Toronto, Canada, July sixth, 2026, CyberNewswire
Most software program composition evaluation instruments learn what builders declare. Insignary Readability’s patented binary-first platform analyzes what is definitely constructed, shipped, and deployed — together with the open-source elements that by no means seem in any manifest.
Insignary, Inc., whose patented binary fingerprint know-how has been cited in 4 Gartner analysis stories, right now introduced its recognition as a Pattern Vendor for Reachability Evaluation within the Gartner Hype Cycle for Safe Software program Engineering, 2026.
In response to Gartner: “Open-source and third-party elements could include an extended checklist of vulnerabilities, however not all of them straight impression your code base. Reachability evaluation helps in triaging the vulnerabilities based mostly on their exploitability.”*1
The urgency is evident throughout impartial trade analysis. A 2024 Venafi survey of 800 safety decision-makers throughout the U.S., U.Ok., Germany, and France discovered that 92% are involved about AI-generated code, and 63% have thought of banning it outright over safety danger.*2 The U.S. Nationwide Vulnerability Database recorded greater than 48,000 CVEs in 2025 — roughly 130 daily.
AI coding assistants are accelerating the expansion of unmanaged open-source dependencies. As organizations undertake these instruments at scale, they face a widening problem: understanding which open-source elements enter manufacturing software program, whether or not these elements will be trusted, and the way the ensuing safety and compliance dangers are managed.
The issue is structural. Most SCA instruments learn what builders declare — not what really runs. AI-generated code, vendor libraries, and third-party binaries incessantly bypass package deal managers and by no means seem in a manifest.
“SBOMs are more and more changing into a regulatory requirement around the globe. Nevertheless, software program transparency is barely as dependable because the accuracy of an SBOM itself. You can not confirm an SBOM by studying the manifest that created it. You confirm an SBOM by inspecting the software program that was really constructed, shipped, and deployed. As software program supply-chain laws more and more rely on SBOMs, the flexibility to validate software program on the binary degree turns into important for organizations working in regulated industries, vital infrastructure, and AI-enabled software program environments.” — Taek Wan Kim, President & CEO, Insignary
INSIGNARY CLARITY: BINARY-FIRST. AI-AWARE.
Insignary Readability scans each supply and binary to construct an entire Software program Invoice of Supplies (SBOM) for the functions groups construct, the third-party elements they incorporate, and the IT infrastructure that bypasses the standard safe improvement lifecycle.
Key capabilities embrace:
- Binary SCA — identifies open-source elements, vulnerabilities, and license obligations straight from compiled binaries, with out requiring supply code or package deal manifests
- AIBOM Technology — produces an AI Invoice of Supplies for software program containing AI-generated or AI-assisted code, protecting elements that bypass conventional dependency declarations
- Reachability Evaluation — determines which disclosed vulnerabilities really attain executable code paths, enabling risk-based prioritization quite than uncooked CVE-count triage
- Steady Vulnerability Alerting — displays saved SBOMs towards up to date vulnerability databases and delivers automated alerts when newly disclosed CVEs match deployed elements, with out requiring a rescan
“An SBOM is foundational to managing the complexity and securability of recent software program deployments.”*3
RECOGNITION IN FOUR GARTNER REPORTS
Insignary has been cited in 4 Gartner analysis stories*, Gartner Hype Cycle for Safe Software program Engineering,2026, Gartner Hype Cycle for Utility Safety,2025, Gartner Scale Utility Safety With AI-Augmented Vulnerability Remediation,2025, and Gartner 3 Steps for Assessing an Open-Supply Software program Undertaking, 2025.
SUPPORTING GLOBAL SOFTWARE SUPPLY CHAIN REQUIREMENTS
Insignary Readability helps organisations assembly software program supply-chain safety necessities throughout North America and globally:
- U.S. Govt Order 14028 and OMB Memorandum M-26-05 — federal businesses could now independently confirm vendor SBOMs quite than accepting a typical attestation type, elevating the bar for all software program offered into the U.S. authorities
- FDA Part 524B — each linked medical system premarket submission should embrace a binary-verified SBOM protecting all compiled software program elements
- Canada’s Invoice C-8 Essential Cyber Methods Safety Act (CCSPA), efficient June 2026 — necessary provide chain danger administration for banking, telecommunications, power, and transportation operators
Extra frameworks: CISA and NSA SBOM steering, NIST SSDF, Australia’s Info Safety Handbook (ISM), U.S. Related Automobile Rule, EU Cyber Resilience Act.
TRUSTED BY GOVERNMENTS AND GLOBAL ENTERPRISES
Globally, BearingPoint — certainly one of Europe’s main administration and know-how consulting companies and a strategic investor in Insignary — serves as the corporate’s unique distributor throughout Europe. Cybertrust Japan, one other strategic investor, and its reselling associate TechMatrix drive adoption throughout Japanese manufacturing underneath a joint SBOM initiative.
Prospects embrace authorities organizations and international leaders throughout the electronics, protection, monetary providers, automotive, manufacturing, medical, and different know-how sectors.
GARTNER and Hype Cycle are emblems of Gartner, Inc. and/or its associates. Gartner doesn’t endorse any vendor, services or products depicted in its analysis publications, and doesn’t advise know-how customers to pick solely these distributors with the very best rankings or different designation.
Gartner analysis publications include the opinions of Gartner’s analysis group and shouldn’t be construed as statements of reality. Gartner disclaims all warranties, expressed or implied, with respect to this analysis, together with any warranties of merchantability or health for a specific function.
ABOUT INSIGNARY
Insignary Inc. is a Toronto-based cybersecurity firm specializing in binary composition evaluation and software program provide chain safety. Its patented know-how permits organizations to determine open-source software program elements, vulnerabilities, and software program provenance straight from compiled binaries with out requiring entry to supply code.
The corporate’s flagship platform, Insignary Readability, supplies binary evaluation and software program composition evaluation capabilities that allow organizations to confirm the contents of deployed software program and strengthen software program provide chain governance. Insignary Readability AIR extends this functionality to the AI area by serving to organizations determine, assess, and handle dangers related to AI fashions, AI-generated software program, and AI-driven improvement environments.
The corporate serves enterprises, governments, and software program distributors worldwide and is supported by strategic buyers and companions together with BearingPoint in Europe, Cybertrust Japan and TechMatrix in Japan, and TMA Options. By way of its international associate ecosystem, Insignary helps software program provide chain safety initiatives throughout North America, Europe, and Asia.
Web site: https://insignary.com/
Full report: Gartner Hype Cycle for Safe Software program Engineering, 2026
References:
- Gartner, Hype Cycle for Safe Software program Engineering 2026
- Venafi, “Machine Id Administration Growth Survey,” 2024
- Gartner, “Rising Tech: A Software program Invoice of Supplies Is Essential to Software program Provide Chain Administration.”
Contact
Principal Options Architect
Jessica DY Lee
Insignary




![How creators and entrepreneurs are utilizing AI to hurry up & succeed [data]](https://blog.aimactgrow.com/wp-content/uploads/2025/06/Untitled20design-Apr-07-2023-08-24-35-4586-PM-120x86.png)



