Overview

Arnica integrates across your software supply chain stack and provides necessary context and actionability to proactively mitigate supply chain risk.

Features

Code security

Robust source code security and code quality scanning tooling with static application security testing (SAST) and software composition analysis (SCA).

Excessive permissions

Dynamic policy driven permissions management that eliminates excessive permissions and provides developers with easy self-service tooling.

Misconfiguration

Locate and correct misconfigured branch security policies and CODEOWNERS files.

Hardcoded secrets

Zero new hardcoded secrets added to source code. Detected secrets get fixed automatically in real time or with one-click mitigation by the developer, eliminating the secret and its history entirely.

Developer & code anomalies

Identify anomalous behavior and inject policy driven authentication of developers and the code they write.

Pipelineless Security

With Arnica's pipelineless approach, security teams can:

• Easily establish and maintain 100% security scanning across the software supply chain from day one

• Run security workflows earlier and more often without requiring any code changes in the CI/CD pipeline

• Send targeted alerting to the person/team with a personalized context and ability to easily fix an identified risk

• Empowers the recipient of the alert to be able to fix the risk with a single click or automated policy