The need to understand both custom and open source code, in a holistic way, is exactly why Micro Focus and Sonatype are coming together in partnership and powering a best-in-class, fully integrated application security platform for all Fortify customers.
Enterprises Need a Holistic View of Application Security
Open source use is common and problematic..
Micro Focus Fortify and Sonatype Deliver 360-Degree View of Application Security
Application Security as a Service
Benefits for Dev and Sec
Key features and updates include:
Simultaneously run SAST and SCA analysis
Integrated results deliver one platform for remediation, reporting and analytics
Examines fingerprints of over 65 million components – not file names and package manifests
Detects 70% more vulnerabilities than the NVD database alone