Endor Labs, a recognized leader in AI-native application security, has announced its acquisition of Autonomous Plane, a cloud-native security company founded by Kyle Quest, the creator of DockerSlim. With this strategic move, Endor Labs significantly expands its platform capabilities by introducing full-stack reachability across both applications and container images. As a result, organizations can now prioritize vulnerabilities more effectively and secure today’s rapidly evolving AI-generated software environments.
AI coding agents are transforming software development at an unprecedented pace. Increasingly, these systems generate complete software artifacts, including source code, open-source dependencies, and container images. However, this evolution also introduces new security blind spots. Traditional point-in-time scanning tools often fail because they cannot fully capture the interconnected structure of modern AI-driven applications.
AI Authority Trend: Harness Strengthens Its Application Security Business with Acquisition of Qwiet AI
To address this growing challenge, Endor Labs is leveraging technology developed by Kyle Quest, who joins the company through the acquisition. Full-stack reachability enhances security by combining source code analysis with both static and dynamic container analysis. This approach allows organizations to model applications end-to-end, tracing vulnerability impact across application code, language runtimes, and operating system components.
Moreover, by integrating static dependency graph analysis with automatic runtime profiling, Endor Labs can determine which vulnerabilities are genuinely exploitable. This process filters out up to 90% of false positives that traditional scanners typically generate. Unlike competitors that focus only on reachability within application code, Endor Labs delivers what it calls the industry’s first true full-stack reachability solution, analyzing both software composition analysis (SCA) findings and container image vulnerabilities together.
“Container scanning has been stuck in inventory mode, telling teams what’s installed rather than what matters,” said Varun Badhwar, CEO and co-founder of Endor Labs. “Security tools have to evolve beyond scanning components in isolation. With this acquisition and the launch of full-stack reachability, we’re delivering evidence-based visibility across the entire stack so teams can focus on real risk, reduce operational noise, and make compliance achievable.”
AI Authority Trend: F5 Launches NGINXaaS for Google Cloud to Transform Application Delivery and Security
This evidence-based approach is particularly critical for regulated industries. Compliance standards such as FedRAMP impose strict remediation timelines for vulnerabilities. However, container bloat often means base images include hundreds of libraries that applications never actually use. Without reachability insights, security teams waste valuable engineering time patching irrelevant vulnerabilities or risk missing critical issues hidden in overwhelming noise.
“Traditional container scanners report every CVE in an image, forcing teams to sift through hundreds of findings manually,” said Quest. “Full-stack reachability uses information from the application layer to understand which container image packages are loaded, identifying which packages and vulnerabilities are reachable in running applications. For regulated industries, this evidence-based approach ensures teams can focus on real risk without getting lost in noise.”
With this acquisition, Endor Labs positions itself at the forefront of AI-native application security, offering organizations a smarter and more actionable way to manage vulnerabilities in the age of AI-driven software development.
AI Authority Trend: Palo Alto Networks Completes Chronosphere Acquisition to Enhance AI Security and Observability
To share your insights, please write to us at info@intentamplify.com