All activity
The fully open source code analysis engine. Quickly analyze large code bases & fix security issues at scale.
Initiated by 10 rival security orgs, Opengreps promises to advance and commoditize static code security for the free use of all.
OpengrepThe open source code security engine
Nir Vleft a comment
๐ Exciting News from the Arnica Team! ๐ I'm thrilled to share with you our latest leap in application security: the launch of our AI-generated code risk mitigations feature. ๐ In our journey at Arnica, we've always been driven by our vision of a world in which software development is unimpeded by risk. Today, we're taking a major step forward in that journey. ๐ชWhat's New? Our new feature is...
AI-based code risk mitigationsAuto generate AppSec risk mitigation recs for developers
There are risks inherent in writing code. Risky third party packages, Infrastructure-as-code risks, and more. Arnica feeds developers AI generated recommendations, as they push code, to eliminate risks from ever finding their way into production.
AI-based code risk mitigationsAuto generate AppSec risk mitigation recs for developers
GitGoat is an open source tool built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repos without a risk to your production data.
GitGoatIntentionally Misconfigured GitHub User + Repo + Teams Data
Software supply chain attacks have caught the security community off-guard. Arnica, starting with GitHub & Azure DevOps, addresses the two primary root causes:
1) ๐ช excessive permissions to developer tools
2) ๐ฅธ lack of abnormal behavior detection
1) ๐ช excessive permissions to developer tools
2) ๐ฅธ lack of abnormal behavior detection
ArnicaBehavior based software supply chain security
Nir Vleft a comment
Hi Product Hunt, My name is Nir! I am one of the three co-founders of arnica.io. Iโve worn many hats in cyber security over the years โ sys admin, pen-tester, security architect, and Chief Information Security Officer (CISO). What really gets me excited about my work is making security easy and effective for developers and ops teams! In my last role, at one of the largest FinTech companies in...
ArnicaBehavior based software supply chain security
Nir Vleft a comment
Startup companies can get a good rate with Drata through Microsoft for Startups: https://startups.microsoft.com/en-US/blog/trusted-partner-benefits
DrataPut SOC 2 compliance on autopilot
Nir Vleft a comment
I use Safari on e-commerce websites, as it has native support for Apple Pay. I use it to test software compatibility as well. Other than that, I use 2 profiles on my chrome, so I can swap between the personal and company profile.
What browser do you use and why?
Pablo FatasJoin the discussion
Nir Vleft a comment
LastPass. If I don't have it, my computer is useless.
Chrome Extensions you can't live without
Lisa Bakhareva๐บ๐ฆJoin the discussion