Software program Intelligence firm Dynatrace has prolonged its Software Safety Module to detect and defend towards vulnerabilities in runtime environments, together with the Java Digital Machine (JVM), Node.js runtime, and .NET CLR.
As well as, Dynatrace has prolonged its assist to purposes working in Go, one of many fastest-growing programming languages, with adoption growing by 23 % final 12 months.
With these enhancements, the Dynatrace® platform turns into the one resolution offering real-time visibility and vulnerability analytics throughout the complete software stack, which incorporates customized code, open-source and third-party libraries, language runtimes, container runtimes, and container orchestrators. Dynatrace not solely identifies vulnerabilities throughout every of those layers mechanically but additionally analyses them to offer actionable and exact solutions out-of-the-box. This empowers growth and safety groups to evaluate danger higher, prioritise and remediate threats extra successfully, and innovate sooner and with elevated safety.
“We have now a proud heritage as a cloud-native enterprise that harnesses agile supply practices, the newest expertise, and a state-of-the-art, safe growth lifecycle to deliver steady innovation to our prospects,” mentioned Luca Domenella, head of cloud operations and DevOps at Soldo.
“Dynatrace Software Safety helps to make this doable by giving us complete visibility and analytics throughout all layers of our complicated software ecosystem, making certain no vulnerability escapes our safe DevOps lifecycle. As well as, it helps us immediately perceive the chance and potential influence of zero-day vulnerabilities, comparable to Log4Shell, and mechanically prioritises the steps required to resolve them. This protects our groups from losing weeks triaging alerts and permits them to resolve new vulnerabilities in simply days or much less, to allow them to keep targeted on innovating.”
Language runtimes are a important layer of the applying stack as they guarantee apps can be found and well-executed on any platform with out having to be rewritten or recompiled. By extending its Software Safety Module to assist runtimes in probably the most extensively adopted programming languages, Dynatrace delivers the trade’s most complete software vulnerability evaluation, spanning all potential entry factors in pre-production and manufacturing environments.
“The variety of entry factors attackers use to focus on purposes continues to increase. Vulnerabilities can creep into purposes from any a part of the software program provide chain, together with open-source or third-party parts and software runtimes,” mentioned Steve Tack, SVP of product administration at Dynatrace.
“Conventional approaches can’t precisely floor vulnerabilities at runtime or analyse their potential exploitability and influence. Dynatrace is the one resolution that gives runtime vulnerability evaluation throughout the complete software stack and AI-assisted prioritisation for the preferred cloud-native software applied sciences, now together with Golang. With these capabilities, DevSecOps groups can deal with remediating probably the most impactful vulnerabilities. This helps them innovate sooner, with the arrogance that each one layers of their purposes are vulnerability-free.”