Scan your applications for known vulnerabilities right from your Bamboo plans
MergeBase is an SCA extension (software composition analysis) that scans your applications within your Bamboo plans. Use MergeBase to help your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web based dashboard. Please
create a MergeBase security dashboard for your organization first, if you don't have one yet.
- Lowest false positive rate in the industry: Don't waste time chasing false positives.
- Sophisticated suppression management, so you can effectively pursue a zero-vuln strategy.
- Microsoft Board integration and developer guidance to streamline your workflows.
- Real-time notification if new vulnerabilities are uncovered in the industry, allowing you to respond to emerging threats immediately.
- Analyses your open source licenses enabling you to manage your legal risks.
Easily configure Bamboo to upload MergeBase scans directly from your build pipeline!