Jit Max Security Plan
The advanced Jit Max security plan encompasses our entire suite of security controls and provides comprehensive security coverage throughout the Software Development Life Cycle (SDLC).
Jit Max is for organizations committed to the highest standards of security and offers an unparalleled defense mechanism, fortifying every phase of development, deployment, and maintenance of your software products.
Plan items
| Coverage | Stage | Plan item | Description |
|---|---|---|---|
| Application security | Code Build | Static Code Analysis Tools (SAST) | Discovers vulnerabilities in your code before production by automatically scanning the entire code base and also after every new Pull Request. |
| Code Build | Secret Detection | Prevents unauthorized access to password-protected assets by automatically running a full scan on your repositories after activation. | |
| Code Build | Secure Code Analysis (SCA) | Ensures the dependency of your code over the last 24 hours by running automatic daily security checks. | |
| Code Build | Dockerfile scanning | Automatically scans every new PR for vulnerabilities. See Trivy for Dockerfiles. | |
| Build | Software Bill of Materials (SBOM) | Scans all components in your project's libraries, dependencies and sub-dependencies. SBOM scans are run daily and on changes in a repository. | |
| Code Build | Infrastructure As Code (IaC) scanning | Automatically scans for cloud environment misconfigurations in all repositories and on every pull request. | |
| Test Deploy Operate | Dynamic Application Security Testing (DAST) Web | Automatically scans for vulnerabilities and potential security risks like SQL injection, cross-site scripting, clickjacking or path traversal that may not be visible in the source code while an application is running. | |
| Test Deploy Operate | Dynamic Application Security Testing - (DAST) API | Automatically scans for an extensive list of weaknesses, misconfigurations, and security vulnerabilities to ensure your APIs are secure before, during, and after production. | |
| Cloud security | Code Build | Infrastructure As Code (IaC) scanning | Automatically scans for cloud environment misconfigurations in all repositories and on every pull request. |
| Test Operate | Cloud Security Posture Management (CSPM) | Scans cloud environments for security vulnerabilities, misconfigurations, and compliance issues while providing recommendations to improve the overall security posture of the cloud infrastructure. | |
| CI/CD | Operate | GitHub Misconfiguration Scanner | Runs periodic scans for GitHub misconfigurations and communicates the findings in the Backlog page. |
Updated about 1 month ago