Secure Code Warrior launch SCW Trust Agent for secure coding
Secure Code Warrior has announced the launch of its new product, SCW Trust Agent, which evaluates the specific security skills of developers for each code commit.
This advancement aims to give Chief Information Security Officers (CISOs) and application security teams a comprehensive view of their organisations' software development security posture.
SCW Trust Agent arrives following the introduction of SCW Trust Score, which measures the security stance of developer teams within organisations.
Together, these tools utilise over 20 million learning data points collected from 250,000 developers globally. By integrating these quantitative metrics with Secure Code Warrior's agile learning platform, the company is striving to enhance secure software development processes.
Pieter Danhieux, Co-founder and CEO of Secure Code Warrior, commented: "At Secure Code Warrior, we are unlocking new value for CISOs by giving them an easy-to-deploy solution to measure the health of code commits and visibility into the hundreds of source code repositories in their organisation."
"Our innovations are putting organisations in a better position to bridge the visibility gap between a developer's skill sets and quality of code produced without sacrificing development velocity."
The SCW Trust Agent is compatible with any Git-based code repository, including GitHub, GitLab, and Atlassian Bitbucket.
For every commit, it assesses whether the developer responsible has the required secure coding skills in the language used. It then rates the health of the commit and compiles these ratings across all repositories.
This new tool provides administrators with increased control and flexibility. Policies and criteria can be established to ensure that developers meet a baseline set of standards and expectations before they start coding.
If there are deficiencies in a developer's skills, they can refer to the SCW agile learning platform to enhance their language-specific knowledge and competencies.
SCW Trust Agent delivers several key benefits, including improved security controls through customizable policy configurations based on project requirements. It provides comprehensive visibility with actionable insights into the security status of every commit across all code repositories.
Additionally, it enables developer-led security at scale, allowing application security teams to focus on the most critical security reviews while delivering projects securely and quickly.