WebSockets connection method support enables you to directly test and scan AI applications that rely on WebSocket protocols for real-time, streaming, and full-duplex communication. This feature extends Prisma AIRS automated AI Red Teaming capabilities beyond traditional REST APIs to cover modern AI systems such as real-time voice assistants, financial trading agents, and high-velocity chatbots that demand low-latency.

With this feature, you can now add WebSocket-based targets directly within the AI Red Teaming using the Add Target workflow. The feature supports all existing authentication methods and works seamlessly with publicly accessible endpoints or private network endpoints that have allowed IP addresses. You no longer need to create custom wrapper or middleware to translate REST calls into WebSocket messages, which eliminates the friction of integrating these modern AI services into your product. The feature supports streaming, but only for OpenAI-compliant formats.

You should consider using this feature when your organization deploys AI applications that communicate exclusively or primarily through WebSocket protocols and you need to validate their security posture using automated AI Red Teaming. This is particularly valuable for security engineers who must ensure the safety of real-time streaming applications and for DevSecOps teams looking to integrate comprehensive AI security testing for non-RESTful services. By eliminating the blind spot that WebSocket-only endpoints previously represented, you can achieve a more complete view of your organization's AI risk posture across all communication protocols.

WebSocket is a Beta feature. Please reach out to your Palo Alto Networks Account managers for any assistance.