Welcome to this week’s DevTools Newsletter where security takes center stage, with our top tools tackling noisy open-source alerts, AI vulnerabilities, and supply chain risks that hit 91% of firms. Precision is just as crucial, with solutions slicing through 93% false positives to deliver sharp, reliable fixes. Tools that have received funding, made launches and are in the midst of acquisitions are all about combatting these the threats proactively.
Curious about this week’s standouts? Read on!
If you would like to be featured in next week’s edition, please contact us (it’s completely free).
🏆 Funding Wins
Endor Labs Fortifies AppSec with $93M
Founded to address outdated application security testing, Endor Labs secures AI-generated and open-source code for modern development. They raised $93M in a Series B, led by DFJ Growth with Salesforce Ventures, Lightspeed Venture Partners, Coatue, Citi Ventures, S32, and Dell Technologies Capital. Co-founders Varun Badhwar and Dimitri Stiliadis achieved 30x ARR growth, protecting 5M+ apps for clients like OpenAI. Congrats to the team for this milestone, strengthening secure coding worldwide.
Read more at the Endor Labs blog
Supabase Banner (Source: LinkedIn)
Supabase Elevates Backend Simplicity with $200M
Supabase, a powerhouse in open-source databases, streamlines complex backend tasks for a global dev community, boasting 2M+ developers and 3.5M databases. Their $200M Series D, led by Accel, hit a $2B valuation, fueled by organic buzz from their passionate user base. Co-founders Paul Copplestone and Ant Wilson guide a team that thrives on community trust, empowering “vibe-coders” with scalable, PostgreSQL-based tools since 2019. With plans to deepen AI and real-time features, Supabase’s star keeps rising. Kudos to the crew for this milestone!
Check out the announcement here
Reducto Powers Data Parsing with $24.5M
Reducto, launched in 2023 to tackle messy data, transforms complex documents into LLM-ready inputs for enterprise AI. Last week they announced a raise of $24.5M in a Series A, led by Benchmark with First Round Capital, BoxGroup, and Y Combinator, totaling $33M. Their team, led by co-founders Adit Abraham and Raunak Chowdhuri, powers ingestion for 250M+ pages, serving giants like Scale AI and Vanta. Brillaint work Reducto!
Learn more at the Reducto Blog
+ Hopper Raises $7.6M Seed Round. We cover all this below in our DevTools of the Week section!
🚀 3, 2, 1… Launches
c/ua Ignites Secure AI Containers
Cua (YC X25) tackles the dangers of AI agents accessing host systems, where compromised processes or LLM hallucinations could leak data or seize device control. Their open-source framework runs lightweight containers for Computer-Use AI Agents, achieving 97% CPU speed on Apple Silicon with Apple’s Virtualization.Framework and CUI, supporting LLMs like Anthropic and AutoGen. Co-founders Francesco Bonacci and Alessandro Puppo’s stack enables secure app navigation, like Tableau, in sandboxed VMs. Congrats to the team for this launch!
Visit their site at trycua.com or their github page to explore c/ua’s capabilities.
Lineaje Banner (Source: lineaje.com)
Lineaje Bolsters Software Security
Lineaje Inc, a leader in supply chain security, counters the 95% of app vulnerabilities from open-source dependencies and 91% of firms hit by attacks, relieving overwhelmed DevSecOps teams. Last week, the team unveiled agentic AI for self-healing code, 3M+ Gold Open Source packages with 408B data points, and SCA360’s safe scanners for risks like abandoned packages. Led by co-founders Javed Hasan and Anand Revashetti, Lineaje’s crew boosts dev innovation. Great work, Lineaje!
Read the blog at the Lineaje website
Agent Simulate Boosts AI Testing Precision
Autoblocks AI, dedicated to robust AI solutions, launched Agent Simulate to test LLM agents in a sandbox, addressing slow, costly manual testing that misses edge cases and harms user experience. The platform simulates thousands of interactions in minutes, crafts personas like elderly users, and delivers analytics for reproducible runs. CEO Haroon Choudery announced:
“We built Agent Simulate because teams relying on AI-powered products struggle to accurately predict how their applications will perform under real-world conditions—especially when handling unpredictable user behaviors and edge cases.”
We love this launch! Discover Agent Simulate’s features at autoblocks.ai
🔦 DevTools of the Week
Hopper Banner (Source: LinkedIn)
Hopper Illuminates Secure Open-Source Coding
We’re thrilled to shine a spotlight on Hopper Security, a devtool that’s won our admiration this week for embodying open-source risk management as it should be!
Founded in 2023 by Roy Gottlieb and Oron Gutman, inspired by Grace Hopper’s problem-solving ethos, this Tel Aviv-NY team tackles the chaos of SCA tools, where 93% false positives clog dev workflows in a $9T open-source ecosystem.
Emerging from stealth on the 22nd April, with a $7.6M Seed led by Meron Capital, Hopper’s function-level reachability analysis—deployed in 5 minutes without agents—pinpoints exploitable code, supporting Spring and boosting U.S. tech giants’ productivity by 8%.
Named a top 10 finalist in the 2025 CrowdStrike, AWS, NVIDIA Cybersecurity Accelerator, Hopper pitched at RSA 2025’s Startup Nest last week, cementing their dev-first vision.
“We didn’t start Hopper because the world needed another SCA tool…We started it because existing solutions overwhelm teams and slow down development. Hopper is built to cut through the clutter, surface real risks, and make open-source security fast, accurate, and developer-friendly,” Gottlieb
Congrats, Hopper crew, on a stellar debut! These guys are definitely worth a watch.
Find out more here.
🗞️ Acquisitions
Coana Fuels Socket’s Dev-First Security
Hats off to the Coana (acquired by Socket) team for joining Socket to enhance software supply chain tools! Born in 2022 from Aarhus University’s research, co-founders Anders Søndergaard, Anders Møller, Benjamin Barslev Nielsen, and Martin Torp crafted a reachability engine cutting 80% of false positives in vulnerability scans. With acquisition announced last week, Coana’s tech now powers Socket’s real-time attack prevention, reducing alert fatigue for devs. This merger sharpens SCA precision.
Read the details of this acquisition here
Metaplane Elevates Datadog’s Data Vision
Kudos to the Metaplane by Datadog team for uniting with Datadog to transform data observability! Launched in 2019 by co-founders Kevin Hu, PhD, Peter Casinelli, and Guru Mahendran, Metaplane tackled broken dashboards and siloed data issues. Announced last week, their acquisition enables Datadog’s 30,000+ customers to trace data quality across software stacks, vital for AI apps. Hu said:
Our mission remains the same: help every company trust their data. Only now, we get to do it at Datadog scale.
Check out the announcement at the Metaplane blog
We love getting your news! To be included in next week’s edition (for FREE), just send a note to one of the team below and we will be sure to add it in!
Drop a line to one of us below.
Looking for your next DevTools role? Visit devtoolsjobs.com.
Louise Ogilvy (Recruitment Director) – UK/USA
Becca Combe MIRP CertRP (Lead Recruiter) – USA
Ben Chipchase (Lead Recruiter) – UK
Natalie Harper (Administrator)
