GitHub

github.com

GitHub, Inc. is an American multinational corporation that provides hosting for software development and version control using Git. It offers the distributed version control and source code management (SCM) functionality of Git, plus its own features. It provides access control and several collabora...

GitLab

gitlab.com

GitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and continuous integration and deployment pipeline features, using an open-source license, developed by GitLab Inc. The software was created by Ukrainian developers Dmitriy Zaporozhets a...

Codacy

codacy.com

Codacy Helps Build High Quality, Secure Applications. You can get up and running effortlessly and start increasing quality, test coverage, and security today. Codacy is a plug-and-play solution to quickly onboard and scale your team’s projects without hassle. - Start scanning git repos and code chan...

Snyk

snyk.io

Snyk (pronounced sneak) is a developer security platform for securing custom code, open source dependencies, containers, and cloud infrastructure all from a single platform. Snyk’s developer security solutions enable modern applications to be built securely, empowering developers to own and build se...

SonarCloud

sonarcloud.io

SonarCloud is a cloud-based alternative of the SonarQube platform, offering continuous code quality and security analysis as a service. SonarCloud integrates seamlessly with popular version control and CI/CD platforms such as GitHub, Bitbucket, and Azure DevOps. It provides static code analysis to i...

Semgrep

semgrep.dev

Semgrep is a highly customizable application security platform built for security engineers and developers. Semgrep scans first and third-party code to find security issues unique to an organization, with an emphasis on surfacing actionable, low-noise, and developer friendly results at lightning spe...

CodeThreat

codethreat.com

Prevent the software flaws as early as possible in SDLC with CodeThreat SAST Platform. CodeThreat statically tests your code and helps you locate, prioritize and mitigate security weaknesses without pre-compilation. Self-Hosted Scan Center will help you to mitigate issues faster with real-time actio...

Embold

embold.io

Embold supports developers and development teams by finding critical code issues before they become roadblocks. It is the perfect tool to analyze, diagnose, transform, and sustain your software efficiently. With the use of A.I. and machine learning technologies, Embold can immediately prioritize iss...

The Code Registry

thecoderegistry.com

The Code Registry is the world's first AI-powered code intelligence and insights platform, designed to safeguard and optimize software assets for businesses. By providing an independent, secure replication of code repositories and delivering in-depth analysis and reporting, The Code Registry empower...

DeepSource

deepsource.com

The Code Health Platform. Build maintainable and secure software with the power of static analysis and AI. DeepSource continuously analyzes source code changes to find and fix issues categorized as security, performance, anti-patterns, and bug-risks. DeepSource integrates with GitHub, GitLab, Bitbu...

CodeScan

codescan.io

CodeScan Shield addresses code quality, security, and compliance liabilities with two automated modules: CodeScan and OrgScan. CodeScan provides static code analysis for total visibility into code health from the moment it’s written through production. OrgScan governs organizational policies by enfo...

Cycode

cycode.com

Cycode is the only end-to-end software supply chain (SSC) security solution to provide visibility, security, and integrity across all phases of the SDLC. Cycode integrates with all of your software delivery pipeline tools and infrastructure providers to enable complete visibility and hardened securi...

Aikido Security

aikido.dev

Aikido Security is a developer-centric software security platform, providing advanced code scanning and cloud vulnerability assessments. Our platform prioritizes real threats, reduces false-positives and makes Common Vulnerabilities and Exposures (CVEs) easily understandable. With Aikido, ensuring t...

GuardRails

guardrails.io

GuardRails is an end-to-end security platform that makes AppSec easier for both security and development teams. We scan, detect, and provide real-time guidance to fix vulnerabilities early. Trusted by hundreds of teams around the world to build safer apps, GuardRails integrates seamlessly into the d...

GitGuardian

gitguardian.com

The new ways of building software create the necessity to support new vulnerabilities and new remediation workflows. These needs have emerged so abruptly that they have given rise to a young and highly fragmented DevSecOps tooling market. Solutions are specialized based on the type of vulnerabilitie...

Data Theorem

datatheorem.com

RamQuest’s solutions include our fully integrated closing, escrow accounting, imaging, transaction management, esigning, and digital marketplace solutions and are available on-premise or in a hosted environment

OX Security

ox.security

Security should be an integral part of the software development process, not an afterthought. Founded by Neatsun Ziv and Lion Arzi, two former Check Point executives, OX is the first and only Active Application Security Posture Management (ASPM) Platform, consolidating disparate application security...

Hubbl Diagnostics

hubbl.com

Hubbl Diagnostics is setting the standard for Salesforce success through secure, automated, ML-driven org intelligence. - Monitor health and performance: Instantly gain a holistic view of your org. - Improve security: Pinpoint security and compliance risks. - Unlock ecosystem insights: Benchmark aga...

JFrog

jfrog.com

Deliver Trusted Software with Speed. The only software supply chain platform to give you end-to-end visibility, security, and control for automating the delivery of trusted releases. The massively scalable, hybrid JFrog Platform is open, flexible, and integrated with all the package technologies an...