Apona Security Launches New Software Composition Analysis Tool to Detect Security Vulnerabilities
Analysis solution will help manage supply chain software by providing SBOM's and vulnerability detection with patch recommendations.
Note: TDWI’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the vendor's statements.
Apona Security, a security solutions provider that helps enterprises and MSPs manage data and improve security across their patented product suites, now offers a software composition analysis (SCA) tool named Apona that uncovers vulnerabilities in both the libraries and in code, including code fragments.
This new security solution aims to reduce security threats posed by OSS reuse and closely examines security vulnerabilities by using highly effective patented technologies, helping organizations stay compliant and secure.
“Software developers today need to work fast and use existing resources such as open source libraries or code samples generated by tools [such as] ChatGPT. We need to make sure we are not slowing down development but also that this rapid speed does not compromise security by introducing software supply chain vulnerabilities” said Ben Chappell, general manager at Apona.
Apona offers secure code review, software bills of material (SBOMs) creation, remediation plans, and accurate and transparent reporting. Plus, by utilizing We-Bridge’s patented technologies, it can also detect OSS vulnerabilities and license violations with up to 93% accuracy and extract the information needed to generate a SBOM to address it.
Apona can also update OSS components to a safer version and resolve the vulnerabilities by patch backporting so the SBOM will be provided to ensure the transparency of the software supply chain. For more information, please visit www.apona.ai.
“Apona enables accurate detection of supply chain vulnerabilities in library and code, and can automatically generate a software bill of material (SBOM) to let management regain control over its software component without compromising either development speed nor security” Ben Chappell reiterated.