Every enterprise CTO I’ve been talking to is saying the quiet part out loud. Teams have rolled out Copilot, Cursor, Claude, WindSurf and a handful of agentic tools across thousands of engineers. Productivity is up. Pull requests are flying.
“We’re generating more code than ever. And I have no idea whether any of it is secure, stable, or compliant enough to ship.”
He/She wasn’t complaining about the tools. They were describing a paradox I’ve heard from nearly every technology leader this year. AI has given every developer a superpower, but code generation without enterprise-grade governance doesn’t compound into productivity. It compounds into liability. Without context and guardrails, AI just speeds hallucinations. And it lands on top of decades of legacy code, the original technical debt, that AI is now piling more unaudited code onto. Two liabilities, stacking.
That’s why we built Forge.
The first intent and context-aware Secure Software Factory, built for the AI-SDLC era, where every line of code is secure, compliant, and traceable to intent, across both new builds and legacy modernization.
The AI Tax No One Is Talking About
Enterprises already spend 40–50% of their engineering budgets maintaining legacy code, applications whose original intent is now blurred, context is gone, and governance trail doesn’t exist. That’s the starting point.
Now layer AI on top. Agentic tools generate code faster than humans can review it for security, stability, or compliance. Before you ship anything, another 40% of your AI budget is already spent on coordination, rework, and drift, the “AI tax” the old SDLC was never designed to handle. Gartner projects that by 2027, enterprises that don’t adopt spec-driven development for AI work will see 25% slower delivery and significantly higher remediation costs.
You cannot solve a 2026 problem with legacy SDLC processes. SDLC was built for humans writing code sequentially, not for AI agents generating it in parallel without context or guardrails. It’s a two-lane highway carrying freeway traffic.
Enter Forge: The First Enterprise Software Factory
Forge is the first Enterprise Software Factory built for true AI-SDLC, an operating model where intent, context, and spec-based development drive every action, with enterprise-grade guardrails built in at every step.
- Intent is the business reason behind software. Today, intent gets lost the moment a product manager hands off a requirement to an engineering team. Forge captures it as a human and machine-readable, living artifact and carries it all the way to production.
- Context is everything an AI agent needs to know, your architecture, your security policies, coding standards, compliance mandates, necessary for developing software that actually meets enterprise requirements. Forge ensures context is persistent from day 0, throughout the life of the software, so agents don’t hallucinate and deliver enterprise-grade code.
- Spec-based development means AI-generated code must satisfy explicit architectural and behavioral constraints before, during, and after it ever merges. Quality, security, and stability shift upstream instead of being chased downstream.
- Guardrails are the enforcement layer. Every agentic action is audited and approved or directed by humans through automated work orders, making it structurally impossible to ship code that isn’t secure, stable, and compliant by design.
Forge does something no tool in the market has been able to deliver: carry intent from the first stakeholder conversation all the way to the deployed-in-production application, with continuous governance for every artifact with in-line policy enforcement, and not as a final gate.
The Analyst View
We’re not the only ones seeing this shift. Katie Norton, Research Manager for DevSecOps and Software Supply Chain Security at IDC, framed the governance challenge exactly as we’ve lived it with our early customers:
“As AI accelerates code output, the focus must shift from pure volume to the integrity of the software supply chain. Establishing a trustworthy lifecycle requires engineering truth as the foundation for automated, context-aware governance. Software Forge addresses this by balancing autonomous execution with governance guardrails, ensuring software remains auditable and compliant by design.”
Two Use Cases, a Single Software Factory
Forge addresses two critical uses for every enterprise:.
New software builds, Forge takes a raw idea and transforms it into a complete, enterprise-grade application. PRD, BRD, architecture diagrams, Requirements Traceability Matrix, work orders, deployed code. In hours, not months. Every artifact traceable to its originating intent. Every line of code is anchored to a governance policy. Every deployment is secure, stable, and compliant by design.
Legacy software modernization, Forge runs the same engine in reverse. Point it at a decades-old codebase. A .NET monolith, a tangled Java service, Angular to React Migration, legacy database migration, a COBOL mainframe and it reverse-engineers the intent hiding inside that code. It regenerates the documentation, the architectural diagrams, the business logic, the context that was lost when the original engineers left. And then it carries that recovered intent forward into a modern, AI-ready code.
In the words of Roman Vorel, Fortune 100 Enterprise Technology Executive, Author, NoOps: How AI Agents Are Reinventing DevOps and Software:
Forge doesn’t just refactor code. Forge refactors systems. It recovers institutional memory. We turn legacy debt the 40–50% of IT budgets enterprises have been sitting on for a decade — from a growing liability into a strategic asset.
Matthew Flug, Research Manager for Intelligent Application Modernization and Deployment Platforms at IDC, captured why it matters:
“Modern, intelligent application delivery requires a platform that provides architectural consistency across environments for both modernizing legacy systems and launching new builds. By utilizing reverse engineering to anchor system logic and intent throughout the build cycle, Software Forge enables enterprises to address legacy tech debt while helping to improve the speed and quality of cloud-native application delivery.”
We’ve been fortunate to partner with forward-leaning enterprises as early design partners — teams operating across multiple countries, industries, and regulatory environments, with zero tolerance for shipping unaudited code.
Belcorp, the Latin American beauty enterprise with operations across 14 countries, was one of the first to bring Software Forge in for both modernization and new builds. Here’s how BelCorp’s CDTO, Venkat Gopalan, described what they’re seeing:
“At Belcorp, we need more than faster code. We need an AI-driven SDLC that accelerates time to market, delivers measurable business outcomes, and allows our talent to focus on strategic, high-value work. Software Forge enables exactly that by carrying business intent from concept to cloud without losing governance along the way. What once took weeks can now be achieved in minutes with an enterprise-grade modernization blueprint. It represents a new standard for building and scaling in the AI era.”
Your first 3 minutes with Forge
Today, we are shipping Forge with AI-powered intent analysis, PRD and BRD generation, interactive architecture diagrams, an 8-dimension ForgeScore radar, Requirements Traceability Matrix, sprint-ready work orders, multi-model AI through build code using your favorite Code AI assistants using native MCP integration, and Jira sync — self-hosted or managed cloud, with enterprise-grade security and compliance controls built in from Day 0.
The full is a Day 0 → Day 1 → Day 2 continuous pipeline — from first idea, to running system, to production monitoring — all governed by one unbroken thread of intent, with guardrails enforcing security, stability, and compliance at every step.
If you’re a CTO, CPO or a Leader wrestling with how to bring AI speed into the enterprise without sacrificing governance, we’d like to help you. We’re onboarding design partners now, and if you’re sitting on a legacy portfolio draining your IT budget, let us show you what a 3-minute ForgeScore of your hardest application looks like — just a scorecard and a roadmap. Because the companies that figure out AI-SDLC first will define the next decade of enterprise software.
Request early access → softwareforge.ai
Kumar Chivukula is the Co-Founder and CEO of Opsera. Before founding Opsera, he led enterprise IT at Symantec and Adobe and spent two decades building infrastructure and cloud platforms for global enterprises.
