News Article

  1. You are here:    Home
  2. ...in the news
  3. News Article
ShiftLeft focuses on developer productivity with next generation static analysis solution
Date: Jun 30, 2020
Author: Christina Cardoza
Source: San Diego Times ( click here to go to the source)
Featured firm in this article: Shiftleft Inc of Santa Clara, CA



ShiftLeft has announced an updated version of its NextGen Static Analysis solution. The release features new workflows designed to help developers improve security and enhance productivity.

According to the company, developer productivity suffers when security isn't automated or integrated into the life cycle. A recent ShiftLeft survey found 96% of developers felt a disconnect between development and security workflows, which impacted productivity. Additionally, respondents revealed developer-friendly security workflows were a higher priority than protecting apps in production environments.

"The only way to deliver security at the pace of modern SDLCs is to create a culture of individual developer accountability for the security of the code they write. However, this demands new AppSec solutions purpose-built for today's requirements," said Manish Gupta, CEO of ShiftLeft. "Based on our new survey, it's clear developers feel ad hoc security processes and the tools they have available to them today aren't helping. We've always put productivity and security at the foundation of our platform, and our customers' results demonstrate that the new workflow is significantly improving their security postures while increasing developer productivity."

The latest release features:

The ability to automate code analysis with every pull/merge request
Immediate security feedback
Ability for developers to fix vulnerabilities within their development environment
Ability to app security teams to write security-focused build rules
Best practices through security insights
Unlimited concurrent scans to eliminate bottlenecks
Ability to scan source code within the organization
Self-service on-boarding
Customizable workflows

"This developer-centric approach to code analysis greatly increases security and productivity by delivering the right vulnerability to the right developer at the right time. Mean time to remediation (MTTR) is reduced because vulnerabilities get fixed while the code is still fresh in the developers' minds, and vulnerable code doesn't become deeply interconnected because security build rules prevent it from entering the master branch," the company wrote in its announcement.

  Recent News

11132023
Selecta Biosciences Announces Merger with Cartesian Therapeutics
  Cartesian Therapeutics Inc (3 awards)
09252023
AcuraStem Enters into a License Agreement with Takeda to Advance PIKFYVE Therapeutics
  AcuraStem Inc (5 awards)
08222023
Grander Closes Acquisition of PolarityTE, Inc. Assets
  PolarityTE Inc (1 awards)
08082023
Alchemist Completes Acquisition of Aqueous Resources LLC, a Leader in Industrial Brine Pre-Treatment Solutions and Direct Lithium Extraction
  Aqueous Resources LLC (1 awards)
08082023
Arcfield Acquires Strategic Technology Consulting
  Strategic Technology Consulting LLC (1 awards)
08072023
Xenesis to send optical terminal to ISS platform
  Xenesis Inc (2 awards)
07202023
Advanced Sustainable Aviation Fuels Gain Momentum as AIR COMPANY Announces Collaboration with Air Canada
  Air Company Holdings Inc (2 awards)
07182023
Durham-based Novan Inc. sells all assets, files for bankruptcy
  Novan Inc (8 awards)
07172023
Novartis Acquires DTx Pharma in Potential $1B Deal
  DTx Pharma LLC (5 awards)
05312023
Adaract Awarded $400,000 from AngelNV and State Small Business Initiative (SSBCI)
  ADARACT (1 awards)