TEL AVIV, Israel , July 14, 2022 /PRNewswire/ — Scribe Safety, a number one software program provide chain safety options supplier, introduced at the moment the discharge of Scribe Integrity, a code integrity validator that authenticates open-source and proprietary supply code, and an integral constructing block of its platform fixing the software program provide chain safety problem. Scribe Integrity gives builders with an added layer of visibility, permitting builders peace of thoughts that the code they’re utilizing is protected. Scribe is concurrently introducing its open-source Github safety venture, GitGat.
In 2021, software program provide chain (SSC) assaults greater than tripled, with current assaults on SolarWinds, CodeCov, and Log4Shell underscoring the rising threat of such assaults to enterprises.
DevSecOps and safety groups usually give attention to software program vulnerabilities, overlooking the danger of tampering with software program within the construct course of. Scribe bridges this hole in a sensible method by offering a handy work device that routinely studies integrity validation inside a trusted software program invoice of supplies SBOM.
Scribe leverages the precept of ‘hash every little thing, signal every little thing’, using open-source intelligence that it collects on open-source dependencies. On this first launch, Scribe’s resolution addresses the extensively used Node.js and the favored npm package deal supervisor, which have lately suffered from a mess of assaults.
Scribe’s extra launch, GitGat, is a Coverage-as-Code device, using Open Coverage Agent (OPA), an open supply venture, that addresses customers’ safety posture. GitGat permits customers to periodically run studies to achieve perception into the altering safety panorama of the group. As GitGat evolves, it can cowl extra components of the CI/CD toolchains.
“As software program provide chains are an ignored nook of the cyber world, they’ve turn out to be an more and more enticing assault vector for hackers,” mentioned Scribe CEO and Co-founder, Rubi Arbel. “We’re excited to be introducing a developer-first, sensible device that can give DevSecOps and safety practitioners the reassurance they should belief the software program they construct and use.”
About Scribe
Based by cyber safety and cryptography specialists, Scribe Safety develops a novel software program provide chain safety resolution to extend belief in software program merchandise. For extra data go to https://scribesecurity.com/
