GitLab Acquires Cloud Security Firm Oxeye to Enhance Application Security Features

GitLab has acquired cloud security firm Oxeye, aiming to enhance its application security features, particularly focusing on expediting the development of its Static Application Security Testing (SAST) roadmap.

Gitlab, offering the most comprehensive AI-powered DevOps platform, announced its acquisition of Oxeye, the provider of a cloud-native application security and risk management solution. This strategic move aims to expedite GitLab’s roadmap for Static Application Security Testing (SAST). Oxeye’s capabilities will also augment GitLab’s software composition analysis and compliance tools.

Oxeye’s advanced capabilities will seamlessly integrate with GitLab’s existing software composition analysis and compliance tools, enhancing its overall suite of offerings in the realm of cybersecurity and development operations.

GitLab first introduced its Static Application Security Testing (SAST) in the year 2017. From that point forward, the platform has continuously worked on improving its application security features, all to promote SAST as a crucial element within the GitLab DevSecOps framework. This involves not only strengthening its already strong offerings with state-of-the-art advancements in Artificial Intelligence and Machine Learning (AI/ML) but also reinforcing the effectiveness of Static Application Security Testing (SAST) throughout the entire software development process. This strategic approach includes an ongoing effort to improve the ratio of useful information to irrelevant noise, thus reducing the frequency of incorrect alerts that often plague traditional SAST solutions.

Check more Renesas Electronics to Buy Design Software Company Altium for $5.9 Billion

The acquisition of Oxeye to its top-tier scanning technology is a strategic move for GitLab in advancing its SAST roadmap. The integration of Oxeye’s top-notch SAST scanner will greatly simplify vulnerability management and remediation processes for developers. Enabling developers to actively contribute to the security of their products necessitates precise and targeted identification of critical and exploitable weaknesses. By leveraging Oxeye’s capabilities, GitLab is poised to actualize this vision.

Beyond SAST, Oxeye offers the capability to trace vulnerabilities from “code to cloud” by providing runtime context through diverse data collection and analysis methods. GitLab plans to leverage these capabilities to enhance its software composition analysis and compliance tools, aiding customers in swiftly identifying and resolving all application-layer risks.

The collaboration between GitLab and Oxeye teams, leveraging their combined strength and security expertise, will assist more organizations in mitigating security and compliance risks as they expedite their digital transformation initiatives.

About GitLab:

GitLab is an all-in-one DevOps platform, offered as a single application, revolutionizing collaboration and software development for Development, Security, and Ops teams. It streamlines the entire process from idea to production, cutting cycle time from weeks to minutes, minimizing development costs, and accelerating time to market, all while boosting developer productivity.

About Oxeye:

Oxeye is the provider of a cloud-native application security and risk management solution. Their vision is to assist organizations in creating secure applications with confidence in the risk-free nature of their code, requiring minimal effort. Oxeye’s approach involves intelligently combining and correlating diverse data sources and security scanners from all phases of the software development lifecycle. By generating contextual exploitation graphs for each vulnerability, they aim to eliminate over 90% of vulnerabilities that are not exploitable.

Check more SaaS Company TheyDo Secures $34 Million in Funding