Project Quilt Works

CrowdStrike on Thursday launched Project QuiltWorks, a coalition meant to find and fix software flaws that advanced artificial intelligence systems are surfacing in enterprise code. (stocktitan.net) The group includes Accenture, EY, IBM Cybersecurity Services, Kroll and OpenAI, and CrowdStrike said it is also using frontier models from OpenAI and Anthropic in the program. The announcement was published April 23, 2026, through Business Wire. (stocktitan.net) Project QuiltWorks is aimed at three steps: scanning production code for weaknesses, ranking which flaws matter most, and continuously remediating them. CrowdStrike said the effort also includes executive and board-level reporting so companies can track exposure beyond engineering teams. (stocktitan.net) The underlying shift is simple: newer AI systems can read large codebases like a fast security reviewer and spot bugs that older tools often missed. OpenAI’s security agent, introduced as Aardvark in October 2025 and updated in March 2026 as Codex Security, is designed to analyze repositories, validate exploitability in a sandbox, and propose patches. (openai.com) That changes the math for large companies with years of accumulated code. If frontier models can uncover more real flaws, enterprises need a way to triage thousands of findings, assign fixes, and show directors what is getting riskier or safer over time. (openai.com) CrowdStrike has been building out that pitch for months. Its Falcon platform now markets a “Frontier AI Readiness and Resilience Service” for ongoing scans and guided remediation, alongside tools to discover hidden AI use inside endpoint, cloud and software-as-a-service environments. (crowdstrike.com) The company has also been widening its AI partnerships. At RSA 2026 in March, CrowdStrike launched its Charlotte AI AgentWorks ecosystem with Accenture, OpenAI and other partners to let customers build and deploy security agents on the Falcon platform. (crowdstrike.com) OpenAI, for its part, said on April 16 that CrowdStrike was among the first organizations joining its Trusted Access for Cyber program, which is built to give vetted defenders broader access to advanced cyber models with safeguards. The company also said it committed $10 million in API credits through a cybersecurity grant program for defensive uses. (openai.com) CrowdStrike is framing QuiltWorks as a way to turn AI-driven vulnerability discovery into an organized repair pipeline instead of a growing backlog. The test now is whether companies can move from machine-found bugs to human-approved fixes fast enough to keep the gap from widening. (stocktitan.net)