We are excited to announce that EdgeBit has been acquired by FOSSA!
EdgeBit was founded to level up application security by keeping codebases up-to-date and understanding where things aren’t up-to-date. We quickly established a security workflow that reduces noise by measuring properties of running workloads and connecting their SBOMs to the beginning of the code lifecycle. Addressing both ends of the lifecycle closes the loop and streamlines security issues getting Found, Fixed and Merged.
This belief has guided us to ship our SCA prioritized by runtime reachability. Finding and filtering security issues was helpful, but we consistenly heard one question from our customers – “can you help me fix these?”
We introduced Dependency Autofix to automatically fix identified issues by harnessing code reachability to identify breaking changes and eliminate risk from dependency updates.
Our strategy is to use reachability to fix security issues, not for prioritization. Static analysis brings two incredible benefits: deep understanding of your codebase powers no-risk, automated dependency updates and provides perfect AI context for adapting your code to breaking changes, removing one more piece of toil from your engineers.
Over the last few months the EdgeBit and FOSSA engineering teams have partnered to bring EdgeBit Dependency Autofix analysis into the FOSSA experience. We’re excited to complete our work to allow every FOSSA customer to experience our Found, Fixed and Merged ethos firsthand.
We’re excited about FOSSA!
As a leader in the software supply chain space, the FOSSA team has continually innovated to make developers successful with open source software. FOSSA shares our vision for highly automated security and we’re excited to build this future together.
The union of FOSSA’s security platform with EdgeBit’s Autofix engine will drive fast vulnerability remediation and detection of breaking changes. If you’re passionate about removing tedious security work from your engineering teams, get in touch — we’d love to share our security vision and hear yours.
What’s Next
Our team is excited continue our work automating dependency updates and other code maintenance tasks that take engineers off-mission.
FOSSA customers can expect to start using these new capabilities in the coming months. For existing EdgeBit customers, we’ll support a migration path to the combined product when it’s ready.
If you’d like a sneak peek, we’re happy to share more.
Thank You!
To all of our customers, security leaders, AppSec engineers and investors that joined us on this 3 year journey — we thank you.
Our entire team remains excited about the promise of automating application security and look forward to securing your applications as FOSSAs!
