AWS Security Agent's new full-repository code review uses AI to identify systemic vulnerabilities across your entire codebase.

DevOps publication provides insights into DevOps practices, tools, and culture, offering articles and tutorials for automating software delivery pipelines and fostering collaboration between development and operations teams. By exploring DevOps's curated content, developers can learn about infrastructure as code (IaC), containerization, and cloud-native technologies for building scalable and resilient applications. DevOps publication offers  guidance and best practices to accelerate your software delivery process and improve team collaboration.

DevOps.com

AWS has released full repository code review in preview as part of AWS Security Agent, available at no extra charge to existing customers. Unlike traditional SAST tools that match code against known vulnerability patterns, this feature uses a multi-agent AI pipeline to reason about application architecture, trust boundaries, and data flows — enabling it to detect chained exploits and systemic vulnerabilities that pattern-matching tools miss. Findings include specific file and line references with concrete remediation steps. The capability joins design review and penetration testing (already GA) as part of AWS Security Agent's broader shift-left security offering.

AWS Security Agent Brings Full Repository Code Scanning to Preview