AutoGuard: A Self-Healing Proactive Security Layer for DevSecOps Pipelines Using Reinforcement Learning

Praveen Anugula; Avdhesh Kumar Bhardwaj; Navin Chhibber; Rohit Tewari; Sunil Khemka; Piyush Ranjan

arXiv:2512.04368·cs.CR·December 5, 2025

AutoGuard: A Self-Healing Proactive Security Layer for DevSecOps Pipelines Using Reinforcement Learning

Praveen Anugula, Avdhesh Kumar Bhardwaj, Navin Chhibber, Rohit Tewari, Sunil Khemka, Piyush Ranjan

PDF

Open Access

TL;DR

AutoGuard introduces a reinforcement learning-based self-healing security layer for DevSecOps pipelines, proactively detecting and remediating threats in real-time to enhance security resilience and response efficiency.

Contribution

It presents AutoGuard, a novel RL-powered framework that dynamically learns and adapts to improve threat detection and response in DevSecOps environments.

Findings

01

Threat detection accuracy improved by 22%

02

Mean time to recovery reduced by 38%

03

Enhanced resilience to security incidents

Abstract

Contemporary DevSecOps pipelines have to deal with the evolution of security in an ever-continuously integrated and deployed environment. Existing methods,such as rule-based intrusion detection and static vulnerability scanning, are inadequate and unreceptive to changes in the system, causing longer response times and organization needs exposure to emerging attack vectors. In light of the previous constraints, we introduce AutoGuard to the DevSecOps ecosystem, a reinforcement learning (RL)-powered self-healing security framework built to pre-emptively protect DevSecOps environments. AutoGuard is a self-securing security environment that continuously observes pipeline activities for potential anomalies while preemptively remediating the environment. The model observes and reacts based on a policy that is continually learned dynamically over time. The RL agent improves each action over…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsNetwork Security and Intrusion Detection · Information and Cyber Security · Infrastructure Resilience and Vulnerability Analysis