Our New GitHub Code Scanning Integration

🦅 StackHawk is proud to be the first Dynamic API and Application Security Testing tool integrated with GitHub code scanning!

Software teams can now run API and application security testing whenever they check-in code in GitHub. And they can be notified about new findings immediately in the GitHub security tab. 

What does this mean for your team? Consistent security testing on every PR, notifications where you are already working, and remediation as soon as a new vuln pops up.

Check out our overview video or read the blog to learn how to enable StackHawk code scanning alerts in your repos. 

Read the Blog

Watch the Video

The Changelog: New Features to Kaakaww About

• OpenAPI Spec Verification. Nobody is perfect. Which is why we will now check your OpenAPI Specification for errors before kicking off a scan. If errors are found, you will be notified so you can quickly fix and then start scanning your API for vulns.

• Git Repo Mounting. We are making configuration across your entire team a breeze by allowing you to instead of a Docker volume mount. 

• Custom Auth and API Discovery Requests. Does your app have custom auth or require complex API discovery? StackHawk can now load custom scripts before any authentication or API discovery traffic to make sure your scan is successful. 

• Application Page UI Updates. Finding your application details and settings is now easier. Click through from the Applications page to customize application settings and optimize scans by defining the backing technologies.

Other Happenings

📺 Hawk Talks

• StackHawk Overview

• StackHawk is Now Integrated with GitHub Code Scanning

• Scott Gerlach @ Cloud-Native Days

• [From the Archives] ZAP Deep Dive: Ajax Spider

📖 Reading Material

• Dynamic API and Application Security Testing Now Integrated With GitHub Code Scanning

• Golang SQL Injection Guide: Examples and Prevention

• [From the Archives] Developer-Centric Application Security Testing with DAST and SCA 

📽 Virtual Events

• September 1-2: SpringOne

• September 14: CTO Summit - Structuring Your Org

• September 20-21: DevOpsDays Portland

• September 24: OWASP 20th Anniversary

• September 28-30: DevOps World

• September 29: Secure Coding Virtual Summit

💼 Jobs @ StackHawk

• Developer Advocate

• Head of Product Management

• Account Executive

• Head of Marketing

❤️ Give Us Some Love

Share the goodness of developer-centric application security. We are always grateful for recommendations and referrals! We’d love for you to share StackHawk with your friends and colleagues, or leave us a review on g2.