Debricked
Debricked offers a toolkit that automates open source security, compliance, and community processes, supporting integrations with various platforms and providing detailed reports on vulnerabilities, licenses, and project health.
Services
Debricked offers a toolkit that automates open source security, compliance, and community processes. The company provides a vulnerability database and tools to select open source projects, ensuring that users can understand and mitigate risks associated with using open source code. The platform supports various integrations, making it easy for developers to integrate with services like GitHub, CircleCI, GitLab, Bitbucket, and Azure DevOps. Additionally, Debricked provides detailed reports on vulnerabilities, licenses, and project health, along with automated pull requests for fixing vulnerabilities and customizable pipeline rules for compliance.
Products
Debricked's product suite includes multiple tools designed to secure open source code. Their features encompass automated pull requests, customizable pipeline rules for compliance, and automated open source discovery and intake management through their 'Start Left Policies' feature. The service also provides detailed reports on the status of project dependencies, including vulnerabilities and license compliance. Users can access a range of pricing plans—such as Free, Premium, and Enterprise options—each offering varying levels of scans and features. The platform supports a wide array of programming languages and package managers, ensuring comprehensive coverage for diverse development environments.
Integrations
Debricked supports integrations with numerous platforms to help streamline workflows. This includes popular development and CI/CD tools like GitHub, CircleCI, GitLab, Bitbucket, and Azure DevOps. The platform is capable of integrating seamlessly with these services, allowing for continuous security checks and compliance reviews during the development process. Additionally, Debricked offers support for Single Sign-On (SSO) through various identity providers, ensuring secure and convenient access for users. The browser extension feature allows users to evaluate open source projects directly from their browsers, enhancing real-time decision-making.
Compliance and Certifications
Debricked places a strong emphasis on security and compliance, evidenced by its certification according to the ISO 27001 standards and by holding a SOC 2 Type II report. These certifications reflect the company's commitment to managing and protecting data securely. Debricked's toolkit enables automated compliance checks and provides reporting to help organizations maintain adherence to industry standards and policies. The platform's 'Start Left Policies' feature is specifically designed to automate intake management, ensuring that compliance is considered from the beginning of the development process.
Community and Support
Debricked provides a robust community portal where users can ask questions, get answers, and submit feedback to improve the service. The platform offers extensive documentation and support resources to assist users in integrating the tools within their existing workflows. The community portal is an essential resource for users seeking assistance with technical issues or looking to connect with other users to share best practices and insights. This focus on community engagement ensures that users can make the most out of Debricked’s suite of tools.