According to OpenAIDevs on X, OpenAI introduced Codex Security, an application security agent that scans codebases to find vulnerabilities, validates exploitability, and proposes reviewable fixes, enabling teams to prioritize critical issues and ship faster. As reported by OpenAI’s blog, the tool is in research preview and is designed to integrate into developer workflows to reduce false positives and streamline remediation with AI-generated patches and validation steps, highlighting practical DevSecOps automation and measurable time-to-fix gains. According to Greg Brockman on X, the announcement underscores a shift toward autonomous AI agents for secure software delivery, creating opportunities for security vendors and enterprises to augment SAST and code review pipelines with AI-driven triage and patch suggestions.

According to OpenAI on X, Codex Security—an application security agent—has entered research preview, aimed at helping developers detect and remediate code and dependency risks in real time (source: OpenAI post; original details: OpenAI blog). According to the OpenAI blog, the agent integrates with developer workflows to analyze codebases, surface vulnerabilities, and suggest fixes, targeting use cases like secure code review, secrets detection, and third‑party package risk assessment. As reported by OpenAI, early capabilities focus on static analysis augmentation and policy-aware remediation guidance, positioning Codex Security as a co-pilot for AppSec teams to reduce mean time to remediation and shift-left security in CI pipelines. According to OpenAI, the research preview invites security and engineering teams to test integrations and provide feedback on accuracy, latency, and safe deployment, signaling new opportunities for vendors to build agentic security tooling and for enterprises to automate compliance checks and vulnerability triage.