As we do yearly, we’ve heard from people across the software program growth business who share their ideas on which areas will thrive and which could not survive in 2025 and past. Listed below are a few of their predictions for subsequent 12 months.
Derek Holt, CEO of Digital.ai
Whereas Worth Stream Administration continued to lose steam in 2024, we additionally noticed the quick emergence of Software program Engineering Intelligence (SEI) to take its place. SEI can have a breakout 12 months in 2025 as an increasing number of companies notice they should measure the end-to-end enterprise means of software program growth and supply to be able to drive steady enchancment, really ship improved developer experiences and in the end notice the potential positive aspects for an AI-powered Software program Growth and Supply capabilities. SEI is the important thing to every.
Emily Nakashima, VP of engineering at Honeycomb
Whereas the present AI hype exhibits no indicators of slowing, a lot of the main focus in 2024 was on AI code authorship moderately than code possession. Companies in the end spend rather more time proudly owning, sustaining, and working software program than authoring it. The present technology of AI instruments has proven it may be inconsistently helpful within the upkeep and possession drawback house. As such, 2025 will deliver heightened consciousness of the downsides of proudly owning AI-generated code and working LLMs in manufacturing — what was quick to create in growth is out of the blue sluggish, costly, and unpredictable in manufacturing. I’ll be looking for advances in greatest practices for LLM observability and count on we’ll see headline-making safety incidents attributable to LLM-generated code.
Dylan Thomas, senior director of product engineering at OpenText Cybersecurity
In 2025, DevSecOps will proceed evolving past the ‘shift-left’ paradigm, embracing a extra mature ‘shift in every single place’ method. This shift calls on organizations to use the appropriate instruments on the proper levels of the DevSecOps cycle, bettering effectivity and effectiveness in safety practices. Light-weight evaluation in IDEs will assist builders catch points early, whereas automation built-in into pull requests and CI/CD pipelines will guarantee a cohesive ‘combine as soon as’ method for core features reminiscent of SAST, SCA, and more and more DAST, notably for API safety testing.
Jans Aasman, CEO of Franz Inc.
As digital currencies develop, the sophistication of fraud, together with cash laundering and phishing would require extra superior detection strategies. Rising types of AI, reminiscent of Neuro-Symbolic AI (NSAI) will mix sample recognition, logical reasoning, and language understanding to determine suspicious transactions throughout decentralized platforms. By analyzing blockchain information, good contracts, and transaction histories, NSAI will uncover hidden patterns of fraud, interpret the intent behind transactions, and distinguish reputable trades from illicit actions like market manipulation. The distinctive talents of NSAI will be capable to flag high-risk transactions whereas offering clear, explainable causes for the flags, serving to regulators and business gamers preserve transparency and compliance.
Alex Merced, Senior Tech Evangelist, Dremio
The competitors to dominate the information catalog house will turn into a high-stakes showdown. As hybrid and multi-cloud ecosystems develop, organizations will demand seamless interoperability, driving fierce innovation in governance, lineage, and user-defined features (UDFs). Apache Iceberg will emerge as a key participant, redefining requirements for open desk codecs with its hybrid catalog capabilities. This race gained’t simply reshape information structure—it’ll determine who controls the way forward for information portability.
Jamil Valliani, head of AI product at Atlassian
2025 would be the 12 months of the AI agent. As brokers develop richer in interactivity and begin to attain throughout extra than simply textual content and into audio and visible parts, they’ll deliver a few highly effective cultural shift in how people collaborate with AI. Brokers are already fairly good at augmenting and accelerating our work — within the subsequent 12 months, they’ll get even higher at performing extremely particular duties, taking specialised actions, and integrating throughout merchandise, all with people within the loop. I’m most excited to see brokers changing into exponentially extra refined in how they’ll collaborate with groups to deal with complicated duties. Our relationship with them will evolve, and we’ll see new types of collaboration and communication on groups develop.”
Lucy Beaumont, expertise administration resolution lead at SHL
In 2025, main firms will more and more view their workforce as a group of expertise moderately than as static job roles. This attitude permits organizations to harness and deploy expertise fluidly, assembly dynamic enterprise wants whereas supporting worker development. To do that, organizations might want to create skill-based ecosystems the place expertise may be matched with alternatives seamlessly.
Christopher Robinson, chief safety architect at OpenSSF
AI will more and more assist coders, defenders, and attackers speed up their work. By integrating AI with automated tooling and CI/CD pipelines, builders will be capable to rapidly determine and repair coding flaws. Defenders can leverage AI’s skill to investigate large quantities of information and determine patterns, accelerating the work of SOC groups and different blue-team operations. Sadly, attackers might also use AI to craft refined social engineering assaults, assessment public code for vulnerabilities, and make use of different ways that may complicate cybersecurity within the close to future. We have to discover ways to safe AI earlier than broadly deploying it for safety functions.
Sachin Aggarwal, co-founder and CEO of StackGen
In 2024, 52% of builders who responded to Stacked Up: The IaC Maturity Report shared that they spend greater than 20% of their time on Infrastructure as Code (IaC). In 2025, IaC instruments will evolve to generate infrastructure from code moderately than counting on builders and infrastructure groups to be taught new instruments and programming languages. These instruments will apply safety and governance necessities by default, rising the time builders can spend on writing software code that delivers enterprise differentiation moderately than losing time struggling to write down IaC.
Roshan Kindred, chief variety officer at PagerDuty
Tech organizations, with their international workforces and buyer bases, should develop and implement inclusive IDE methods that reach past Western-centric views. This implies designing localized initiatives tailor-made to the distinctive cultural and regional wants of workers to foster true international belonging. Supporting worker well-being would require regional and cultural alignment to deal with the varied challenges the world will face over the subsequent 4 years. Growing a world understanding of variety should turn into a core management competency.
Arnab Sen, VP of information engineering at Tredence
Decentralization of information possession with information mesh structure will turn into extra prevalent, permitting groups to handle their very own information as merchandise. This can be notably useful for giant organizations in search of impartial, high-quality information change.
David A. Wheeler, director of open supply provide chain safety at OpenSSF
Many software program vulnerabilities may be eradicated by utilizing programming languages which might be memory-safe by default. Nonetheless, it’s impractical to rewrite all present software program in C and C++, which aren’t memory-safe by default. I count on to see gradual rewrites of small C and C++ modules, together with extra use of them. There may even be longer-term efforts in 2025 that will pan out later. Some are investigating utilizing AI to economically translate C and C++ to a memory-safe language. There’s additionally work to develop a memory-safe variant of C++. These longer-term efforts gained’t be prepared for manufacturing use in 2025, however they may give us long-term options.
Tricia Gee, lead developer advocate at Gradle
Flaky assessments will proceed to be a outstanding concern for dev groups in 2025, particularly as extra firms proceed to undertake microservices. It’s because groups might want to do integration testing between microservices, that are inherently flaky. It is going to be crucial for dev groups to prioritize figuring out and fixing flaky assessments earlier than they trigger toil and frustration for builders, and compromise the standard of delivered software program.
