What is GuardRails?
GuardRails is a software security platform designed to provide continuous security feedback directly into the software development lifecycle. It integrates security testing and analysis into the tools developers already use so security issues can be detected and remediated early, before reaching production.
Key features of GuardRails include:
- Static application security testing (SAST) to scan source code from repositories like GitHub, GitLab, Bitbucket, Azure DevOps, etc. It scans code written in common languages like JavaScript, Python, Java, C#, Go, and more.
- Infrastructure-as-code (IaC) scanning for security misconfigurations in Terraform, CloudFormation, Kubernetes configurations, Dockerfiles, and more.
- Secret detection scans for exposed API keys, database credentials, certificates, and other sensitive data checked into repositories.
- Policy-as-code support for validating security and compliance policies for the CIS Benchmarks, PCI DSS, NIST, HIPAA, GDPR, and more.
- Deep integration into the developer workflow via IDE plugins, CI/CD integration, messaging apps like Slack and Jira, and more.
- Prioritized results focusing on the most critical and exploitable issues first.
- Remediation guidance to help developers fix detected issues.
By providing developer-centric security deep into CI/CD pipelines and giving rapid feedback via tools developers use every day, GuardRails enables organizations to shift security left and deliver more secure software faster.