OpenAI Agrees To Buy Promptfoo In Cybersecurity Push

OpenAI has agreed to buy the cybersecurity startup Promptfoo in a move aimed at strengthening protections for AI agents, according to reports published by Bloomberg and Yahoo Finance.

The acquisition brings Promptfoo into OpenAI as the company expands work on AI systems that can take actions on a user’s behalf, including interacting with tools and software. The reports described Promptfoo as focused on security for AI, with its work positioned around safeguarding agent-style systems.

OpenAI has been pushing deeper into agentic AI, where models do more than generate text and instead complete multi-step tasks. As these systems become more capable and are connected to external services, security concerns grow alongside their usefulness. A purchase of a security-focused startup signals that OpenAI is prioritizing defenses designed specifically for the ways AI agents can be prompted, manipulated, or misused.

The deal also underscores how AI companies are increasingly treating safety and security as core product requirements rather than add-ons. Agent systems can be deployed across business workflows, customer support, and software development, which raises the stakes for reliability and protection against malicious inputs. Bringing in a team built around AI security can help OpenAI harden internal testing and evaluation processes and improve guardrails before new capabilities are rolled out.

The reports did not provide additional specifics on financial terms. OpenAI also has not publicly detailed how Promptfoo’s technology or staff will be integrated across its product lines, though the stated purpose of the acquisition is to better safeguard AI agents. Coverage also linked the move to broader efforts to bolster AI safety across OpenAI’s work, including its more advanced systems.

For customers and developers, the acquisition matters because it points to more security tooling and stricter safety practices around the AI agent features they may rely on. Companies building on OpenAI’s models often want clearer assurances that the systems will behave as intended and resist adversarial use. Security-focused testing can help identify weak points earlier and reduce the risk of harmful behavior when models are deployed at scale.

Next steps will likely include integration planning and the incorporation of Promptfoo’s security expertise into OpenAI’s internal development pipeline. As with other acquisitions in the sector, the near-term impact will be measured by whether OpenAI can translate the added capabilities into improved protections in its agent products and the tools developers use to evaluate them.

The purchase places AI security more squarely at the center of the race to build capable AI agents, where trust and resilience can be as important as raw performance.