Pegasystems announced the general availability of Pega Infinity ’24.1™.
Contrast Security announced its partnership with GitHub and the availability of its suite of GitHub Actions, simplifying the process for developers to ensure the code they build is free of security vulnerabilities.
Implementing DevSecOps transformation across software delivery pipelines is complex and takes developers out of their existing CI/CD processes.
"The addition of Contrast's GitHub Actions to the GitHub Marketplace makes it much easier for development, security, and platform operations teams to drive DevSecOps transformation with automation at scale," said Nikesh Shah, Sr. Director, Strategic Alliances at Contrast Security. “By shifting security automation left within native CI/CD tooling, developers can now embed security within delivery pipelines as their code makes its way from build to test, and through production.”
Now available for deployment, Contrast's four GitHub Actions embed security into existing developer value streams with each commit, pull request, test, and deployment.
- Contrast Scan Analyze: Provides automated static code analysis within native CI pipelines, without ever leaving the GitHub environment, while prioritizing exploitable vulnerabilities and weeding out noise for scan times that are up to 10x faster than competing static application security testing (SAST) tools. How-to-fix guidance within the GitHub pipeline also enables early remediation before promoting to production.
- Contrast Assess for Azure Spring Cloud: Deploys as a java application with a Contrast Assess Security Java Agent (JAR) to the Azure Spring Cloud PaaS environment to extend security into SDLC automation.
- Contrast Assess for Azure Kubernetes Service (AKS): Builds and deploys a java application to the AKS with a Contrast Security Java Agent.
- Contrast Assess for Amazon Elastic Kubernetes Service (EKS): Builds and deploys a java application to the Amazon EKS with a Contrast Security Java agent.
Contrast’s GitHub Actions are available with support for Java applications, and additional language support is in development including new GitHub Actions for .NET and JavaScript applications.
Contrast is also actively investing in developer efficiency and ease-of-use by allowing users to try our products for free by simply registering with their GitHub credentials. More details will be announced in the coming months.
Industry News
Mend.io and Sysdig unveiled a joint solution to help developers, DevOps, and security teams accelerate secure software delivery from development to deployment.
GitLab announced new innovations in GitLab 17 to streamline how organizations build, test, secure, and deploy software.
Kobiton announced the beta release of mobile test management, a new feature within its test automation platform.
Gearset announced its new CI/CD solution, Long Term Projects in Pipelines.
Rafay Systems has extended the capabilities of its enterprise PaaS for modern infrastructure to support graphics processing unit- (GPU-) based workloads.
NodeScript, a free, low-code developer environment for workflow automation and API integration, is released by UBIO.
IBM announced IBM Test Accelerator for Z, a solution designed to revolutionize testing on IBM Z, a tool that expedites the shift-left approach, fostering smooth collaboration between z/OS developers and testers.
StreamNative launched Ursa, a Kafka-compatible data streaming engine built on top of lakehouse storage.
GitKraken acquired code health innovator, CodeSee.
ServiceNow introduced a new no‑code development studio and new automation capabilities to accelerate and scale digital transformation across the enterprise.
Security Innovation has added new skills assessments to its Base Camp training platform for software security training.
CAST introduced CAST Highlight Extensions Marketplace — an integrated marketplace for the software intelligence product where users can effortlessly browse and download a diverse range of extensions and plugins.
Red Hat and Elastic announced an expanded collaboration to deliver next-generation search experiences supporting retrieval augmented generation (RAG) patterns using Elasticsearch as a preferred vector database solution integrated on Red Hat OpenShift AI.
Traceable AI announced an Early Access Program for its new Generative AI API Security capabilities.