Announcing support for Python dependency checks, compliance insights [PCI 3.2 & SOC2], and integration with Synopsys Black Duck With year-end quickly approaching, our engineering team is excited to announce general…
Happy Holidays! If you’re responsible for application security (AppSec) in your organization—and especially if your applications are written in Java—you received an early Christmas present this past weekend in the…
(Special thanks to our advisor Ram Kumar for his contributions to making this integration –and blog– possible!) One of the biggest challenges facing our digital economy is the security and…
When the showcase floor opened at KubeCon, a visitor walked up and said “What is ‘Continuous AppSec’ anyway?” Just over 600 days before our booth’s opening inquiry last week at…
This week at KubeCon + CloudNativeCon North America 2021, we announced the first major architectural upgrade to our Continuous Application Security Testing (CAST) solution, DeepFactor. This upgrade brought with it a…
With support for Kubernetes v1.20 and v1.21, and several key enhancements to our Insights and Integrations – including a new Jenkins Plugin – DeepFactor continues to offer next-gen Continuous AppSec…
Version 1.8 of the DeepFactor portal is now available. We’ve added exciting new features and enhanced our existing continuous AppSec observability capabilities to give you comprehensive visibility of your applications.…
When a developer wants to know what an application they’ve developed is doing, there are a number of different techniques that can be used. But before I dive…
Over the last couple of years, we’ve had deep conversations with more than 100 organizations regarding current AppSec practices and plans for adding security into their DevOps pipelines. Based on…
Recent cyber-attacks involving SolarWinds, the Colonial Pipeline, and JBS have put a spotlight on software supply chain vulnerabilities and highlight the immediate threat software supply chain attacks pose for organizations…
Have you ever contemplated why some teams, whether they are sports teams or business teams or any kind of team, move from good to great? Is it luck or conscious…
Are there no observability tools purpose-built for developers? When meeting with our customers’ dev teams, I’m continually amazed that basically nobody I talk with needs much selling on the reasons…
