Cycode Launches CI/CD Pipeline Monitoring Answer (Cimon) to Forestall Provide Chain Assaults

SAN FRANCISCO, June 12, 2023 – Cycode, the main utility safety platform, at the moment introduced the launch of Cimon, a seamless resolution that enhances the safety of CI/CD pipelines to stop software program provide chain assaults akin to those who focused SolarWinds and Codecov.  

CI/CD pipelines presently lack visibility, making them probably the most delicate hyperlink within the SDLC, and plenty of organizations have 1000’s of unmonitored pipelines inclined to produce chain assaults. Cimon stops these assaults by using the progressive resolution of eBPF (prolonged Berkeley Packet Filter), a expertise that gives visibility into the construct system, together with thwarting malicious habits, with minimal disruption.

With this visibility, Cimon can examine – community connections, working processes and file modifications throughout the CI pipeline — to be taught customary behaviors. This information permits Cimon to detect and forestall abnormalities, together with real-time threats and zero-day assaults.  

“We provide free and simple integration with many CI/CD instruments for organizations to safe their pipelines directly time or errors,” stated Ronen Slavin, co-founder and CTO of Cycode. “As Cimon saves time in vulnerability and risk response procedures, groups can implement and undertake safety measures with out fear of error or exhaustion.”

With Cimon, organizations can anticipate: 

Prevention of CI Assaults: With low effort and seamless integration, customers stay protected towards all doable assaults on the CI pipeline, together with zero-day assaults 

Instantaneous Menace Detection: Cimon prevents assaults akin to malicious package deal set up, typosquatting, repojacking, dependency confusion, dependency hijacking and different dependency assaults 

Straightforward Integration: Cimon is developer pleasant and is well built-in with standard CI/CD instruments, complete documentation requiring minimal configuration and integration with the event setting, akin to GitHub 

Cimon is the brand new superhero for organizations’ CI/CD pipelines and is free to make use of. Extra details about Cycode and Cimon is accessible on-line. 

About Cycode

Cycode’s trendy method to utility safety permits organizations to successfully safe their cloud-native functions with cost-efficient use of tooling and workers throughout the SDLC. The Cycode platform makes AppSec instruments higher by way of its Data Graph, which supplies full context of the SDLC to enhance accuracy and scale back mean-time-to-remediation (MTTR). Cycode merges the highest eight AppSec instruments into the trade’s most superior and complete AppSec platform. By correlating knowledge throughout these instruments Cycode provides new capabilities, like Pipeline Composition Evaluation which identifies weak dependencies and safety points missed by legacy instruments like SCA and SAST — throughout your entire SDLC; pinpoints weak dependency areas; and prioritizes threats by exploitability.

Leave a Reply

Your email address will not be published. Required fields are marked *