Progress announced the Q4 2024 release of its award-winning Progress® Telerik® and Progress® Kendo UI® component libraries.
Secure Code Warrior Announces New GitHub Action and Integration with Snyk
October 19, 2020
Secure Code Warrior announced support for GitHub’s new code scanning functionality in conjunction with a new collaboration with Snyk.
Secure Code Warrior has built a GitHub Action that brings contextual learning to GitHub code scanning. The new GitHub Action processes the new industry-standard SARIF file and appends Secure Code Warrior contextual learning based upon CWE references in a SARIF rule object. This means developers can use a third-party action like the Snyk Container Action to find vulnerabilities, and then augment the output with hyper-relevant learning.
“Secure Code Warrior’s vision is to empower developers with the skills and knowledge to prevent code vulnerabilities in the first place. This new GitHub Action adds our secure code training to industry-standard SARIF files within a GitHub Workflow - delivering developer-centric contextual learning when needed most, ultimately making it easier for developers to release quality code faster.” said Matias Madou, CTO and co-founder, Secure Code Warrior. “We feel that the more context developers have for the vulnerabilities being flagged, the more they’re able to understand the risks, prioritize fixing the most pressing issues, and ultimately prevent them in the first place.”
Secure Code Warrior is positioned to support the new SARIF standard and integrate with other third-party scanning tools inside the Github code scanning ecosystem such as; Snyk, Checkmarx, Fortify On Demand, Synopsis and Veracode. Our open approach to developer-centric learning empowers development and security teams to not just find vulnerabilities but enrich SAST reports with actionable knowledge. This provides developers with the skills and knowledge when they need it most, preventing vulnerabilities from occurring and reducing the need for rework.
“Pairing integrations from Snyk and Secure Code Warrior with GitHub code scanning is a powerful combination that gives developers security information and education that is both insightful and actionable,” said John Leon, VP of Business Development, GitHub.
“Snyk and Secure Code Warrior have a joint focus on helping developers reduce the impact of software vulnerabilities by increasing the security awareness and skills of developers. Combining Snyk's security technology with training solutions from Secure Code Warrior helps developers more easily build secure applications with confidence,” said Gareth Rushgrove, Director of Product Management, Snyk.
Secure Code Warrior has a number of technical integrations that allows organizations to build securely by delivering contextual training and coaching in the developers preferred environment. The platform launched in 2015, helps developers to think and act with a security mindset every day.
Industry News
November 26, 2024
November 26, 2024
Check Point® Software Technologies Ltd. has been recognized as a Leader and Fast Mover in the latest GigaOm Radar Report for Cloud-Native Application Protection Platforms (CNAPPs).
November 26, 2024
Spectro Cloud, provider of the award-winning Palette Edge™ Kubernetes management platform, announced a new integrated edge in a box solution featuring the Hewlett Packard Enterprise (HPE) ProLiant DL145 Gen11 server to help organizations deploy, secure, and manage demanding applications for diverse edge locations.
November 26, 2024
Red Hat announced the availability of Red Hat JBoss Enterprise Application Platform (JBoss EAP) 8 on Microsoft Azure.
November 26, 2024
Launchable by CloudBees is now available on AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services (AWS).
November 26, 2024
Kong closed a $175 million in up-round Series E financing, with a mix of primary and secondary transactions at a $2 billion valuation.
November 26, 2024
Tricentis announced that GTCR, a private equity firm, has signed a definitive agreement to invest $1.33 billion in the company, valuing the enterprise at $4.5 billion and further fueling Tricentis for future growth and innovation.
November 25, 2024
Check Point® Software Technologies Ltd. announced the new Check Point Quantum Firewall Software R82 (R82) and additional innovations for the Infinity Platform.
November 25, 2024
Sonatype and OpenText are partnering to offer a single integrated solution that combines open-source and custom code security, making finding and fixing vulnerabilities faster than ever.
November 25, 2024
Red Hat announced an extended collaboration with Microsoft to streamline and scale artificial intelligence (AI) and generative AI (gen AI) deployments in the cloud.
November 25, 2024
Endor Labs announced that Microsoft has natively integrated its advanced SCA capabilities within Microsoft Defender for Cloud, a Cloud-Native Application Protection Platform (CNAPP).
November 21, 2024
Progress announced new powerful capabilities and enhancements in the latest release of Progress® Sitefinity®.
November 21, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.5, the latest version of the enterprise Linux platform.
November 21, 2024
Securiti announced a new solution - Security for AI Copilots in SaaS apps.
November 20, 2024
Spectro Cloud completed a $75 million Series C funding round led by Growth Equity at Goldman Sachs Alternatives with participation from existing Spectro Cloud investors.
