RAMAT GAN, Israel–(Enterprise WIRE)–Checkmarx, the world wide chief in software safety options for DevOps, currently introduced a new GitHub Action to convey complete, automatic static and open up supply security tests to developers.
As enterprises appear to differentiate themselves as a result of electronic innovation, modern investigation found that just about two-thirds will be prolific application producers, with code deployed day-to-day, by 2025. However, this amplified emphasis on speed and quantity will come at a rate, as susceptible application and applications are now the foremost lead to of security breaches. With enhancement cycles accelerating and software package getting to be additional intricate thanks to the evolution of APIs, microservices, containers, and more, automatic remedies that are intent-crafted for DevOps and help developers to uncover and fix flaws extra quickly and very easily are demanded.
Checkmarx’s new GitHub Action integrates the company’s market leading software security screening (AST) options – Checkmarx SAST (CxSAST) and Checkmarx SCA (CxSCA) – directly with GitHub code scanning, providing builders far more overall flexibility and energy to get the job done with their desired instruments of alternative to safe proprietary and open up supply code. By mechanically triggering SAST and SCA security scans in the event of a pull request, and embedding effects specifically into the GitHub CI/CD pipeline, Checkmarx streamlines developer workflows and empowers them to code a lot more confidently devoid of sacrificing velocity and stability.
“Checkmarx and GitHub share a very similar mission in that we’re each focused on serving to builders strike a balance amongst application advancement velocity and stability,” reported Robert Nilsson, VP of Product Administration, Checkmarx. “The essential to this lies within just the ability of automation, which can help to simplify the implementation and system of protection tests in today’s rapidly-paced DevOps environments. We’re energized to carry our best-in-class, automatic SAST and SCA solutions to the GitHub group and are assured this will increase developers’ encounter and ability in discovering and correcting code-borne vulnerabilities.”
Essential options and benefits include things like:
- Ability to scan uncooked supply code in advance of a construct can take area, enabling increased performance among developers and AppSec teams when applying GitHub Steps
- Prioritized SAST and SCA scan final results to concentrate and expedite developer remediation endeavours on vulnerabilities that pose the best danger
- Automated success feedback loop to eradicate the will need for handbook intervention when opening and closing defects
- Immediate back links into the Checkmarx Software Safety System and entry to its committed services and support means for even additional thorough success and protection and
- Links to just-in-time, lesson-certain training by means of Checkmarx Codebashing and online assets for remediation guidance to elevate developers’ secure coding abilities.
“GitHub is focused to giving open up resource and business builders with the most effective probable software package improvement knowledge,” explained John Leon, VP of Organization Growth, GitHub. “Checkmarx’s new GitHub Motion further more enables the group to acquire protected software, without the need of compromising speed or quality, all in the indigenous GitHub knowledge.”
Find out additional about the action listed here.
Checkmarx is the international chief in software package protection solutions for fashionable business software package advancement. Checkmarx delivers the industry’s most detailed Software package Security Platform that unifies with DevOps and presents static and interactive software safety testing, application composition analysis, and developer AppSec recognition and instruction applications to lessen and remediate hazard from application vulnerabilities. Checkmarx is reliable by extra than 40 of the Fortune 100 firms and 50 % of the Fortune 50, together with top corporations such as SAP, Samsung, and Salesforce.com. Understand far more at www.checkmarx.com.