Black Duck Launches AI-Native Security for AI-Generated Code
Event summary
- Black Duck Signal™, an agentic AI application security solution, is now generally available as of March 23, 2026.
- Signal is designed to secure AI-generated code in autonomous development workflows, leveraging ContextAI™, a model built on over 20 years of security intelligence.
- The solution integrates directly into modern agentic software development life cycles via APIs and model context protocol (MCP).
- Signal will be showcased at the RSA Conference in San Francisco from May 23–26, 2026.
The big picture
As AI coding assistants increasingly author production software, organizations face a new class of application risks created at unprecedented speed. Black Duck's Signal addresses this shift by delivering AI-native security that assesses risk, validates findings, and automates remediation at AI speed. This move underscores the growing need for specialized security solutions tailored to the unique challenges of AI-driven development.
What we're watching
- Adoption Pace
- How quickly enterprises will integrate Signal into their AI-driven development workflows, given the speed and scale of AI-generated code risks.
- Competitive Response
- Whether traditional application security testing (AST) tools will adapt to match Signal's AI-native capabilities and contextual awareness.
- Regulatory Alignment
- The extent to which Signal's governance features will align with evolving regulatory requirements for AI-generated software.
Related topics