www.traceable.ai/.
