business

Aikido Acquires Root to Shield Open Source From AI Threats

Aikido's acquisition of Root brings AI-driven vulnerability research and patching to open-source security without requiring teams to overhaul their workflows.

The open-source software ecosystem has long been a target for malicious actors, but the rise of AI-powered attack tools is intensifying that pressure at a pace traditional security teams struggle to match. Aikido, a software security platform, is responding by acquiring Root, a move designed to deploy AI agents that autonomously research, patch, and test vulnerabilities lurking inside open-source dependencies.

What makes the acquisition strategically notable is its framing around developer friction — or the deliberate lack of it. Rather than compelling engineering teams to adopt new toolchains or force disruptive version upgrades, Aikido's approach positions AI as a behind-the-scenes operative that handles the remediation lifecycle without interrupting existing workflows. In an industry where security tools frequently die from adoption fatigue, that design philosophy carries real competitive weight.

Read more ECI Technology Group Acquires QUESTEK to Grow US Presence →

The timing reflects a broader industry anxiety: as AI lowers the barrier for attackers to discover and exploit software vulnerabilities at scale, defenders face asymmetric pressure to automate their own responses. Open-source packages, which underpin the vast majority of modern software stacks, represent a particularly exposed surface area because their maintenance often depends on volunteer contributors rather than dedicated security engineers.

By pairing Aikido's existing security platform with Root's capabilities, the combined offering aims to close that gap — essentially fielding an AI response to an AI threat. Whether autonomous patching agents can keep pace with adversarial automation without introducing their own risks remains an open question the industry will be watching closely.

Continue reading at GlobalNewswire.

Continue reading at GlobalNewswire →

Frequently Asked Questions

Q.What does Aikido's acquisition of Root actually do for open-source security?

The acquisition allows Aikido to deploy AI agents that autonomously research, patch, and test vulnerabilities in open-source software, reducing the manual burden on engineering teams.

Q.Will teams need to upgrade their systems to use Aikido's new AI security features?

No — a key selling point of the Aikido-Root integration is that it works without forcing development teams to perform disruptive upgrades or overhaul existing workflows.

Q.Why is open-source software particularly vulnerable to AI-powered attacks?

Open-source packages form the foundation of most modern software stacks but are often maintained by volunteer contributors rather than dedicated security professionals, making them a broad and under-defended attack surface.

More in business →