DEVOPSdigest

StackHawk and Snyk announced a new partnership to further modernize how engineering teams create and ship secure code.

With this partnership, teams can now better deliver secure applications and APIs without sacrificing engineering velocity.

Complete application and API security test coverage requires the implementation of Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST) and Software Composition Analysis (SCA). Historically, teams embracing DevSecOps by integrating automated security testing into the early phases of software delivery have been forced to choose between legacy platforms offering all three types of tooling, or implementing best-in-class point solutions. With this new partnership, engineering teams now have the possibility to seamlessly implement modern, developer-first tooling across all three types of testing.

"Software development has rapidly accelerated over the past decade and the majority of security tools on the market have not kept up," said Joni Klippert, CEO, StackHawk. "When code is being pushed to production multiple times per day, security tools need to surface vulnerabilities early in the development process to the developer writing the code. By using StackHawk and Snyk together, teams get continuous security testing across their entire software delivery pipeline. This means shipping better quality code without sacrificing delivery times or interrupting sprints."

The companies are now formalizing their partnership after seeing significant momentum across joint customers throughout 2021. For instance, Breathe Life, an insurtech startup, was looking for security tooling that could keep pace with its engineering team when it discovered StackHawk and Snyk's complementary offerings.

"We wanted security to be a shared responsibility across the organization. So we needed to provide our team with the tooling and best practices so all teams could do that," said Francois Allard, Director of Engineering, Breathe Life. "With StackHawk and Snyk, I can breathe more and people on my team can breathe more. It allows us to have more confidence in what we're building and that we don't have those obvious vulnerabilities."

"Snyk seeks to empower the millions of global developers that are building our future to also have the control via the right tools to secure it," said Carey Stanton, SVP of Global Business and Corporate Development, Snyk. "By partnering with the talented StackHawk team, more modern DevSecOps teams worldwide will now benefit from easily implementing tooling designed for and by developers for DAST as well as SAST and SCA."