SecApps Cohesion is a web application security testing framework and a tool for continuous integration pipelines. Cohesion is designed with performance and automation in mind. It is a flexible solution which fits perfectly in the DevSecOps guidelines and best-practices.

What is DevSecOps

DevSecOps aim is to embed security methodology and processes at speed and scale and in the thinking process of everyone responsible for delivering software - "everyone is responsible for security". The value of DevSecOps, in terms of engineering, is to provide the ability to continuously attack, test, monitor and determine defects before attackers do.

One of the key pillars of the DevSecOps methodology is the production pipeline for building and deploying the software but also to configure and maintain supporting infrastructure. To make the final product resilient to attack, the production pipeline is responsible for ensuring that all components are fully tested and signed off.