Skip to main content

Code Security Overview

Lacework now offers Code Security offerings for code analysis including Software Bill of Materials (SBOM), Software Composition Analysis (SCA) and Static Application Security Testing (SAST). Generating an SBOM gives you insight into the software components used across your organization, while SCA scans your dependencies for known vulnerabilities and SAST identifies potential vulnerabilities in your code.

Both SCA and SAST provide automated testing to identify and alert you to vulnerabilities in your code prior to deployment. These insights enable you to take action earlier in the process to mitigate potential threats. For example, a user may submit a pull request that includes code with known vulnerabilities. Lacework's Code Security offerings help you identify a known or potential vulnerability, where it was found, and additional context that enables you to fix the vulnerability before it is deployed.

Currently, SCA and SAST can be used with GitHub Actions, BitBucket, and the Lacework CLI. Lacework Code Security enables you to generate a Software Bill of Materials (SBOM) using the Lacework CLI.

Support for the Lacework Console is coming soon.

note

SCA and SAST are currently in beta for select Lacework customers. Contact your Lacework Representative for more information.