Red Hat announced the general availability of Red Hat OpenShift 4.18, the latest version of the hybrid cloud application platform powered by Kubernetes.
StackHawk launched Oversight to provide security teams with a birds-eye view of their API security program.
Oversight aggregates key security data across all applications, providing a birds-eye view that makes it simple to quickly identify which APIs need to be tested and where fixes need to be applied.
"You'd be surprised how many security teams are monitoring the overall health of their organization's security program via spreadsheets and legacy tools," said Joni Klippert, CEO and Co-Founder of StackHawk. "We didn't want to just create another dashboarding solution where folks stare at and admire their problems – we wanted to layer on actionable insights to improve security across the board."
Key Highlights of Oversight
- Scan Frequency Monitoring: Oversight flags applications that haven't been scanned in the last 30 days, ensuring that security teams are always aware of gaps in coverage.
- Total Findings Overview: The oversight panel highlights outstanding findings across all applications. This makes it easy for teams to prioritize remediation efforts and track which applications are most vulnerable.
- Attack Surface Insights: For organizations leveraging StackHawk's API Discovery feature, Oversight provides a view of the attack surface coverage, helping teams ensure they're testing all critical areas of their applications and identifying when new applications and APIs are added to their attack surface.
Earlier this year, StackHawk launched API Discovery which leverages source code to obtain the full scope of an organization's APIs and applications. Discovering APIs from an organization's source code repository (GitHub, Azure DevOps, Bitbucket) is the quickest, most complete way to uncover hidden and unknown APIs. Combined with today's launch of Oversight, StackHawk is offering security teams an end-to-end solution for shift-left API Security.
Industry News
Akamai Technologies announced a Managed Container Service designed for companies that want to deliver better experiences by running workloads closer to users, devices, and sources of data.
Couchbase announced that its Capella AI Model Services have integrated NVIDIA NIM microservices, part of the NVIDIA AI Enterprise software platform, to streamline deployment of AI-powered applications, providing enterprises a powerful solution for privately running generative (GenAI) models.
GitLab announced the general availability of GitLab Duo Self-Hosted.
Tigera announced the introduction of several new innovations to Calico, including a new Ingress Gateway capability for Calico Cloud and Calico Enterprise, and the launch of Calico Dashboards.
Copado introduced three AI-powered DevOps apps for Slack.
Gearset announced that it now supports Salesforce's Agentforce.
Sonar announced the acquisition of AutoCodeRover, an autonomous AI agent platform for software development.
Faros AI announced a collaboration with Microsoft to deliver its AI-powered platform for optimizing engineering workflows on Azure.
Apollo GraphQL announced the general availability of Apollo Connectors for REST APIs and new GraphOS platform enhancements — giving enterprises a faster, more efficient way to execute their API strategies.
Check Point® Software Technologies Ltd.(link is external) announced that its Check Point CloudGuard solution has been recognized as a Leader across three key GigaOm Radar reports: Application & API Security, Cloud Network Security, and Cloud Workload Security.
LaunchDarkly announced the private preview of Warehouse Native Experimentation, its Snowflake Native App, to offer Data Warehouse Native Experimentation.
SingleStore announced the launch of SingleStore Flow, a no-code solution designed to greatly simplify data migration and Change Data Capture (CDC).
ActiveState launched its Vulnerability Management as a Service (VMaas) offering to help organizations manage open source and accelerate secure software delivery.
Genkit for Node.js is now at version 1.0 and ready for production use.