Amazon Web Services (AWS) has announced the preview launch of a new full repository code scanning capability within AWS Security Agent, as part of its commitment to providing comprehensive and robust cybersecurity features using artificial intelligence. With this addition, developers and security personnel can scan their complete code repositories for security flaws, helping to improve software security and facilitate the process of remediation.
This new scanning feature is different from static application security testing tools since it does not just use pattern matching but evaluates the application architecture, trust boundaries, authorization mechanism, and data flow, revealing complex security weaknesses. According to AWS, this code scanning feature performs analysis in four steps, which include profiling of repositories, vulnerability detection, triage, and verification.
This solution facilitates modern DevSecOps practices by ensuring that enterprises perform automated large-scale security audits prior to penetration testing or production release. According to AWS, the product will be helpful in cases when an organization is onboarding a new codebase through acquisitions, using open-source software, and auditing the architecture of distributed applications.
Also Read: Legit Security and Sweet Security Partner to Deliver Full-Lifecycle Protection
According to AWS, the improved scanning capabilities ensure that developers have access to findings which are supported by impact assessment, relevant code snippets, confidence level, and recommendations regarding potential solutions to the issues discovered. Furthermore, AWS ensures that identified vulnerabilities are validated independently in order to eliminate false positives.
AWS confirmed that the complete code base scanning capabilities are available as a preview to existing AWS Security Agent customers without any additional fees. AWS highlighted the fact that the company was keen on giving its customers the opportunity to test the improved security capabilities of AWS platform.