BluBracket has enhanced its code security solution to identify and eliminate top risks in code that include secrets in code, exposed PII, access risks, and code leaks. The BluBracket Code Security Platform consolidates and acts on security risks from both the internal and external software supply chain. BluBracket scans code to protect software supply chains by preventing, finding, and fixing risks in source code, developer environments, and pipelines.
The platform offers complete view of internal code supply chain health: severity ranking of individual risks combined with sophisticated filtering tools make it easy to find actionable issues now, while aggregate scoring of severity across repos gives users a clear view of overall security health.
In addition to the detection of secrets, PII, and non-inclusive language in code, git/CI configuration and access risks, and detection of code leaks, BluBracket has partnered to add dependency vulnerability checks powered by Snyk, Infrastructure as Code risks powered by Checkov, and code static analysis risks powered by Semgrep.
Also developer-first support for GitHub, GitLab, Bitbucket, Azure DevOps, and Gerrit brings security to existing workflows, rather than forcing developers to bring their workflow to security.
BluBracket is showcasing its enhanced code security solution at RSA Conference 2022 in San Francisco from June 6-9, 2022.