BoostSecurity on Wednesday emerged from stealth mode with a DevSecOps automation platform and $12 million in seed funding.

BoostSecurity has developed what it describes as a zero friction DevSecOps automation platform that can help organizations quickly detect and fix vulnerabilities in their code. It provides visibility into software pipelines, allows users to prioritize and address issues, and enables organizations to define security policies.

Developers are notified about security issues while they are coding and the organization can keep track of their progress. In addition, customers can generate SBOMs across their entire supply chain.

The company provides an open source app that is available on GitHub. Customers can also use other open source scanners that integrate with BoostSecurity, including Bandit, Brakeman, Trivy, Semgrep, GoSec, GitLeaks, and Checkov.

BoostSecurity headquarters are in Montreal, Canada, but the firm also has operations in California. The company has obtained funding from Sorenson Capital, Hoxton Ventures, Golden Ventures, Firebolt Ventures and Transform VC, and it plans on using the money for go-to-market and engineering initiatives.

“BoostSecurity empowers organizations of any size to implement the same DevSecOps processes and technologies that the most advanced organizations have refined, ultimately closing the trust gap between DevOps and security,” said Zaid Al Hamami, CEO at BoostSecurity. “Our platform enables early detection and remediation of security vulnerabilities at every layer of the stack while ensuring the continuous integrity of the software supply chain at every step from the developer’s keyboard to cloud production.”

By Eduard Kovacs on Wed, 16 Nov 2022 13:28:29 +0000
Original link