AndGo Inc. (Headquarters: Taito-ku, Tokyo; Representative Director: Toshiei Hara) announces that it has fully established a system to support the introduction and operation of the widely used overseas security service "Aikido Security" (pronounced: Aikido Security) within Japan.

For companies developing applications and web services, detecting and fixing vulnerabilities lurking from source code to the cloud and dependent packages is an unavoidable challenge. On the other hand, the tools required for countermeasures are divided by domain, such as SAST, SCA, and CSPM, and operating them requires personnel with specialized security knowledge. Many development organizations are unable to secure such personnel, leading to delayed countermeasures.

Aikido Security is an all-in-one security service that integrates these multiple domains into a single platform, providing consistent support from vulnerability detection to remediation. Originating in Belgium, it is already used by over 50,000 companies and more than 100,000 developers worldwide. AndGo will now offer all functions of this service for Japan, along with Japanese-language introduction support and ongoing assistance, as well as consultation on contracts and payments that are convenient for Japanese companies. Furthermore, Aikido Security itself supports Japanese in its management interface and documentation. This allows development teams, even those with limited dedicated security personnel, to easily implement world-class security measures.

Global Adoption of Aikido Security

Three Key Points of This Release

This popular security service, adopted by 50,000 companies worldwide, is now fully available in Japan. AndGo will provide domestic introduction support for Aikido Security, which integrates all functions that would normally require separate tools, including standard features like Static Application Security Testing (SAST), Software Composition Analysis (SCA), and Cloud Security Posture Management (CSPM), as well as Aikido's unique strengths such as AI Penetration Testing and Device Protection.

AndGo provides Japanese-language ongoing support for "the real work starts after introduction." Aikido Security's management interface and documentation are available in Japanese. In addition to this, AndGo offers Japanese-language support from initial setup to operational adoption, and consults on contracts and payments that are convenient for Japanese companies, removing concerns about language and contracts often associated with overseas services.

Can be started even without dedicated security personnel. Since there is no need to use multiple tools separately and countermeasures can be implemented comprehensively with a single service, even organizations with limited personnel and budget can build a robust defense system.

Background: Attacks Targeting the Software Supply Chain Are Changing the Development Landscape

In recent years, attackers' targets have expanded beyond applications themselves to include open-source software (OSS) packages used in development. Software supply chain attacks, which involve injecting malware into widely used packages, can cause chain reactions of damage to countless companies dependent on that package once successful. Indeed, in 2025, tampering and hijacking targeting package registries like "npm" and Web3-related packages have been successively confirmed, and these threats have progressed by slipping through existing monitoring gaps.

Meanwhile, many development organizations in Japan face the structural challenge of a shortage of security personnel. Vulnerability scanning tools exist for each target domain, and using different tools for code and cloud results in a flood of alerts from each tool. Many of these are false positives, burying truly critical vulnerabilities in noise – the so-called "alert triage hell" is the reality faced by development teams. As attacks become more sophisticated, defenders struggle to keep up. What is needed now is a system that allows for correct focus on threats that need addressing, without needing to hire new specialists.

Announcements This Time

AndGo has strengthened its domestic provision and introduction support system for Aikido Security as follows:

Full domestic provision: Aikido Security, which integrates functions that would normally require separate tools, such as Static Code Analysis (SAST), Software Composition Analysis (SCA/SBOM), Cloud Security Posture Management (CSPM), Container Scanning, AI Penetration Testing, and Device Protection, will be provided for the domestic market. Aikido Security's management interface and documentation support Japanese, creating an environment that is easy for the entire team to operate.

Japanese-language introduction support and ongoing assistance: AndGo will provide Japanese-language support from initial setup to operational adoption.

Consultation on contracts and payments tailored to Japanese companies: AndGo will consult on contract types and payment methods that are convenient for domestic companies, lowering the hurdles for introducing overseas services.

What is Aikido Security: A Security Service That Protects Everything from Development to the Cloud and Running Applications with "One" Solution

Aikido Security is an all-in-one security service that integrates security functions, previously divided among multiple specialized tools, into a single platform. It covers everything from the code writing stage to cloud environment operation and application runtime, consistently supporting not only vulnerability detection but also remediation. It has been adopted by over 50,000 organizations and used by over 100,000 developers worldwide, establishing itself as a standard choice in the industry.

Aikido Security Management Interface

Key Functions Integrated into a Single Platform

Aikido Security consolidates security functions that are typically fragmented by domain into a single interface.

Code Analysis (Code): Static Code Analysis (SAST), OSS vulnerability and license checks via Software Composition Analysis (SCA), detection of secrets such as API keys and credentials, detection of malware embedded in dependent packages, detection of misconfigurations in Infrastructure as Code (IaC), detection of End-of-Life (EOL) software, etc.

Cloud Analysis (Cloud): Visualizes cloud environment risks through Cloud Security Posture Management (CSPM), Virtual Machine (VM) scanning, container image scanning, etc.

Attack Testing (Attack): AI agents perform autonomous penetration testing (AI Pentest) to replicate actual attack paths from an attacker's perspective and verify exploitable vulnerabilities. Penetration tests that traditionally took weeks can be performed in a short time and, in combination with Dynamic Application Security Testing (DAST), continuously scan running web applications and attack surfaces.

Protection During Operation (Protect): Device Protection blocks malware embedded in packages like npm and PyPI upon introduction, and detects/blocks malicious IDE extensions and browser extensions. This complements, rather than replaces, EDR by preventing threats before they are executed. It also includes an in-app firewall (Zen) that blocks injection attacks and zero-day attacks at runtime.

Design That Prevents "Alert Fatigue"

Many security tools generate a large number of alerts, causing teams to lose sight of the issues that truly need addressing. Aikido Security reduces alert noise by up to 95% through deduplication of related alerts, auto-triage that prioritizes issues with lower actual impact based on the context of the usage environment, and custom rules that can reflect team-specific circumstances. This allows users to focus on vulnerabilities that truly require action, without being overwhelmed by false positives. Furthermore, it includes mechanisms to shorten the lead time from detection to remediation, such as AutoFix for automatically generating pull requests for fixes and batch fixes for resolving multiple related alerts.

Global Threat Intelligence and Reliable Mechanisms for Safe Use

Aikido Security combines global threat intelligence with AI-driven automated analysis to quickly capture emerging threats, including software supply chain attacks. Scans primarily use read-only access to repositories and do not rewrite code. It generates isolated execution environments for each scan, which are automatically deleted after analysis. Furthermore, it has undergone third-party audits in accordance with SOC 2 Type II and ISO 27001:2022 requirements, ensuring peace of mind in terms of both data protection and compliance.

Value Provided by AndGo: Making World-Class Services "Usable" in the Japanese Context

AndGo delivers Aikido Security, a world-class service, in a form that can be fully utilized by Japanese development teams. Building on Aikido's Japanese management interface and documentation, AndGo provides Japanese-language support from initial setup to operational adoption, ensuring the entire team can operate from day one. Furthermore, by consulting on contract types and payment methods convenient for Japanese companies, it lowers internal approval and contracting hurdles. Additionally, it supports consultations on tool selection and operational design that fit the company's environment with a view to shifting left, maximizing the value of Aikido Security.

Target Companies and Use Cases

Development organizations with no or few dedicated security personnel: Want to start comprehensive countermeasures while reducing the operational burden of multiple tools.

Service development companies that heavily use OSS: Want to continuously manage the risks of software supply chain attacks and vulnerabilities in dependent packages.

Companies pursuing cloud-native development: Want to manage vulnerabilities across source code, cloud configurations, and containers.

Information systems and security departments concerned about adopting overseas services: Want to introduce services with peace of mind through Japanese support and AndGo's introduction assistance and contract consultation.

[Inquiries and Details]

Information on Aikido Security's functions and implementation examples can be found on the product introduction page.

▶ Aikido Security Product Introduction Page: https://andgo.co.jp/aikido-security

For consultations on utilization in your own environment or implementation, we also accept applications for individual consultations and demos. Please feel free to contact us.

Future Developments

AndGo will continue to enhance its domestic provision of Aikido Security and provide information and support to address the risks of evolving development environments, such as component management and vulnerability countermeasures using SBOM, and protection of developer environments. We will continue to support Japanese development organizations in achieving world-class security without being constrained by human resources or cost limitations.

About Aikido Security

Aikido Security BV Location: Ghent, Belgium Representative: Willem Delbare Established: 2022 Official Website: https://www.aikido.dev/

Aikido Security BV

Aikido Security is an all-in-one security service that integrates static code analysis (SAST), software composition analysis (SCA/SBOM), cloud security posture management (CSPM), container scanning, dynamic application security testing (DAST), as well as AI agent-based autonomous penetration testing (AI Pentest) and device protection into a single platform. It leverages global threat intelligence and AI-driven automated analysis to enable early detection of emerging threats, including software supply chain attacks. A key feature is its ability to reduce alert noise by up to 95% through auto-triage, allowing users to focus on vulnerabilities that truly need addressing. It is adopted by over 50,000 organizations and used by over 100,000 developers worldwide.

About AndGo Inc.

Company Name: AndGo Inc.

Location: 3-14-2 Ueno, Taito-ku, Tokyo

Representative: Representative Director Toshiei Hara

Corporate Site: https://andgo.co.jp/

AndGo Inc.

As an authorized reseller of Aikido Security, AndGo Inc. provides security services and introduction support to domestic companies. By delivering world-class services in a usable form for Japanese development sites, we are working to raise the overall level of security measures in Japan.

[Contact for Inquiries]

AndGo Inc. Inquiries: https://andgo.co.jp/contact/general

*We accept inquiries from members of the press and consultations from companies considering adoption.

FACT BOX

  • Source: PR TIMES
  • Category: サービス提供
  • Organizations: Aikido Security / Aikido Security BV