Xygeni’s AI AutoFix Makes Official Debut at BlackHat 2025

blackhat 2025

Xygeni's AI AutoFix Makes Official Debut at BlackHat 2025

Las Vegas, USA, August 5, 2025 — Xygeni, the all-in-one application security platform for modern DevSecOps, announces the official debut of AI AutoFix, its breakthrough AI-driven remediation engine, at Black Hat USA 2025. From August 6–8, attendees at the Mandalay Bay Convention Center will get an exclusive first look at how AI can detect and automatically fix code vulnerabilities, helping teams ship secure software, faster.

“Developers don’t need more alerts, they need results,” said Jesús Cuadrado, CPO of Xygeni. “AutoFix goes beyond identifying risks. It fixes vulnerabilities in real time, directly in your repos, without disrupting your pipeline.”

Meet AutoFix: AI-Powered Remediation for Real-Time Security

AutoFix leverages AI to detect and resolve code-level flaws, including injection attacks, hardcoded secrets, and misconfigurations. It adapts to your language and framework, prioritizes using reachability and exploitability criteria, and generates secure pull requests with developer-friendly guidance, all integrated into your CI/CD workflows.

Key features:

  • 100% true positive detection for critical flaws (e.g., SQLi, XSS, CWE-79/89)
  • Context-aware remediation with AI-generated pull requests
  • Reachability + EPSS-based prioritization
  • Seamless GitHub, GitLab, Bitbucket, and Jenkins integration
  • Bulk AutoFix capabilities for SCA vulnerabilities

See Xygeni’s All-in-One AppSec Platform in Action

Visitors to Booth #6520 can experience the full power of Xygeni’s All-in-One Application Security Platform, which covers every stage of the SDLC. From code to deployment, Xygeni offers unmatched protection against malware, secrets exposure, supply chain attacks, and infrastructure risks—all from a unified view.

Malware detection is embedded across the platform: in source code, open source components, CI/CD pipelines, and container images, blocking threats before they reach production.

Core platform capabilities:

  • AI-powered SAST with AutoFix and malware detection in source code
  • Open Source Security with reachability, EPSS scoring, and early malware warning in third-party components
  • Secrets Security with real-time Git hook protection against exposed credentials

     

  • CI/CD Security & Policy Enforcement, including blocking malicious scripts, reverse shells, and misconfigured jobs
  • Infrastructure as Code (IaC) Security for Terraform, Kubernetes, Docker, and more
  • Build Integrity with SLSA compliance and unauthorized artifact change detection
  • Anomaly Detection for suspicious activity in repositories, pipelines, and permissions
  • Application Security Posture Management (ASPM) for risk visibility, dynamic prioritization, and compliance

Join Our Talk: Stop Chasing Alerts: Automate AppSec & Auto-Fix with AI

August 7, 10:50 AM – 11:10 AM – Startup Zone Open Stage

Join Xygeni’s 20-minute session to see how real DevSecOps teams automate AppSec from end to end. We’ll show how to:

  • Catch risky code, malicious dependencies, and exposed secrets early
  • Cut noise with smart policy checks and prioritization
  • Auto-fix vulnerabilities with AI-generated pull requests directly in your CI/CD

No theory, just a live, practical demo of security that works automatically.

About Xygeni

Xygeni enables secure software delivery without slowing down engineering. Its platform combines deep code analysis, real-time threat detection, and automated remediation across source code, open source, CI/CD, infrastructure, and cloud. With dynamic prioritization and AI capabilities, Xygeni helps development teams cut through the noise, eliminate risks early, and stay compliant at scale.

Press Contact:
 Fátima Said
 Content Marketing & PR Manager
 fatima.said@xygeni.io
 www.xygeni.io

Unifying Risk Management from Code to Cloud

with Xygeni ASPM Security

Watch Video Demo
Book a Demo