Security metrics
SEI integrates with some of the best security tools to produce reports that help you analyze anomalies or threats that can lead to failures and data loss or corruption.
Coverity
Coverity is a fast, accurate, and highly scalable static analysis (SAST) solution that helps development and security teams address security and quality defects early in the software development life cycle.
Integrate with Coverity, and then add Coverity reports and widgets to your Insights.
- Coverity Issues Report: This report helps track the progress of the issues reported by the Coverity application.
- Coverity Issues Single Stat: Present a single statistic related to Coverity issues.
- Coverity Issues Trend Report: Understand daily, weekly, and monthly trends in your Coverity issues.
Microsoft Threat Modeling
The Microsoft Threat Modeling tool allows software architects to identify and mitigate potential security issues early, when they are relatively easy and cost-effective to resolve.
- In your Harness project, go to the SEI module, and select Account.
- Select SEI Integrations under Data Settings.
- Select Available Integrations, locate the Microsoft Threat Modeling Tool semi-automated integration, and select Upload report.
- Add the Microsoft Threat Modeling Issues Report to your Insights. This report helps track the progress of the issues reported by the Microsoft Threat Modeling tool. This report includes the total number of issues and their priority rankings.
NCC Group Vulnerability Scans
The NCC Group's Managed Vulnerability Scanning Services deliver hands-on rapid detection, monitoring, and remediation of internal and external system vulnerabilities.
- In your Harness project, go to the SEI module, and select Account.
- Select SEI Integrations under Data Settings.
- Select Available Integrations, locate the NCC Group Report semi-automated integration, and select Upload report.
- Add the NCC Group Vulnerability Report to your Insights. This report provides details on detected vulnerabilities. Vulnerabilities can be categorized by status.
Praetorian
- In your Harness project, go to the SEI module, and select Account.
- Select SEI Integrations under Data Settings.
- Select Available Integrations, locate the Praetorian Report semi-automated integration, and select Upload report.
- Add the Praetorian Issues Report to your Insights. This report helps analyze security vulnerabilities reported by Praetorian.
Snyk
Snyk is an automated vulnerability testing tool that monitors for misconfigurations or coding flaws that pose cybersecurity threats.
Integrate with Snyk, and then add the Snyk Vulnerability Report to your Insights. This report provides details on detected vulnerabilities. Vulnerabilities can be categorized by project, severity, or other factors.