OpenAI Pushes AI Cyber Defence Directly Into DevSecOps Pipelines With Daybreak

OpenAI has launched Daybreak, an AI-powered cybersecurity platform designed to secure software repositories, automate vulnerability remediation, and embed continuous cyber defence directly into DevSecOps workflows.

OpenAI has unveiled Daybreak, an AI-powered cybersecurity platform aimed at continuously securing software repositories, development workflows, and DevSecOps pipelines through automated vulnerability detection, threat modelling, and AI-assisted remediation.

Positioned as OpenAI’s biggest move yet into autonomous cyber defence, Daybreak combines GPT-5.5 cyber-focused models with Codex Security, an agentic coding system capable of interacting directly with repositories, generating patches, testing fixes in isolated environments, and producing audit-ready remediation reports.

The platform is designed to shift cybersecurity “left” by embedding security directly into software development rather than reacting after deployment or compromise. According to OpenAI, Daybreak can analyse dependencies, simulate attack paths, prioritise vulnerabilities, and continuously patch weaknesses inside enterprise software workflows.

Kunal Pande, Partner and National Leader, Cyber, Risk and Compliance at KPMG, said: “Capabilities like these can transform cybersecurity by enabling a shift-left approach, where security is built into the coding and development stage itself.”

OpenAI said Daybreak builds on earlier GPT-5.4-Cyber work that helped fix more than 3,000 vulnerabilities. The company is working with Cloudflare, Cisco, CrowdStrike, Oracle, Fortinet, and Palo Alto Networks to integrate Daybreak into enterprise security operations.

The launch also signals intensifying competition in AI-driven cybersecurity, with frontier AI firms increasingly focusing on repository security, automated patch generation, and autonomous cyber defence rather than chatbot performance alone.