MAVERIX manages complete
application security process
Maverix manages application security testing process end to end with few predefined connects into existing DevOps process.
The platform has out of the box integrations with software engineering and application security tools.
Developers write new code and fix security issues
Developers continuously commit their code
CI/CD pipeline calls MAVERIX to initiate security testing
MAVERIX orchestration triggers security pipelines
Security pipelines call AST tools to identify security issues
MAVERIX imports security issues from AST tools
MAVERIX imports relevant information about software engineering
MAVERIX helps to filter out false-positive issues and select security defects
MAVERIX enables security engineers to analyze security posture
Security defects are synchronized with defect tracking system
Integrates into existing CI/CD Pipeline
MAVERIX provides a code snippet that can be copy pasted into an existing CI/CD pipeline. This code calls related scripts that pick up all the required security pipeline configurations from MAVERIX database.
Enables consolidation of security issues into software defects
MAVERIX supports automated review of the backlog to filter confirmed issues. It applies correlation rules and allows users to filter out prioritized issues. Most important issues will be converted into security defects and synchronized with defect tracking tool.
Support for leading AST tools
MAVERIX supports automated review of the backlog to filter confirmed issues. It applies correlation rules and allows users to filter out prioritized issues. Most important issues will be converted into security defects and synchronized with defect tracking tool.
Connectors available for leading
software engineering tools
The product has REST APIs to communicate with CI/CD pipelines, supports bi-directional synchronization with defect management tools, gathers relevant information from application code repositories and understands release management.
Release management
Artifact management
CI/CD
Source code management
Containers