Reports
AI-generated structured vendor updates
CrowdStrike Capitalizes on 5x AIDR Growth to Enter Identity Security, Seizing AI Runtime Control Plane
CrowdStrike reports 5x growth in its AIDR product, expanding into identity security. AIDR monitors AI app data flows, detects prompt injection and model jailbreaks, and launches Shadow AI Discovery for Endpoint to auto-discover AI apps and LLM runtimes on endpoints. This signals a control plane shift from traditional endpoint detection to converged AI workload and identity security.
Announcing the Monetization Gateway: charge for any resource behind Cloudflare via x402
...
Making private MCP servers reachable without making them public | OpenAI Developers
...
Google Antigravity 2.0 Replaces IDE with AI Agents, Forces Gemini CLI Migration
Google launches Antigravity 2.0, a revolutionary AI coding platform with desktop app, CLI, SDK, and Managed Agents API. It forces migration from Gemini CLI to Antigravity CLI, introduces Gemini Spark personal AI agent running on Google Cloud VM, and upgrades coding assistance from editor feature to software labor operating system.
AWS Seizes Agent Control Plane with MCP Gateway and AgentCore
AWS launches managed web search for Bedrock AgentCore, autonomous agents in Amazon Quick, subagent MicroVM orchestration with LangChain, and MCP Gateway, shifting enterprise AI agents from prototypes to governed infrastructure with cloud-native control planes and execution isolation.
Google AI Studio Starter Tier: Pre-wired Serverless Stack Trades Control for Zero-Friction Deployment
Google introduces Starter Tier for AI Studio, a pre-wired stack of Cloud Run, Firestore, Cloud SQL for PostgreSQL, and Firebase Authentication, deployable without a payment method. It locks users to a single region, limited APIs, and shared quotas, but offers zero-downtime upgrade to full GCP, aiming to lower AI deployment barriers while deepening ecosystem lock-in.
Introducing Amazon Bedrock Managed Knowledge Base for faster, more accurate enterprise AI applications
...
AWS S3 Annotations: 1GB Mutable Metadata Per Object, Killing External Metadata DBs
AWS launches S3 annotations, enabling up to 1,000 mutable annotations per object (each 1MB, total 1GB) in JSON/XML/YAML. Annotations auto-index into Apache Iceberg tables, queryable via Athena without retrieval charges. This embeds metadata into the storage layer, eliminating external metadata databases and reshaping AI agent data discovery.
Cloudflare One Stack: AI Agent Skills to Automate SASE Migration, Targeting Zscaler Lock-in
Cloudflare launches the Cloudflare One Stack, a set of skill files for AI agents to automate Zero Trust deployment and migration, with built-in logic for migrating from Zscaler and Palo Alto Networks. It integrates with the MCP server for live API access, aiming to slash switching costs and accelerate defection from rival SASE platforms.
Cloudflare Extends Security Stack to Private Origins via DNS Routing
Cloudflare launches Application Services for Private Origins, enabling Enterprise customers to route public traffic to private IPs via DNS records. WAF, bot management, rate limiting, caching, and Workers now protect private applications without public exposure or connector software. Built on existing private network connectivity (IPsec/GRE/CNI/Mesh), it extends to Spectrum and Workers VPC, unifying the control plane for private traffic.
Cloudflare as Customer Zero: Layered Defense Architecture Against Frontier AI Threats
Cloudflare reveals its production defense architecture against frontier AI models, using itself as customer zero. Combines WAF Attack Score, API Shield, Bot Management, Zero Trust, and MCP Server Portal. Core insight: architecture around the vulnerability matters more than patch speed, using ML scoring and positive security models to block attack variants before they hit, and contain lateral movement after a breach.
Cloudflare Embeds Live Threat Intel into WAF, Shifting Control from Manual Rules to Automated Engine
Cloudflare announces integration of real-time threat intelligence (from Cloudforce One) into its WAF engine, enabling proactive rules based on IP, attacker names, target industries, etc. Uses always-on detection with O(1) constant-time lookup for negligible latency. Currently IP-based, with plans for JA3 and domain matching.
Cisco AI Defense + AppOmni Extends Runtime Guardrails to SaaS AI Agents
Cisco integrates AI Defense with AppOmni, using AgentGuard as a real-time intercept layer inside SaaS environments. Custom guardrails now apply to Microsoft 365 Copilot, ServiceNow Now Assist, and other SaaS agents, monitoring MCP, chat, and agent-to-agent channels to block prompt injection, tool exploitation, and data exfiltration with a unified policy engine.
Cisco Agent Gateway: Zero Trust Evolves from Access to Action Control for AI Agents
Cisco launches Agent Gateway for Secure Access, extending Zero Trust from access control to action-level control for AI agents. Using Duo for agent identity, it enforces policies across LLMs, MCP servers, and SaaS APIs, with server-side credential injection and unified audit—addressing the unique security challenges of autonomous agent workflows.
Microsoft Build 2026: Unifying Agent Stack from Chip to Cloud
At Build 2026, Microsoft unveiled a comprehensive agent-era platform: Project Solara (chip-to-cloud), Microsoft IQ (unified grounding), Rayfin (backend generation), Azure HorizonDB, and GPU-accelerated analytics. The goal is to lock developers into Microsoft's ecosystem.
Cisco Live 2026: AI Defense Upgrades with Policy Studio, Adaptive Red Teaming, Agent Supply Chain Security
At Cisco Live 2026, Cisco unveiled AI Defense upgrades: adaptive red teaming, Policy Studio for natural language policy, and agent supply chain security with CI/CD integration. It also launched AgenticOps autonomous network operations and native integrations with Amazon Bedrock, Google ADK, LangChain, aiming to secure multi-framework agent environments.
Cisco AI Defense Update: Agent Supply Chain Security as Platform Lock-In
Cisco updates AI Defense for agent security with adaptive red teaming, Policy Studio, and automated agent dependency graph scanning. It claims platform-agnostic protection across AWS Bedrock, Google ADK, LangChain, but deeply ties into Cisco Secure AI Factory with NVIDIA, raising concerns about lock-in and runtime overhead.
Google AlloyDB Remote MCP Server GA: Standardizing AI Agent Data Access with Open Protocol
Google Cloud announces GA of AlloyDB Remote MCP Server, enabling AI agents to securely access operational data via HTTP endpoints. Built on open MCP protocol, it offers IAM fine-grained authorization, Model Armor protection, and audit logging, integrated with AlloyDB’s ScaNN vector index (10B+ vectors, 6x speed) and AI functions, positioning AlloyDB as the single source of truth for enterprise agentic workloads.
NVIDIA DSX OS: Open Source Software to Seize AI Factory Control Plane
NVIDIA launches DSX OS, an open-source modular software suite for operating AI factories. Components include DSX Exchange, MaxLPS, NICo, NVSentinel, etc., unifying IT/OT, power optimization, and lifecycle management. Claims 40% more GPUs under fixed power, but core relies on NVIDIA proprietary hardware, aiming to lock users into its ecosystem.
Cisco & Microsoft Join Forces: Browser Becomes Zero Trust Control Plane with SSE-Edge Integration
Cisco Secure Access integrates deeply with Microsoft Edge for Business, embedding zero-trust access, DLP, and AI threat protection directly into the browser. The browser replaces VPN/agent as the primary entry point for private apps, with unified policy enforcement that also governs AI agents like Copilot, signaling a control plane shift from network to browser layer.