Oracle announced plans for Oracle Code Assist, an AI code companion, to help developers boost velocity and enhance code consistency.
42Crunch announced the integration of 42Crunch’s API security audit and vulnerability testing solution with Microsoft Defender for Cloud to provide Microsoft customers continuous API protection from design to runtime.
42Crunch and Microsoft have announced this partnership to enable developers to find and fix API vulnerabilities while giving security teams centralized governance across their APIs.
With Microsoft Defender for APIs, an offering as part of Microsoft Defender for Cloud – a cloud-native application protection platform, organizations can improve their security posture and quickly detect active real-time threats. Together with 42Crunch, development teams will be able to “shift left” by testing their APIs for security vulnerabilities earlier on in the development lifecycle. By combining insights and security findings from both solutions within the Defender for Cloud platform, security teams will have broad visibility and governance of the risks associated with their APIs from design to runtime. Additionally, operations teams will be able to leverage the native workflow capabilities of Defender for Cloud to accelerate remediation efforts.
Jacques Declas, CEO of 42Crunch, said, “This partnership between Microsoft and 42Crunch validates our common vision of providing customers globally with a true DevSecOps solution to protect their digital assets from an ever growing array of attacks.
“It is well recognized that an effective API security strategy must start early in the software development lifecycle. This partnership between 42Crunch and Microsoft will enable customers to define, implement, and enforce API security compliance and governance across their API estate at scale,” added Declas.
“Today's announcement strengthens Microsoft's CNAPP solution, Defender for Cloud, by expanding its capabilities to provide comprehensive API security coverage across the entire API development lifecycle. Our partnership with 42Crunch enhances Defender for Cloud's existing runtime API security capabilities by bringing added visibility into potential vulnerabilities that may be introduced through your DevOps pipeline," said Vlad Korsunsky, Vice President of Cloud and Enterprise Security at Microsoft. "Together with 42Crunch, we bridge the gap of API security from development to runtime and empower security teams to exercise governance over their API ecosystem throughout the development lifecycle.”
This new integration is available today in public preview for customers of Microsoft Defender for Cloud using GitHub, with Azure DevOps support to come.
Industry News
New Relic launched Secure Developer Alliance.
Dynatrace is enhancing its platform with new Kubernetes Security Posture Management (KSPM) capabilities for observability-driven security, configuration, and compliance monitoring.
Red Hat announced advances in Red Hat OpenShift AI, an open hybrid artificial intelligence (AI) and machine learning (ML) platform built on Red Hat OpenShift that enables enterprises to create and deliver AI-enabled applications at scale across hybrid clouds.
ServiceNow is introducing new capabilities to help teams create apps and scale workflows faster on the Now Platform and to boost developer and admin productivity.
Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.
Synopsys has entered into a definitive agreement with Clearlake Capital Group, L.P. and Francisco Partners.
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
Nokod Security announced the general availability of the Nokod Security Platform.
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.