ARMO Platform

Simplify cloud-native security with the ARMO Platform. Focus on exploitable risks, automate security posture, and remediate vulnerabilities without breaking apps.

  • Apr 10, 2026

The CISO’s AI Agent Production Approval Checklist: 7 Gates to Clear Before Go-Live

Your engineering lead is in your office Thursday morning. They want to push an AI...

Shauli Rozen

CEO & Co-founder
  • Apr 10, 2026

AI Workload Baseline and Drift Detection: Defining “Normal” Agent Behavior

Security teams deploying AI agents into Kubernetes know they need behavioral baselines. The concept is...

Ben Hirschberg

CTO & Co-founder
  • Apr 10, 2026

CVE-2026-0968: The libssh Heap Read That Isn’t as Scary as Scanners Say

A missing null check in libssh’s SFTP directory listing code lets a malicious server crash...

Ben Hirschberg

CTO & Co-founder
  • Apr 1, 2026

Detecting Rogue AI Agents: Tool Misuse and API Abuse at Runtime

When your CNAPP flags a suspicious dependency in an AI agent container, your WAF logs...

Yossi Ben Naim

VP of Product Management
  • Apr 1, 2026

How to Sandbox AI Agents on EKS: Where Each AWS Control Stops and What Fills the Gap

EKS gives you more sandboxing primitives for AI agent workloads than any other managed Kubernetes...

Ben Hirschberg

CTO & Co-founder
  • Apr 1, 2026

What is an AI-BOM? Why Static Manifests Fall Short

Your AI-BOM shows every model, tool, and data source you deployed. But when your SOC...

Shauli Rozen

CEO & Co-founder
  • Apr 1, 2026

How to Detect Prompt Injection in Production AI Agent Workloads

Your SOC gets an alert that an AI agent made an unusual API call. Your...

Shauli Rozen

CEO & Co-founder
  • Apr 1, 2026

AI Agent Security Framework for Multi-Cloud Kubernetes Environments

Your security team has done the work. On EKS, you’ve deployed GuardDuty with SageMaker coverage,...

Ben Hirschberg

CTO & Co-founder
  • Mar 31, 2026

Securing AI Agents on GKE: Where gVisor, Workload Identity, and VPC Service Controls Stop Working

You enable GKE Sandbox on a dedicated node pool, bind Workload Identity Federation to your...

Shauli Rozen

CEO & Co-founder
  • Mar 31, 2026

Observe-to-Enforce: How Progressive Security Policies Reduce Blast Radius

Last Tuesday, your security architect opened a pull request to add network policies to the...

Shauli Rozen

CEO & Co-founder
  • Mar 31, 2026

eBPF for AI Agent Enforcement: What Kernel-Level Security Catches (and What It Misses)

Your team deployed Tetragon six months ago. TracingPolicies are humming along—you’re catching unauthorized binary executions,...

Yossi Ben Naim

VP of Product Management
  • Mar 30, 2026

AI Agent Security Framework on AWS EKS: Implementation Guide

You’ve enabled GuardDuty EKS Runtime Monitoring across your clusters. You’ve configured IRSA for your Bedrock-calling...

Yossi Ben Naim

VP of Product Management
slack_logos Continue to Slack

Get the information you need directly from our experts!

new-messageContinue as a guest