Checkmarx Announces Open Beta for Scala
February 06, 2017

Checkmarx announced open beta support of the Scala programming language.

The new capability adds the ability to analyze and remediate security risks and vulnerabilities exposed in projects written using Scala code.

Checkmarx is the first static analysis solution to support Scala. The added capability not only allows the detection of vulnerabilities within Scala code, but also the ability to identify security and compliance issues in the flows between Scala and Java, and vice versa – enabling applications built using both Java and Scala to be fully analyzed using a single Checkmarx scan. With Checkmarx, users can identify a wide range of potential vulnerabilities in Scala code such as code injections, connection string injections, reflected XSS, SQL injections, stored XSS and many more.

The growing success of the Scala programming language has incentivized organizations globally to shift away from using Java, with Scala predicted to become a preferred choice by developers. Due to the rise in popularity, there is an urgent need to address the risks that may be exposed if coding is not done in a secure manner. Without a way to analyze Scala code statically the industry will soon find itself combating breaches exposed by bad Scala coding techniques.

“We are seeing a growing market need for Scala, especially from our enterprise customers,” says Nir Livni, VP of Products, Checkmarx. “Scala is increasingly becoming the preferred language of choice for many development organizations. In order to deliver secure Scala applications, developers are looking for a solution that guides them where and how to fix vulnerabilities in their Scala source code.”

Checkmarx CxSAST addresses more than 20 different programming languages, and Scala is its latest addition. By empowering organizations to seamlessly integrate the source code analysis of Scala within the software development life cycle, organizations can now securely shift from Java to Scala while keeping the highest rate of code security standards and ensuring a secure software development life cycle.

Share this

Industry News

July 15, 2020

Platform9 announced key additional building blocks in delivering the next generation SaaS managed Kubernetes experience.

July 15, 2020

Progress announced the release of Corticon.js, the new serverless rules engine created to quickly and easily build, test and deploy rules to critical JavaScript applications.

July 15, 2020

Portshift announced the company's new K8SHIELD Framework and the introduction of context aware security policy enablement.

July 14, 2020

Perfecto by Perforce announced the launch of Android emulators and iOS simulators in its cloud testing platform.

July 14, 2020

SmartBear released new DevOps features in SwaggerHub, the company's API design and documentation platform.

July 14, 2020

Traceable, a new end-to-end application security monitoring platform, launched from stealth today with $20M in series A funding from Unusual Ventures and BIG Labs.

July 13, 2020

Docker announced a collaboration with Amazon Web Services (AWS) to simplify the lives of developers by allowing them to focus on application development, streamlining the process of deploying and managing containers in AWS from their local development environment.

July 13, 2020

Perforce Software announced the release of a combined JRebel and XRebel plugin for the Eclipse IDE.

July 13, 2020

Spectro Cloud announced that its first product—Spectro Cloud—is now generally available.

July 09, 2020

ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.

July 09, 2020

RunSafe Security announced a partnership with JFrog that will enable RunSafe to supercharge binary protections via a simple plugin that JFrog users can deploy within their Artifactory repositories and instantly protect binaries and containers.

July 09, 2020

LeanIX closed $80 million in Series D funding led by new investor Goldman Sachs Growth.

July 08, 2020

Afi.ai introduced Afi Data Platform, a cloud-based replication and resiliency service that helps to monitor, predict downtime and recover K8s applications.

July 08, 2020

D2iQ announced the release of Conductor, a new interactive learning platform that enables enterprises to access hands-on cloud native courses and training.

July 08, 2020

SUSE entered into a definitive agreement to acquire Rancher Labs.