Application security testing company CodeSecure Inc. today announced a new strategic partnership with open-source compliance and security platform provider FOSSA Inc. and introduced a product integration that allows organizations to eliminate security blind spots associated with third-party and open-source code.
The partnership sees CodeSecure’s CodeSentry Binary Composition Analysis capabilities integrated into FOSSA’s software supply chain analysis and software bill of materials management platform. The integrated solution provides continuous visibility for proactively detecting and mitigating software security vulnerabilities and compliance violations at every stage of the software development lifecycle.
The integration assists App Developers and DevSecOps teams in generating comprehensive SBOMs that account for both open source and binaries contained in their software builds, with transparency into vulnerabilities, dependencies and compliance violations. The integrated platform reduces risk and accelerates secure software delivery by identifying vulnerabilities during the development phase when they are easier and more cost-effective to remediate.
“Modern software applications are constantly growing in complexity and composed of components that developers might not fully control or even see,” said CodeSecure Chief Executive Mike Dager. “Our partnership with FOSSA creates a single, cohesive platform that ensures comprehensive visibility into both open source and binary code, allowing teams to confidently manage their software supply chains from development through deployment.”
The combination of FOSSA’s platform being pre-integrated with CodeSecure CodeSentry allows developers to benefit from a connection between software composition analysis and binary analysis tools, enhancing security across the software supply chain. The bidirectional integration simplifies workflows for engineering and security teams, enabling a more proactive and automated approach to vulnerability and compliance management.
The combined offering also addresses critical DevSecOps needs. It supports comprehensive SBOM generation by consolidating insights from both source and binary code analysis to create accurate, complete software inventories. It also enables early vulnerability detection and remediation, helping teams identify and mitigate issues earlier in the development lifecycle to reduce complexity and cost.
Image: CodeSecure
Your vote of support is important to us and it helps us keep the content FREE.
One click below supports our mission to provide free, deep, and relevant content.
Join our community on YouTube
Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.
THANK YOU
