Contrast Security Releases Free DevSecOps Solution
August 13, 2018

Contrast Security announced the availability of Contrast Community Edition, a free solution to protect web applications and APIs from attacks and empower development and security teams to improve the security of both custom code and third-party components.

Contrast Community Edition is a completely free, full-strength, DevSecOps solution that allows development, security and operations teams to deliver secure software on time to meet growing business requirements.

The solution is designed to help small teams building Java applications and APIs protect against the most common security flaws, including the Open Web Application Security Project (OWASP) top 10 vulnerabilities.

The solution enables organizations to assess open source libraries and frameworks as well as custom code for security vulnerabilities, and stop attacks by preventing vulnerabilities from being exploited in production applications.

"The heart of the problem is that software security is a complex issue and development teams do not have access to simple, effective tools that work the way they do," said Jeff Williams, Co-Founder and CTO, Contrast Security. "The legacy products designed to help secure software scanners and web applications firewalls are inaccurate, require experts and involve manual processes. It's time to break the cycle of 'vulnerable software' and for application security to be accessible to all."

Contrast Community Edition delivers the power of Contrast Protect and Contrast Assess, which are used by the largest global enterprises, but for individual developers and smaller teams. From individual projects using Community Edition to organizations of all sizes using Contrast Assess and Protect, Contrast provides the latest in application security technology to finally make all software secure.

Other languages including .NET, Node, Ruby, and Python will be coming to Community Edition at a later date.

Share this

Industry News

December 01, 2022

Salesforce introduced a new Automation Everywhere Bundle to accelerate end-to-end workflow orchestration, automate across any system, and embed data and AI-driven workflows anywhere.

December 01, 2022

Weaveworks announced that Flux, the original GitOps project, has graduated in the Cloud Native Computing Foundation (CNCF®).

December 01, 2022

Tigera announced enhancements to its cluster mesh capabilities for managing multi-cluster environments with Calico.

December 01, 2022

CloudBees achieved the Amazon Web Service (AWS) Service Ready Program for Amazon Elastic Compute Cloud (Amazon EC2) Spot Instances.

November 30, 2022

GitLab announced the limited availability of GitLab Dedicated, a new way to use GitLab - as a single-tenant software as a service (SaaS) solution.

November 30, 2022

Red Hat announced an expansion of its open solutions publicly available in AWS Marketplace.

November 30, 2022

Sisense announced the availability of the Sisense CI/CD Git integration module.

November 29, 2022

Codenotary announced TrueSBOM for Serverless, a self-updating Software Bill of Materials (SBOM) for applications running on AWS Lamda, Google Cloud Functions and Microsoft Azure Functions that is made possible by simply adding one line to the application source code.

November 29, 2022

Code Intelligence announced its open-source Command-Line Interface (CLI) tool, CI Fuzz CLI, now allows Java developers to easily incorporate fuzz testing into their existing JUnit setup in order to find functional bugs and security vulnerabilities at scale.

November 29, 2022

Parasoft announced the 2022.2 release of Parasoft C/C++test with support for MISRA C:2012 Amendment 3 and a draft version of MISRA C++ 202x.

November 28, 2022

Kasm Technologies announced the release of Kasm Workspaces v1.12, providing major enhancements to its portfolio of digital workspaces delivering Desktop as a Service (DaaS), Virtualized Desktop Infrastructure (VDI), Remote Browser Isolation (RBI), Open-Source Intelligence Collection (OSINT), Training/Sandboxes, and Containerized Application Streaming (CAS).

November 28, 2022

Cloud4C has achieved Amazon Web Services (AWS) DevOps Competency status.

November 28, 2022

Simplilearn has acquired Fullstack Academy, for an all-cash transaction.

November 22, 2022

Red Hat introduced Red Hat Enterprise Linux 9.1and Red Hat Enterprise Linux 8.7.

November 22, 2022

Armory announced its new cloud-based solution called Continuous Deployment-as-a-Service, now available on the AWS Marketplace.