Belgian cybersecurity unicorn Aikido Security acquired Israeli startup Root, developer of an AI platform that generates verified patches for open-source components, and announced a new Tel Aviv development center that will absorb Root's team. The deal, estimated at $70–$100 million, continues Aikido's expansion of AI-driven software supply chain security following its acquisitions of code review and autonomous penetration testing companies.
Root, formerly Slim.AI, developed the Slim Toolkit and focuses on generating patches for the exact software versions organizations already use, eliminating the need for disruptive upgrades or platform migrations. Root's approximately 25-person team and technology will join Aikido's global platform to strengthen automated patch generation and remediation capabilities.
For engineering teams, the combined offering aims to reduce complex version upgrades and lengthy migration projects by delivering ready-to-apply fixes, reflecting the growing demand for AI-powered software supply chain security.
Image Credit: Aikido Security
What's Driving This Trend
- AI-generated Patching
- Verified fixes created for specific software versions signal new potential for reducing remediation backlogs without forcing broad upgrade cycles.
- Autonomous Supply Chain Security
- AI-driven platforms that combine code review, penetration testing, and patch generation reflect a shift toward continuous software risk reduction.
- Version-specific Remediation
- Targeted patches for existing open-source components create room for lower-friction security workflows across complex engineering environments.
Who This Affects Most
- Cybersecurity
- Consolidation around AI remediation platforms points to new value in automated vulnerability management and software supply chain defense.
- Software Development
- Engineering organizations benefit from emerging tools that shorten patch timelines while preserving existing architectures and dependencies.
- Open-source Infrastructure
- Growing reliance on automated fixes highlights commercial opportunities around maintaining vulnerable components used across enterprise systems.
