Anthropic is an AI safety company that builds Claude, a family of large language models designed for helpfulness, harmlessness, and honesty, available through API and the Claude.ai consumer...
Tools that analyze source code for security vulnerabilities during development.
Anthropic is an AI safety company that builds Claude, a family of large language models designed for helpfulness, harmlessness, and honesty, available through API and the Claude.ai consumer...
Aikido Security brings together code, cloud, dependency, and runtime security workflows in a more approachable platform for modern engineering teams.
Smart contract formal verification platform that proves correctness of DeFi protocols and critical blockchain code.
Anchore provides container security and software supply chain compliance tools that help organizations enforce security policies for container images throughout the development pipeline.
Application security platform scanning for vulnerabilities in code.
Automated vulnerability fixer platform generating code fixes for SAST findings automatically.
Open source IaC security scanner from Checkmarx finding security vulnerabilities and compliance issues in Terraform, Ansible, and more.
Chef by Progress is an infrastructure automation platform using Ruby-based recipes for configuration management, compliance, and application delivery.
Open source static analysis security vulnerability scanner specifically for Ruby on Rails applications.
Black Duck provides software composition analysis that helps organizations manage security, quality, and license compliance risks from open-source and third-party code.
Open source static code analysis tool for IaC detecting security vulnerabilities and compliance violations in Terraform and more.
Kubernetes-native policy engine for validating, mutating, and generating Kubernetes configurations with YAML policies.
Cequence Security provides API security and bot management that protects business-critical applications from automated attacks, abuse, and fraud.
AccuKnox provides zero-trust runtime security for containers and Kubernetes using eBPF-powered monitoring and dynamic policy enforcement.
Bito provides an AI coding assistant with code review, explanation, security scanning, and performance analysis built into the IDE.
Open source security tool for AWS, Azure, GCP, and Kubernetes performing security assessments and compliance checks.
Bishop Fox provides continuous attack surface management and offensive security testing through its Cosmos platform and expert consultants.
CircleCI is a continuous integration and delivery platform that automates build, test, and deployment pipelines. It supports cloud and self-hosted environments with powerful parallelism and...
Application security platform providing SAST, DAST, SCA, and manual penetration testing in a single cloud-based solution.
Open source tool from Turbot for querying cloud infrastructure with SQL using dynamic tables for over 140 cloud services.
Autonomous security platform for DevSecOps teams with remediation
Panto AI provides AI-powered code review that automatically analyzes pull requests, identifies bugs, security issues, and code quality problems, and suggests improvements.
AI security platform for finding and fixing code vulnerabilities
Cloud-based code analysis service detecting bugs, vulnerabilities, and code smells in projects hosted on GitHub and other platforms.
GitGuardian is a code security platform that detects secrets and sensitive data in source code, preventing credential leaks in repositories, CI/CD pipelines, and developer environments.
Fast SAST and SCA with AI-assisted remediation
Open source security scanner from Aqua for Terraform code finding potential misconfigurations before infrastructure is provisioned.
Open source static analysis tool for IaC from Bridgecrew scanning Terraform, CloudFormation, and Kubernetes for misconfigurations.
Application security platform providing code risk prioritization across SAST and SCA findings.
Code security platform providing secret detection, code access monitoring, and policy enforcement for source code repositories.
Continuous fuzz testing platform integrated with CI/CD
DeepSource's autofix feature automatically fixing discovered code quality and security issues.
Bearer is an open-source static analysis tool that scans code for security risks and data privacy violations in application code.
Arcjet provides security as code for developers with bot detection, rate limiting, email validation, and attack protection that integrates directly into application code.
Code security review platform providing contextual pull request analysis for developer teams.
AI-powered code analysis platform that detects anti-patterns, design issues, and code vulnerabilities across repositories.
Automated code security platform offering AI-powered fixes for SAST and SCA findings in pull requests.
Competitive smart contract audit platform where wardens compete to find vulnerabilities for prize pools.
Checkmarx provides a comprehensive application security platform including software composition analysis, SAST, DAST, and API security for enterprise DevSecOps programs.
Open source SAST tool for detecting and preventing hardcoded secrets in Git repositories with fast scanning.
Smart contract security platform offering audits, developer education, and the Aderyn open-source analyzer.
Open source Kubernetes security platform from ARMO scanning clusters for misconfigurations, vulnerabilities, and compliance issues.
Continuous vulnerability scanning SaaS for SMB
TruffleHog by Truffle Security scans code repositories, file systems, and other data sources for accidentally committed secrets and credentials using regex and ML detection.
Open source data integration platform for security and compliance that syncs cloud infrastructure data to any database.
OpenText application security tool providing static and dynamic analysis, SCA, and runtime protection for enterprise software.
Cloudsmith is a cloud-native artifact management platform with security scanning and global distribution.