Secure Code Warrior collaborating with AWS, launches Amazon Bedrock AI Learning Modules
Secure Code Warrior announced it has signed a collaboration agreement with Amazon Web Services (AWS), and has launched new interactive, hands-on training modules now available within the Secure Code Warrior platform.
The new modules enable developers and engineers to build Secure by Design habits, maintain continuous risk awareness, and adopt secure operational practices for Amazon Bedrock, a platform for building generative AI applications and agents at production scale.
Secure Code Warrior’s modules and activities focus on securing infrastructure as code for Amazon Bedrock using Terraform. These Bedrock-specific secure coding modules help developers understand and mitigate risks unique to AI and LLM-based applications — including prompt injection, excessive agency, insufficient logging, and information exposure. The new content includes 4 Coding Labs, 4 AI Challenges, and 1 Walkthrough Mission, providing developers with controlled, direct exposure to these risks in interactive environments.
“Software development is being augmented by generative and agentic AI technology on an unprecedented scale, and this strategic collaboration could not come at a more mission-critical moment for both security leaders and future-focused developers,” said Pieter Danhieux, CEO and co-Founder of Secure Code Warrior. “As organizations continue to adopt generative AI applications and tools, an inherent level of risk is introduced – but this risk dramatically increases when developers are not properly educated on the tools and platforms they are leveraging. Developers need more than theoretical guidance; they require practical experience in identifying and mitigating real-world threats. By entering into this SCA with AWS to deliver hands-on training for Amazon Bedrock, we’re helping enterprise teams learn to confidently address AI vulnerabilities and red flags so that they can build AI applications that are secure by default.”
NetSPI launches AI-powered Continuous Pentesting to help organizations validate and reduce risk as attack surfaces rapidly evolve
Penetration testing provider NetSPI announced the launch of its AI-powered Continuous Pentesting offerings, designed to help organizations continuously identify, validate and reduce risk.
Organizations are managing an expanding number of potential entry points as new internet-facing resources, including cloud assets, applications, APIs, and AI-centric assets, are introduced. Each deployment can create new risk, making it harder for security teams to maintain a clear view of exposure without continuous, validated insight.
NetSPI’s Continuous Pentesting offerings include Continuous External Penetration Testing, Continuous Cloud Penetration Testing, agentic Model Context Protocol (MCP) Integrations, and NetSPI’s AI-accelerated platform to help teams find, prioritize and remediate real risk as environments change.
“The rapidly evolving threat landscape requires security testing that provides real-time scale and accuracy, without the noise of thousands of false positives,” said Nabil Hannan, Field CISO at NetSPI. “NetSPI’s AI-powered continuous penetration testing helps teams identify and validate critical risks quickly, allowing them to respond with confidence while focusing on cost-effective and relevant vulnerability detection.”
With NetSPI’s Continuous Pentesting offerings, customers can:
- Continuously discover, identify, and test exposures across external environments with Continuous External Penetration Testing
- Identify cloud misconfigurations, excessive permissions, and exposed services as they emerge with Continuous Cloud Penetration Testing
- Validate real risk through ongoing testing that simulates attacker behavior
- Use NetSPI’s MCP integrations to automate risk-based workflows and decisions using engagement and vulnerability data.
- Access findings through NetSPI’s modern, centralized platform with clear, actionable recommendations for remediation
Claude Platform now available on AWS
The Claude Platform on AWS is now generally available, offering a new way for AWS customers to access the full set of Claude Platform features with AWS authentication, billing, and commitment retirement. Claude also remains available on Amazon Bedrock, where AWS is the data processor.
Starting today, Claude Platform on AWS customers can deploy agents at scale with Claude Managed Agents, currently in beta. Other platform features include an advisor strategy, also in beta, that help agents consult an advisor model; web search and web fetch; and the ability to run Python code, create visualizations and analyze data directly within API calls. The platform also comes with a Files API for document referencing and Skills that teach Claude best practices for consistent results, among other features.
Authentication runs through AWS IAM, audit logging through CloudTrail, and billing through a single AWS invoice that fully retires against existing commitments. Customers use their existing AWS credentials and IAM policies, so teams stay within the tools and permissions they already manage.
Claude Platform on AWS will be available in most AWS commercial regions and support global and U.S. inference geographies. Claude Platform on AWS customers also get access to the Claude Console, Anthropic’s development environment for building and testing with Claude. The Console includes a prompt improver, prompt generator, and evaluation tools.
Claude Opus 4.7, Sonnet 4.6, and Haiku 4.5 are available, with new models shipping on the Claude Platform on AWS as they launch.
The Claude Platform on AWS is available today. To get started, visit the Claude Platform on AWS or explore the documentation.
Sembi publishes inaugural Software Quality Pulse Report
Sembi today released its first-ever Software Quality Pulse Report, a global study examining how organizations are managing software quality, testing, and security in the age of AI. The report is an expanded continuation of TestRail’s previous four Software Testing and Quality Reports.