DryRun Security, an AI-native application security (AppSec) company, announced an $8.7 million seed funding round led by LiveOak Ventures and Work-Bench, with participation from Cannage Capital. The funding will accelerate the company’s mission to revolutionize AppSec with advanced AI-driven solutions tailored for both security and development teams.
Introducing Natural Language Code Policies (NLCP)
A highlight of DryRun’s announcement is the launch of its Natural Language Code Policies (NLCP), which simplifies security policy creation and maintenance. AppSec teams can now define security policies using intuitive, domain-specific language instead of traditional scripted rules. This breakthrough reduces the complexity of managing security policies, enabling broader coverage across diverse codebases regardless of language or framework.
Contextual Security Analysis (CSA): A New Standard for AppSec
DryRun is redefining AppSec with its proprietary Contextual Security Analysis (CSA) approach. CSA layers static, change, and application contexts to identify and mitigate security risks in near real-time. Unlike traditional code scanning tools that rely on pattern matching, CSA goes beyond literal syntax, assessing risk based on code behavior and context. This innovation seamlessly integrates with DevOps workflows, making it easier for developers to reason about security without slowing down development.
“DryRun Security is a true leap forward in application security,” said Creighton Hicks, Partner at LiveOak Ventures. “Its AI-powered solutions not only eliminate the need for complex pattern-matching rules but also provide a deeper understanding of code risk, fostering collaboration between development and security teams.”
GitHub Native and Developer-Friendly Tools
DryRun’s CSA capabilities allow AppSec professionals to perform GitHub-native security analyses in seconds, providing actionable insights that bridge the gap between development and security. By integrating directly into developers’ workflows, the NLCP feature empowers teams to identify and address risky code changes earlier in the development lifecycle. This proactive approach minimizes vulnerabilities, reduces technical debt, and ensures compliance without disrupting productivity.
The Growing Need for Modern AppSec Solutions
As organizations manage increasingly complex codebases, AppSec teams are struggling to keep up with traditional tools that lack support for modern technologies. Security backlogs are growing, and developers often bypass reviews due to unclear or outdated processes. DryRun’s AI-native platform addresses these challenges by reducing the burden on developers and enabling real-time security policy enforcement.
Positioned for Growth
With its seed funding, DryRun plans to expand its platform and deliver innovative solutions that prioritize both security and developer efficiency. The company’s AI-driven approach and cutting-edge features like NLCP set a new standard for AppSec, ensuring that organizations can build and deploy secure applications at scale.
DryRun Security’s tools are poised to transform how teams approach application security, offering a scalable and intuitive solution to one of the most pressing challenges in modern software development.
