Iron Bank

CodeSonar Supported in DoD’s Platform One and Iron Bank – its Containerized SAST Solution Accelerates DevSecOps Initiative.


Download PDF

Iron Bank

Platform One provides valuable tooling, hosts CI/CD DevSecOps pipelines, and offers a secure Kubernetes platform for hosting microservices for the U.S. Department of Defense’s DevSecOps initiative. Authorization to go live with new applications can be achieved faster than ever by using Iron Bank hardened containers and Platform One pipeline security tools.

City street at night with long exposure light trails from traffic, against a backdrop of illuminated office buildings.

“CodeSonar has become an essential component of our development process and increases our customer satisfaction”

Smiling man with a beard, wearing a plaid shirt over a white t-shirt, in front of a gray background.

Robert Simpson

Code Development Engineer at Petex

CodeSonar: Iron Bank Approved

Platform One and Iron Bank: Containerized SAST Solution Accelerates DevSecOps Initiative

Platform One provides valuable tooling, hosts CI/CD DevSecOps pipelines, and offers a secure Kubernetes platform for hosting microservices for the U.S. Department of Defense’s DevSecOps initiative. Authorization to go live with new applications can be achieved faster than ever by using Iron Bank hardened containers and Platform One pipeline security tools. The resulting Certificate to Field (CtF) and Continuous Authority to Operate (Continuous ATO) provides developers the ability to push validated code into production on an ongoing basis—resulting in shorter development cycles, less debugging, and more rapid feature development.

The addition of GrammaTech’s CodeSonar SAST solution to Platform One and Iron Bank provides DoD developers with a certified, powerful, and automated solution that integrates seamlessly with their workflows to quickly find and remediate defects and vulnerabilities in code before the software is released.

Static Application Security Testing

CodeSonar was designed to implement security early and throughout the software development life cycle, without compromising innovation and time-to-market. CodeSonar delivers deep code analysis and easily integrates with DevSecOps toolchains, methodologies, and processes. As an integral part of the DevSecOps process, CodeSonar enables development teams to develop and release high-quality, safe, and secure software that is free from harmful defects and exploitable weaknesses which can cause critical system failures and security breaches.

CodeSonar is available in Iron Bank and Platform One, as well as through JFAC and directly from CodeSecure

Book a Demo

We’re ready to help you integrate SAST and BCA security into your DevSecOps flow. Get a personally guided tour of our solution offerings to ensure you are receiving the right solution for your development team. 

book now