Dear XebiaLabs community,
We are pleased to announce the release of two new integrations for XL Release 8.0.0 and later. Using XL Release and new integrations with Fortify On Demand and Checkmarx, you can build application security testing into your release processes and ensure that software delivery pipelines across your organization include the security analysis that is required to meet compliance requirements.
Fortify on Demand
We have expanded our integration with Fortify tools for application security testing. In addition to support for Fortify Software Security Center (SSC), which can evaluate code against your selected security metrics, XebiaLabs now supports Fortify on Demand, which provides software security analysis as a service. The Fortify on Demand integration for XL Release enables you to build static, dynamic, and mobile security testing into your software releases.
XL Release also allows you to add Fortify on Demand analysis results to release dashboards, so everyone involved in the release process can see test results at a glance. You can also add Fortify on Demand results to report dashboards so teams can analyze historical test results and easily meet audit reporting requirements.
The Checkmarx integration for XL Release enables you to add source code security tests, open source license compliance checks, and open source security scans to your software release pipelines. This integration supports Checkmarx Static Application Security Testing (CxSAST), which scans uncompiled code stored in Git or Subversion repositories for security vulnerabilities. The integration also supports Checkmarx Open Source Analysis Security Testing (CxOSA), which analyzes open source components used in your applications and verifies compliance with open source licenses.
XL Release also allows you to add Checkmarx analysis results to release dashboards, so everyone involved in the release process can monitor identified security issues as well as security and license risks in open source libraries. You can also add Checkmarx results to report dashboards so teams can analyze historical test results and easily meet audit reporting requirements.
You can download the newly available software at the XebiaLabs Software Distribution site.