Seal Security, a startup based in Tel Aviv, emerges from stealth mode today, unveiling a $7.4 million seed funding round led by Vertex Ventures Israel. Other notable participants in the funding round include Crew Capital, PayPal Alumni Fund, and Cyber Club London. Founded by former members of Israel’s Unit 8200 intelligence unit, Seal Security aims to simplify open source vulnerability remediation.

Addressing Critical Vulnerabilities

In the wake of the Log4j vulnerability discovery and the issuance of the White House’s software supply chain executive order, software developers worldwide have heightened awareness of the importance of keeping open source libraries up to date. However, effectively managing these libraries poses significant challenges, with large enterprises often dedicating entire teams to this task. While numerous security companies specialize in alerting developers about vulnerable packages, the true challenge lies in remediation, typically involving the installation of updates.

Founding Team and Vision

Seal Security was founded by Itamar Sher (CEO), Lev Pachmanov (CTO), and Alon Navon (CPO), leveraging their expertise gained from previous roles at companies like Cymmetria, Curv, and PayPal. Sher emphasizes the team’s desire to transition from security research to building solutions. With firsthand experience at PayPal, Sher recognized the need for tools that not only identify vulnerabilities but also automate the remediation process.

Automating Remediation

What sets Seal apart is its approach to patching vulnerable packages rather than merely updating them. Sher observed that existing tools inundate developers with countless alerts, leading to difficulty in prioritizing tasks. Seal’s solution streamlines this process by automatically applying security patches to existing package versions used by developers. Leveraging integration with GitHub, Seal integrates seamlessly into a company’s CI/CD pipeline, enabling efficient vulnerability remediation.

Leveraging Advanced Technologies

Seal Security leverages advanced technologies, including large language models, to automate the patch creation process. These models excel at identifying the commit introducing a specific patch, enhancing scalability and efficiency. Daniel Dines, co-founder and general partner at Crew Capital, underscores the significance of Seal’s solution in addressing the challenges associated with managing libraries containing critical vulnerabilities.

Seal Security’s innovative approach to open source vulnerability remediation promises to revolutionize the way organizations manage software security, providing a streamlined solution to eliminate vulnerabilities effectively.