StackHawk Announces General Availability Launch
September 01, 2020

StackHawk, a software-as-a-service startup that empowers software engineers to easily find and fix application security bugs before they hit production, is launching into general availability.

Over the past year, the product has built a strong base of Early Access customers who have automated their AppSec testing in the CI pipeline, checking for vulnerabilities on every merge. With great feedback from these early customers, StackHawk is now available to any company that wants to deliver secure software.

"We decided to build StackHawk because of the gaping hole in developer-centric security tooling," said Joni Klippert, StackHawk founder and CEO. "I am incredibly proud of the ways we have been able to deliver on that promise as we announce our general availability. Our most excited feedback from early access customers has consistently been from developers and engineering leaders that finally have a tool that fits their workflows and allows them to take ownership of their application security."

While shifting security left is a common refrain within the security industry, the other application security products on the market still assume that a security team member is running the security tests and that tests are run on a scheduled basis. StackHawk is different, with features built specifically for the engineering teams that build the applications.

This shifts the approach from point-in-time pen tests or weekly scheduled scans to automated testing of the microservices that make up a customer facing application in the CI/CD pipeline. This approach shortens fix times, pushes potential vulnerabilities to the engineering teams that built the feature, and ensure that vulnerabilities are caught before they hit production. Key to this automation is integration with CI/CD tooling. StackHawk has partnered with the major CI providers such as CircleCI and GitLab to make it simple to AppSec tests into the build pipeline.

"As a CISO, I know that the application security model used by most software teams does not scale," said Scott Gerlach, co-founder and Chief Security Officer at StackHawk. "Pipeline automation of your security testing is the only way to truly integrate this into modern software delivery, and no one does it better than us. We are excited for more customers to start using StackHawk and ensuring security as they deliver software."

The company offers a startup plan to support earlier stage companies that care about security, but have historically been priced out of the market by enterprise security vendors.

Share this

Industry News

September 17, 2020

env0, a developer of Infrastructure-as-Code (IaC) management software, announced the availability of its new open source solution for Terraform users, Terratag.

September 17, 2020

Push Technology announced a partnership with Innova Solutions, an ACS Solutions company, specializing in global information technology services.

September 17, 2020

Alcide achieved the AWS Outposts Ready designation, part of the Amazon Web Services (AWS) Service Ready Program.

September 16, 2020

Portshift announced serverless container security support for AWS Fargate.

September 16, 2020

Sonatype and NeuVector announced a new integration that provides a comprehensive view of all Kubernetes and Container open source risk in one place.

September 16, 2020

Pure Storage entered into a definitive agreement to acquire Portworx, a Kubernetes data services platform enterprises trust to run mission-critical applications in containers in production.

September 15, 2020

OutSystems announced a series of new tools and capabilities that will empower organizations of all sizes to build applications quickly, build them right, and build them for the future.

September 15, 2020

VMware unveiled new offerings to help customers further accelerate their app and infrastructure modernization initiatives. VMware vSphere 7 Update 1, VMware vSAN 7 Update 1 and VMware Cloud Foundation 4.1 product releases streamline customer adoption of Kubernetes and support stateful applications with new developer-ready capabilities and enhance scalability and operations with new features.

September 15, 2020

Oracle announced the general availability of Java 15 (Oracle JDK 15).

September 14, 2020

Actifio announced a global alliance with Persistent Systems, a global solutions company with deep technology expertise, to help enterprises with data stack modernization and acceleration of digital transformation initiatives.

September 14, 2020

Perforce Software announced the release of the Helix TeamHub Command-Line Client (hth-cli).

September 14, 2020

StackRox secured an additional $26.5 million in funding.

September 10, 2020

JourneyApps announced the official launch of its OXIDE Integrated Development Environment (IDE) which ushers in a new paradigm of building, deploying and managing secure and powerful business applications.

September 10, 2020

Solo.io announced the WebAssembly OCI Image Specification, which defines a standard format for bundling and storing a Wasm module and its metadata as an OCI (Open Container Initiative) image in order to facilitate interoperability across different solutions.

September 10, 2020

Flexential announced new dedicated Hosted Private Cloud - vCenter Access capabilities that enable organizations to use industry-leading third-party tools to manage workloads and data protection requirements on a single, consolidated cloud platform.