Developer tools to accelerate AppSec integration across existing agile or DevOps processes including: IDE plug-ins, code uploads from build or Continuous Integration (CI) servers, and native integration to bug trackers
Open source component analysis, powered by Sonatype, to identify publicly disclosed vulnerabilities and license risks.
Real-time vulnerability identification and reporting with Fortify Security Assistant (with subscription only).
The new SDLC requires an expanded scope of application security - from development, through traditional scanning and testing and into production. Micro Focus Fortify offers end-to-end solutions.