BoostSecurity on Wednesday emerged from stealth mode with a DevSecOps automation platform and $12 million in seed funding.
BoostSecurity has developed what it describes as a zero friction DevSecOps automation platform that can help organizations quickly detect and fix vulnerabilities in their code. It provides visibility into software pipelines, allows users to prioritize and address issues, and enables organizations to define security policies.
Developers are notified about security issues while they are coding and the organization can keep track of their progress. In addition, customers can generate SBOMs across their entire supply chain.
The company provides an open source app that is available on GitHub. Customers can also use other open source scanners that integrate with BoostSecurity, including Bandit, Brakeman, Trivy, Semgrep, GoSec, GitLeaks, and Checkov.
BoostSecurity headquarters are in Montreal, Canada, but the firm also has operations in California. The company has obtained funding from Sorenson Capital, Hoxton Ventures, Golden Ventures, Firebolt Ventures and Transform VC, and it plans on using the money for go-to-market and engineering initiatives.
“BoostSecurity empowers organizations of any size to implement the same DevSecOps processes and technologies that the most advanced organizations have refined, ultimately closing the trust gap between DevOps and security,” said Zaid Al Hamami, CEO at BoostSecurity. “Our platform enables early detection and remediation of security vulnerabilities at every layer of the stack while ensuring the continuous integrity of the software supply chain at every step from the developer’s keyboard to cloud production.”
Related: The VC View: The DevSecOps Evolution and Getting “Shift Left” Right
Related: Shifting to DevSecOps Is as Much About Culture as Technology and Methodology
Related: DevSecOps Company apiiro Emerges From Stealth With $35 Million in Funding
Related: DevSecOps Firm Spectral Emerges From Stealth With $6.2 Million in Funding