As organizations ship AI-powered features faster than security teams can track them, the two companies are offering a unified way to discover, map, and protect every AI endpoint across an enterprise.
Cloudflare and Wiz, now part of Google Cloud, have announced a partnership to give enterprise security teams a unified way to discover, analyze, and protect AI-powered applications across their infrastructure.
The integration connects Cloudflare’s AI Security for Apps with Wiz’s AI Application Protection Platform, combining edge-level guardrails with a comprehensive map of an organization’s AI footprint. The result, the companies say, is a single source of truth that allows security teams to see which AI endpoints exist across their web properties, whether those endpoints have security controls in place, and whether those controls are actually working.
The need is urgent. Organizations are shipping AI-powered features — chatbots, copilots, AI-driven search — faster than security teams can track them. Each new endpoint is a potential attack surface, vulnerable to prompt injection, sensitive data exfiltration, and abuse. Many are deployed without security team involvement at all, a problem the industry has come to call shadow AI.
Also Read: Why Most Executives Are Faking Their AI Confidence
“When talking with CISOs today, they are struggling with the balance of being an enabler of innovation with AI, while combating uncontrolled shadow AI across their organization because their legacy security tools are effectively useless at this level,” said Tom Evans, chief partner officer at Cloudflare. “Now, we are delivering a solution to allow innovation with AI at speed, without the worry that their most sensitive data will be exposed.”
“By combining Wiz’s end-to-end visibility with Cloudflare’s edge protections, we close a critical gap in how AI risk is managed,” said Oron Noah, vice president of product, extensibility and partnerships at Wiz. “This partnership gives organizations a unified view of AI application endpoints and shared risk context, helping them stop threats like prompt injection and shadow AI before they start.”
In practice, the integration covers five areas. Cloudflare’s detection layer identifies all LLM endpoints across an organization’s web properties, including those deployed without security oversight, and runs real-time inspections on every request to flag prompt injection attempts, PII leakage, and custom-defined risk topics. Wiz maps data flows between AI applications, models, and data stores onto its Security Graph, giving teams visibility into where sensitive data interacts with AI workloads. It also verifies that Cloudflare’s guardrails are in place and alerts teams directly when they are missing or misconfigured. Together, the platforms surface which unprotected endpoints carry the highest risk — allowing security teams to prioritize remediation rather than working through a flat list of alerts.
Also Read: Your AI Chatbot Is Making Decisions. Do You Know Which Ones?
The companies said the integration requires no custom workflows or additional agents, and that Cloudflare’s detections run inline on its global network without adding latency to AI traffic.
