OpenAI has acquired Promptfoo, a leading AI security platform, to enhance security testing and evaluation capabilities within its Frontier platform for enterprise AI agents.
OpenAI has announced its acquisition of Promptfoo, a prominent AI security platform, as part of its strategy to bolster enterprise capabilities within OpenAI Frontier, its platform for building and operating AI coworkers. The acquisition, announced on March 9, 2026, aims to address growing enterprise concerns around AI security, evaluation, and compliance as AI agents become increasingly integrated into real-world workflows.
Why This Acquisition Matters
As enterprises deploy AI agents into production environments, they face mounting pressure to ensure these systems are secure, reliable, and compliant with evolving governance standards. The Promptfoo acquisition directly addresses this challenge by bringing enterprise-grade security testing and evaluation capabilities into OpenAI's core platform.
Promptfoo has established itself as a trusted solution, with over 25 percent of Fortune 500 companies relying on its technology. The platform specializes in identifying and remediating vulnerabilities in AI systems during development, offering tools for automated security testing, red-teaming, and compliance monitoring.
What Promptfoo Brings to OpenAI
Founded by Ian Webster and Michael D'Angelo, Promptfoo has developed a comprehensive suite of security tools that will be integrated into OpenAI Frontier. The acquisition brings several key capabilities:
- Automated security testing: Built-in testing for common AI vulnerabilities including prompt injections, jailbreaks, data leaks, and tool misuse
- Red-teaming capabilities: Systematic approaches to stress-test AI agent behaviors before deployment
- Compliance monitoring: Tools for maintaining clear records and documentation to support governance requirements
- Open-source foundation: Promptfoo's widely-used CLI and library for evaluating and red-teaming LLM applications will continue to be developed
Enterprise Security Challenges Addressed
The acquisition comes at a critical time when enterprises are grappling with how to secure AI agents that have access to real data and systems. Key challenges include:
- Prompt injection attacks: Malicious inputs designed to manipulate AI behavior
- Data leakage: Preventing unauthorized access to sensitive information
- Tool misuse: Ensuring AI agents use connected tools appropriately
- Out-of-policy behaviors: Detecting and preventing actions that violate organizational policies
- Compliance requirements: Meeting growing regulatory and governance expectations
Integration Strategy
OpenAI plans to integrate Promptfoo's technology directly into Frontier, making security testing a native part of the platform. This integration will occur across multiple dimensions:
Security and safety testing built into the platform: Automated testing capabilities will become standard features within Frontier, allowing enterprises to identify and remediate risks as part of their normal development workflow.
Development workflow integration: Frontier will offer deeper integration with the tools and processes needed to identify, investigate, and remediate agent risks earlier in the development cycle.
Oversight and accountability: Enhanced reporting and traceability features will help organizations document testing procedures, monitor changes over time, and demonstrate compliance with governance requirements.
The Team Behind Promptfoo
Ian Webster, Promptfoo's co-founder and CEO, emphasized the growing importance of AI security as agents become more connected to real-world systems. "We started Promptfoo because developers needed a practical way to secure AI systems," Webster said. "As AI agents become more connected to real data and systems, securing and validating them is more challenging and important than ever."
Srinivas Narayanan, CTO of B2B Applications at OpenAI, highlighted the technical expertise Promptfoo brings: "Promptfoo brings deep engineering expertise in evaluating, securing, and testing AI systems at enterprise scale. Their work helps businesses deploy secure and reliable AI applications, and we're excited to bring these capabilities directly into Frontier."
Open-Source Commitment
Despite the acquisition, OpenAI has committed to continuing development of Promptfoo's open-source project. This approach maintains the accessibility of core evaluation tools while advancing integrated enterprise capabilities within Frontier.
Market Context
The acquisition reflects broader industry trends toward enterprise AI security. As organizations move beyond experimental AI deployments to production systems, the need for robust security testing and compliance monitoring has become paramount. OpenAI's move positions it competitively against other enterprise AI platforms that are also enhancing their security capabilities.
What's Next
The acquisition is subject to customary closing conditions, with integration plans already underway. Enterprises using OpenAI Frontier can expect to see Promptfoo's security testing capabilities rolled out as native features in the coming months.
The Promptfoo team will join OpenAI, bringing their expertise in AI security testing to scale across OpenAI's enterprise customer base. This acquisition represents a significant investment in making enterprise AI deployment safer and more reliable as the technology becomes increasingly central to business operations.
For more information about OpenAI's enterprise offerings, visit the OpenAI Frontier platform.
Comments
Please log in or register to join the discussion