Integrations with Microsoft Visual Studio, Atlassian Jira, Eclipse and IntelliJ IDEA Help Save Development Teams Time and Money
Los Altos, Calif. — June 26, 2018 — Contrast Security, the pioneer in enabling “self-protecting” software with security safeguards built directly into critical applications, today announced new bug tracker and integrated development environment (IDE) integrations designed to enable development teams to deliver secure applications without disrupting productivity. New two-way integrations with development tools including, Microsoft Visual Studio Team Services and Atlassian Jira along with IDE plugins to support Microsoft Visual Studio, Eclipse and IntelliJ IDEA, deliver Contrast Security’s highly accurate vulnerability data directly to developers in their environment, helping them to build more secure applications and save precious time and money.
Security is often viewed as an obstacle to developer productivity as it requires development teams to expend additional effort across multiple tools to manage code and fix vulnerabilities. Contrast Security is now helping development teams overcome those hidden costs of security by offering developers a self-contained workflow that does not disrupt their productivity. The benefits of integrating with IDEs and bug-tracking tools include:
- Shifting security left by providing vulnerability information in context, so that developers can fix vulnerabilities as they’re working on relevant code
- Allowing developers to manage their security workload within a familiar, go-to tool – their IDEs
- Providing a single point of coordination across multiple tools to eliminate the extra overhead involved with switching user interfaces and workflows
“DevOps processes naturally drive organizations to shift security earlier in the software development life cycle and we’re helping to support this transition,” said Surag Patel, Chief Strategy Officer at Contrast Security. “With our new integrations, we’re raising awareness around security within the developer community and making it a natural part of a developer’s workflow.”
Contrast Security’s two-way bug tracker integration with Jira and Visual Studio Team Services (as well as Visual Studio Team Foundation Server) allows developers to manage vulnerabilities like any other bug, using a single-issue tracking tool. Vulnerabilities in Contrast Assess are directly exported to Jira or Visual Studio Team Services and assigned to a developer. Once the developer accepts and completes the work, closing the issue in their bug tracker will automatically close the issue in Contrast and inform the security teams.
In addition, Contrast Security is releasing a set of plugins to support the IDE offerings from Visual Studio, Eclipse and IntelliJ. Contrast Security’s new IDE plugins allow developers to see the vulnerabilities identified by Contrast Security directly within the IDE they are using. Developers also have the ability to view vulnerabilities in their code by jumping directly to the source of the vulnerability, enabling them to both find and fix vulnerabilities at an accelerated rate.
“Delivering application security results via the IDE is not just efficient, it also meets developers on their terms,” noted Sonny Nanda, Director of IT at AXS. “The IDE is the work hub for many development tasks, so it’s a natural place to provide feedback and empower developers to eliminate security flaws early in the software lifecycle.”
Rashmi Gopinath, Partner at M12, Microsoft Corp. said, "By integrating with Microsoft Visual Studio, Contrast Assess is able to help third-party software development teams get the information they need to make software that’s more secure.”
About Contrast Security:
Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development, to operations, to production. More information can be found at www.contrastsecurity.com or by following Contrast on Twitter at @ContrastSec.
For more information:
LEWIS Communications for Contrast Security