Deloitte has introduced an AI-powered secure software platform built on Anthropic’s Claude models to automate remediation of open-source vulnerabilities, helping enterprises accelerate patching and strengthen software supply-chain security.
Deloitte has launched an AI-powered secure software platform designed to automate vulnerability remediation across enterprise software supply chains, with a strong focus on securing open-source software dependencies. Built on Anthropic’s Claude models, the platform helps organisations address the growing challenge of remediating vulnerabilities before they spread across interconnected software ecosystems.
The platform supports remediation across custom-built applications, commercial software and open-source components. It aims to close the gap between vulnerability detection and remediation, a process Deloitte says remains fragmented, manual and costly despite advances in vulnerability discovery.
The platform handles both known and previously unseen vulnerabilities through a structured workflow that includes fix sourcing or creation, AI-assisted patch generation where no fix exists, patch testing, validation, certification and deployment.
Combining Deloitte’s proprietary remediation harness, engineering capabilities, managed services and Claude AI models, the platform integrates with existing enterprise security tools to continuously scan for vulnerabilities, prioritise risks, coordinate remediation workflows and generate new patches when required. Deloitte says this enables organisations to move from detection to action more quickly while maintaining operational stability and developer productivity.
“Securing the modern software supply chain is not a one-size-fits-all challenge; it requires a distinct approach for every unique layer of risk. Deloitte’s platform for secure software, powered by Claude, aims to help bridge the critical gap between vulnerability discovery and safe, rapid remediation across custom, commercial and open-source code. We are helping our clients establish a foundation of software trust that enables them to protect their entire digital ecosystem.”















































































