NEW YORK and TEL AVIV, June 3, 2025 – Nokod Security, the security company for no-code development, today announced that its main dashboard is mentioned via a photo as an Example of a Third-Party Application Health Inventory Page in the 2025 Gartner How to Support and Govern Low-Code Applications for Citizen Development report by Mukul Saha and Oleksandr Matvitskyy.
The Gartner report offers software engineering leaders guidance on how to govern low-code/no-code usage at scale, stating that “Software engineering leaders struggle to manage security and privacy risks in low-code/no-code development, because the governance approaches they use for IT developers are difficult or impossible to apply to citizen developers.”
According to Gartner, “Third-party tools can help mitigate the security and compliance risks associated with business-led low-code/no-code development. Dashboard capabilities provide organizations with visibility into their risk-based security posture and allow users to take timely corrective actions.” The Figure 3 of the report is an example of such a dashboard, demonstrating visibility into application health across distributed low-code/no-code environments.
The report also states that: “Alternatively, citizen developers may decide to forgo software engineering’s assistance and proceed with low-code/no-code platforms anyway. This approach results in low-quality applications that frustrate users, fail to meet business needs and expose the organization to unacceptable risks, such as:
- “Severe security and privacy issues”
- “Operational and compliance risks like data breaches and duplication”
- “Poor application quality and stability”
- “Violation of internal and external policies and regulations”
“We believe Nokod’s mention in this research validates our mission to make no-code development secure by design,” said Yair Finzi, CEO of Nokod Security. “Citizen developers are rapidly building business-critical workflows, yet these applications often fall outside the purview of traditional AppSec programs. Our platform gives security teams the visibility and control needed to identify risks early, enforce guardrails, and support secure innovation at scale.”
As the report outlines, leading low-code/no-code platforms offer their own governance tools, but they often lack support for multivendor environments. These governance blind spots, if unaddressed, can expose organizations to regulatory violations, data exfiltration, and other business risks. Nokod’s cross-platform visibility and risk modeling capabilities help organizations discover unmanaged no-code apps, evaluate their exposure, and apply scalable security policies.
Gartner Attribution and Disclaimer
Gartner, How to Support and Govern Low-Code Applications for Citizen Development, by Mukul Saha and Oleksandr Matvitskyy, April 17, 2025.
Gartner is a registered trademark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved. Gartner does not endorse any vendor, product, or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.