Snyk introduces Secure At Inception for AI coding security
New MCP-Focused Tools Enable True Agentic Security at the Point of Code Creation
BOSTON - Snyk announced the availability of Secure At Inception, a suite comprising three new tools focused on Model Context Protocol (MCP) technology.
The innovations, anchored in MCP as a framework for Artificial Intelligence (AI) agents, aim to enhance security at the initial prompt for AI coding assistants. The tools feature real-time security scanning directly at code generation and execution, improved visibility into Generative AI (GenAI) and MCP components, and an experimental scanner for identifying AI-specific vulnerabilities.
Secure At Inception addresses the shift in software development towards 'vibe coding', where developers interact with AI agents through high-level prompts, requiring advanced security measures to manage increased risks. Peter McKay, CEO of Snyk, emphasized, “If anyone or any enterprise is vibe coding, we believe Secure At Inception is mandatory.” He noted it enhances how security is embedded at the initial stage of coding.
Additionally, Snyk’s MCP Server, in early access, enables AI agents to safely invoke Snyk’s scanning engines, facilitating security evaluations without disrupting developers’ workflows. This integration underscores Snyk's commitment to embedding security in AI-native development processes.
Analyst Janet Worthington from Forrester Research highlighted the critical nature of application security as the software development lifecycle evolves. Snyk is expanding its AI Bill of Materials (AIBOM) (AI-BOM) to provide visibility into MCP components, allowing organizations to define policies and manage risks in dynamic development environments.
With the recent acquisition of Invariant Labs, Snyk has enhanced its capabilities in threat detection specific to agentic software development. The Toxic Flow Analysis (TFA) framework identifies complex vulnerabilities unique to MCP systems, potentially mitigating risks before exploitation. This acquisition strengthens Snyk's position in addressing future AI threats.