Orca safety He has introduced a brand new integration that can enable him to scan Bitbucket repositories for faulty configurations, uncovered secrets and techniques and vulnerabilities.
In response to Orca Safety, the code scan is a vital ingredient of any safety program, and when builders use public code repositories, CLI safety instruments in every repository and CI/CD pipes have usually combine manually. This may add normal improvement bills, create friction between security and improvement groups, and it might be tough to continuously cowl all repositories.
With the orca Bitbucket software, security scans are carried out routinely each time a department merges. These scans will present alerts and contextual concepts on how one can treatment safety issues.
It additionally scan every extraction software to detect just lately launched issues and stop the questionable code from merging into the most important code base till the issues are solved.
“By eliminating guide security configuration and integrating security immediately into improvement workflows, the Orca Bitbucket software provides smarter, sooner and simpler purposes safety,” the corporate wrote in a Weblog.
The Orca Bitbucket software can even periodically scan inactive repositories to make sure that newly found vulnerabilities don’t go unnoticed.
The appliance presents a code security board that gives visibility in all Bitbucket repositories and its safety findings.
Bitbucket integration follows comparable integrations that Orca Safety already has with Github, Gitlab and Azure Devops.
