OpenAI Acquires Promptfoo to Strengthen Enterprise AI Security

OpenAI has announced its acquisition of Promptfoo, an AI security and evaluation platform trusted by over 25 percent of Fortune 500 companies. The deal will bring automated security testing, red-teaming, and vulnerability detection directly into OpenAI's Frontier platform — the company's enterprise offering for building and operating AI agents.

Why This Matters

As AI agents move from research labs into production workflows, the security gap is widening. Enterprises deploying AI coworkers need systematic ways to test agent behavior, detect risks before deployment, and maintain audit trails for governance and compliance.

Promptfoo addresses exactly this gap. Founded by Ian Webster and Michael D'Angelo, the platform provides tools for evaluating and red-teaming LLM applications — catching prompt injections, jailbreaks, data leaks, tool misuse, and out-of-policy behaviors before they reach production.

"Promptfoo brings deep engineering expertise in evaluating, securing, and testing AI systems at enterprise scale," said Srinivas Narayanan, OpenAI's CTO of B2B Applications.

What's Being Integrated

The acquisition centers on three core capabilities:

• Native security testing: Automated red-teaming and vulnerability scanning built directly into Frontier, eliminating the need for separate security tooling.
• Development workflow integration: Security checks embedded into the development lifecycle, so risks are caught during building — not after deployment.
• Oversight and accountability: Integrated reporting and traceability to help organizations meet growing AI governance, risk, and compliance requirements.

Promptfoo's widely used open-source CLI and library will continue to be maintained alongside the enterprise integration.

The Bigger Picture

This acquisition reflects a broader industry shift: AI security is no longer an afterthought — it's becoming a foundational layer of enterprise AI infrastructure.

With competitors like Anthropic launching Claude Cowork and Microsoft integrating Claude into Copilot, the race to deliver reliable enterprise AI agents is intensifying. OpenAI's move signals that securing these agents is just as important as making them capable.

🚀 Building AI agents for your business? Noqta delivers secure, production-ready AI automation — from design to deployment.

What's Next

The closing of the acquisition is subject to customary conditions. Once finalized, Promptfoo's technology will be deeply embedded into the Frontier platform, giving enterprise customers a unified environment for building, testing, and securing AI systems.

For companies already using Promptfoo's open-source tools, the transition promises stronger backing and faster development cycles. For everyone else, it raises the bar on what enterprise AI security should look like.

💡 Need help auditing your AI-powered systems? Talk to our team about building secure, compliant AI workflows.

The message from OpenAI is clear: the era of deploying AI agents without rigorous security testing is over. The question now is whether the rest of the industry will keep pace.