Archipelo and Checkmarx Announce Partnership Connecting AppSec Detection with DevSPM
Application security platforms identify and prioritize vulnerabilities across repositories and pipelines. These systems indicate where risk exists but typically do not capture how a change entered the codebase or what development conditions contributed to its introduction.
Modern production software is created through a combination of human developers and AI-assisted coding workflows. During investigation and remediation, organizations increasingly need to determine which identity initiated a change, whether AI tooling participated, and what workflow conditions were present at the time of creation.
The partnership enables correlation between vulnerability findings and development-origin signals derived from software creation activity. These signals include developer identity association, workflow metadata, and code provenance information observable during the development process.
This approach introduces development-origin context into existing application security workflows, allowing investigation processes to incorporate recorded creation evidence alongside vulnerability detection results.
Archipelo provides Developer Security Posture Management (DevSPM), a security discipline focused on observable developer actions during software creation. Checkmarx provides application security testing and Application Security Posture Management (ASPM) for identifying and managing software risk across development pipelines. Together, the systems allow organizations to analyze both the presence of risk and the conditions under which it was introduced.
"Vulnerability detection establishes that risk exists," said
"Organizations need more than vulnerability detection — they need the context required to act quickly and confidently," said
The companies will present the approach in a joint webinar on
About Archipelo
Archipelo provides Developer Security Posture Management (DevSPM), focused on the software creation layer. The platform associates code changes with the developers and AI-assisted workflows that produced them across source control and CI/CD systems. By correlating this activity with security findings, Archipelo supplies attributable origin context — identifying the identity and actions involved in how risk entered the codebase — complementing artifact- and runtime-focused security platforms.
Website: https://archipelo.com/
About Checkmarx
Checkmarx provides an enterprise application security platform that enables organizations to identify, prioritize, and remediate software risk across modern development environments. Combining application security testing with Application Security Posture Management (ASPM), Checkmarx delivers unified visibility, contextual risk insights, and scalable governance across complex pipelines. Global enterprises rely on Checkmarx to strengthen software security outcomes while supporting the speed of modern, AI-assisted development.
Website: https://checkmarx.com/
Contact:
Marketing Manager
Archipelo, Inc
[email protected]
Photo: https://mma.prnewswire.com/media/2924857/Archipelo_Checkmarx.jpg
Logo: https://mma.prnewswire.com/media/2924856/Archipelo_Logo.jpg
View original content to download multimedia:https://www.prnewswire.com/news-releases/archipelo-and-checkmarx-announce-partnership-connecting-appsec-detection-with-devspm-302702554.html
SOURCE Archipelo
Serious News for Serious Traders! Try StreetInsider.com Premium Free!
You May Also Be Interested In
- Notice of Second Quarter Results Conference Call
- Artist Werner Bronkhorst celebrates World Cup with Big Balls exhibition
- New Clinic for Young Children with Autism Opening its Doors in Lake Zurich
Create E-mail Alert Related Categories
PRNewswire, Press ReleasesSign up for StreetInsider Free!
Receive full access to all new and archived articles, unlimited portfolio tracking, e-mail alerts, custom newswires and RSS feeds - and more!



Tweet
Share