Apiiro launches AI-powered risk analysis map for software

Agentic application security provider Apiiro has unveiled Software Graph Visualization, an AI-powered interactive map that enables real-time visualization of software architectures across all components, vulnerabilities, data exposure, and material changes, according to the company.

Introduced April 28, Software Graph Visualization offers question-driven, dynamic graphs that map risk exposure, attack surfaces, and sensitive data flow in real time, helping security teams understand changes to software architecture and pinpoint threats with a visual inventory of critical software components. “Software Graph Visualization eliminates the need to interview developers or use self-based attestation questionnaires that make it hard to identify how software components connect and where security risks emerge,” said Idan Plotnik, co-founder and CEO of Apiiro. “By using AI agents to generate a visual map of the entire software inventory, along with contextual security review questions and threat model stories, security teams can quickly identify, prioritize, remediate, and communicate risks.”

The following use cases are addressed by Software Graph Visualization:

Threat modeling to assess risk and vulnerabilities in designs and evaluate how sensitive data moves across boundaries.

Penetration test scoping to attain understanding of attack surfaces to scope tests. The graph visualizes API architecture and data flow, highlighting risk entry points, potential vulnerabilities, and business-critical areas of the system more prone to exploitation.

Change impact assessment to assess risk introduced by new code changes by comparing pre-release and post-release states of the application.

Privacy review to streamline the identification of privacy risks with sensitive data.

Blast radius analysis to measure the potential spread and impact of security breaches.

Toxic combinations to identify dangerous combinations across an application.

Vulnerability management to prioritize and remediate vulnerabilities with complete context.

Software Graph Visualization works with multiple programming languages including Java, C#, Python, JavaScript, and TypeScript. It is available in SaaS, hybrid, and on-premises deployment options.