Kerem Proulx and Kyle Bhiro

The rapid adoption of generative AI in software development has created a paradox: while code can be produced at unprecedented speed, the attack surface expands just as quickly. Traditional penetration testing, which typically occurs after a product ships, leaves a dangerous gap where threats can exploit unpatched flaws. Continuous, AI‑powered testing promises to close that gap by automating vulnerability discovery in real time, allowing developers to remediate issues before they ever reach production. This shift aligns with broader industry moves toward "shift‑left" security and reflects growing investor confidence in AI‑enabled cyber solutions.

Pensar’s approach differentiates itself by embedding AI agents directly into the developer workflow, effectively turning every pull request into a security audit. The Apex agent, open‑sourced by the founders, runs from the command line and feeds findings back to both the code‑generating AI and human security teams. By coupling machine speed with certified pentester oversight, Pensar delivers the scalability of large‑language models without sacrificing the trustworthiness that regulated enterprises demand. Recent benchmarks showing Apex surpassing established open‑source tools underscore the practical advantage of this hybrid model.

The seed funding round, led by Basis Set Ventures, provides the capital needed to scale the platform and deepen its enterprise integrations. Early traction—such as the broker‑dealer client that uncovered three critical vulnerabilities missed by existing solutions—demonstrates market appetite for continuous, AI‑driven security. As more organizations adopt AI‑generated code, tools like Pensar could become a de‑facto requirement, reshaping compliance standards and prompting a broader industry move toward self‑securing software ecosystems. The company’s trajectory suggests that autonomous offensive security may soon transition from niche offering to core infrastructure for modern development teams.