Research from ArmorCode and the Purple Book Community highlights a growing gap between AI adoption and enterprise security governance. While most organizations report visibility into their AI usage, a majority still face risks from shadow AI and unsanctioned deployments operating outside established controls.
The findings also link AI-assisted development to increased production risk, with many organizations reporting vulnerabilities introduced by AI-generated code and rising software velocity that outpaces security review processes. The report underscores the challenge of translating visibility into effective governance as enterprises scale AI across increasingly complex environments.