GitLab Integration

Pipeline Management

SAST WHEN SAFETY AND SECURITY MATTER

CodeSonar integrates directly into the GitLab CI/CD pipeline to detect zero-day vulnerabilities. CodeSonar scan results are available in the GitLab Merge Requests, in the GitLab Security Dashboard, and can be assigned as a GitLab Issue. With CodeSonar, product development teams looking to shift left without disruption to their SDLC now have a seamless GitLab CI/CD integration. 

Capabilities & Benefits
  • With each merge request, CodeSonar will automatically analyze your code and return any vulnerabilities found via the GitLab SAST interface.
  • A summary of detected vulnerabilities can be viewed directly in the GitLab Merge Request, so you can quickly see new security issues that are detected in your project.
  • The CodeSonar warning message can easily be viewed directly in GitLab, and detailed warning reports with annotated source code are just a mouse click away – no copy and pasting or searching for line numbers.
  • Developers can work with detected vulnerabilities right in the GitLab UI – review a warning, create a GitLab issue, and assign it to a developer without ever leaving GitLab.
Learn More

See how to use GitLab CI/CD components to add CodeSonar SAST to an embedded project. 

Watch video

Book a Demo

We’re ready to help you integrate SAST and BCA security into your DevSecOps flow. Get a personally guided tour of our solution offerings to ensure you are receiving the right solution for your development team. 

book now