Inserting security in GitLab merge requests!
Inserting security in Gitlab merge requests!ShiftLeft Inspect introduces an easy way to insert static code analysis in merge requests workflow in GitLab. To know more, read on.GitLab offers merge request workflow in their premium version that is analogous to pull requests in Github, although they differ slightly in their implementation ... Read More
Inserting security in pull requests — in a developer friendly way
Inserting security in pull requests — a developer friendly wayShiftLeft Inspect now offers a self service platform that enables developers to insert security (SAST) in their workflow, in a developer friendly way! This post describes a simple four part process to deploy static code analysis tools in your pipelineA brief asideRecently in ... Read More
Large Applications, Monoliths — Struggling with code analysis? Read on!
Large Applications, Monoliths — Struggling with code analysis? Read on!ShiftLeft Ocular makes code analysis of large applications fast, automated and very very efficient. It can analyze an entire linux kernel with in 40–50 minutes.Our customers recently challenged us with a unique use case — The problem of analyzing code of monolithic and very large ... Read More
How ShiftLeft is able to analyze 1 million LoC under 15 minutes?
How ShiftLeft is able to analyze a million lines of code in just under 15 minutes?ShiftLeft code analysis technology uses a singular code representation “code property graph” to perform all types of analysis. This is unlike legacy SAST vendors that require creation and correlation of 6 to 7 types of ... Read More
Large Applications, Monoliths — Struggling to do code analysis? Read on!
Large Applications, Monoliths — Struggling with code analysis? Read on!ShiftLeft Ocular makes code analysis of large applications fast, automated and very very efficient. It can analyze an entire linux kernel in less than 40 minutes.Our customers recently challenged us with a unique use case — The problem of analyzing code of monolithic and very ... Read More
Detect business logic vulnerabilities during development with ShiftLeft Ocular
ShiftLeft Ocular is the only vulnerability analysis solution that can detect business logic vulnerabilities during development time, reducing the attack surface before production. It is free to download with a 14 day trial.Business logic vulnerabilities — the last bastionSoftware code bases are unique, their business logics are unique, however legacy software vulnerability ... Read More
Vulnerability Dashboard : Measure your progress to deliver secure apps
Vulnerability Dashboard: Measure security quality of your releases over timeShiftleft is introducing a new Vulnerability Dashboard — A singular view of application security quality metrics including a list of vulnerabilities based on static/runtime analysis of applications. Engineering and AppSec teams can use these metrics to measure progress of their security improvement over ... Read More
ShiftLeft is 2019 RSA Innovation Sandbox Finalist!
What a way to start 2019!Our groundbreaking innovation, ShiftLeft Ocular, has been nominated as a top ten finalist of the prestigious Innovation Sandbox Contest that’s run annually at the RSA Conference.It is a great feeling to be recognized by our industry peers for our work and how it transforms the ... Read More
Oakland Port, Global Free Trade and Dev-Ops
The Port of Oakland, Global Free Trade and Dev-OpsAbstract — In the mid-1960’s, the United States military was struggling with a logistics nightmare between Oakland and Saigon ports. The resultant, container-driven automation of the Port of Oakland’s logistics triggered a revolution in global supply chains that unleashed global free trade. As an ... Read More
