The Role of Automation Evolving in DevSecOps Practice in 2025

By Girija Kolagada, VP of Engineering, Progress

DevSecOps has become a vital strategy in application development practice, as it integrates security into agile DevOps workflows. This proactive approach towards security helps to tackle threats during development instead of post-deployment retrogressive reactions.

In 2025, AI and automation look poised to transform DevSecOps, substantially rewiring and further enhancing security. Automation will not only handle repetitive tasks, but also help to proactively detect threats, and provide real-time insights, allowing IT teams to quickly identify and address vulnerabilities throughout the entire software development lifecycle. This shift will facilitate faster delivery of secure software with minimal human intervention.

Let us look at some of how these developments will play out.

The promise of AI and Automation

Continuous Compliance Automation:

Firstly, DevSecOps will incorporate compliance as code, automating policy checks within CI/CD pipelines. The possibility of real-time alerts for violations will enable ...