Report

Gartner® Hype Cycle for Application Security, 2025

AppSec in 2025 needs to keep up with code, cloud and AI.

Get the Gartner® report
Background Image

In the 2025 Hype Cycle for Application Security, Gartner highlights a wave of emerging innovations.

We see the need for change because traditional tools can’t address the speed of software security challenges, powered by AI.

From evolving application architectures to rising threats from AI and software supply chains, security teams are under pressure to detect, respond and fix vulnerabilities faster than ever.

Our top insights from the 2025 Gartner® Hype Cycle™ and why runtime security is gaining momentum in modern AppSec:
  • Gartner formally introduces AI Runtime Defense, recognizing the critical need for real-time visibility and protection of applications, in our view.
  • By 2026, at least 40% of organizations will default to their application security testing vendors for AI-based autoremediation of vulnerable code.
  • Organizations need fewer silos and more unified runtime-aware platforms that connect Dev, AppSec and SecOps.
  • By 2027, at least 30% of application security exposures will result from usage of vibe coding practices.
Contrast is built for this new era.

Our Application Detection and Response (ADR) platform gives Dev, Sec and Ops teams the real-time visibility they need, directly from running applications and APIs. Security has to happen at runtime, because that’s where the risk is real.

See where application security is headed - and how to stay ahead. Get your copy now.

Gartner, Hype Cycle for Application Security, 2025, By Dionisio Zumerle, 22 July 2025

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, HYPE CYCLE is a registered trademark of Gartner, Inc. and/or its affiliates and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s Research & Advisory organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.