Security Reviewer suite provides a bi-directional integration with your DevOps

Open

Integration are made by:

•Developer’s IDE

• CI/CD plugins

• REST API

• CLI Interface

• External Dashboards integration

• ITSM Integration

• SCM Integration

• Package Managers integration

• Bug Trackers integration

• Automated Notifications to external systems like Slack, Microsoft Teams and any Webhooks-compliant solution.

Software Bill Of Materials

Multiple efforts between government and industry are attempting to define Software Transparency. Some of these efforts will lead to increased compliance or regulatory requirements. Software Transparency is often achieved through the publishing of bill-of-materials (BOM). A BOM is synonymous to the list of ingredients in a recipe. Both are an implementation of transparency.

There are multiple SBOM standards including CycloneDX, SPDX, and SWID, each having their own strengths and use-cases they were designed to solve.

Security Reviewer Ecosystem support all those standards.