Denim Group, a leading independent application security firm, today announced the latest version of ThreadFix, the company’s application vulnerability resolution platform for application developers and security professionals. ThreadFix, a proven solution that provides unmatched, centralized vulnerability management and collaboration support across development and security teams, makes it straightforward to identify the most critical application vulnerabilities and systematically address them.

ThreadFix’s newest capabilities make it one of the first products in the industry to provide a comprehensive view of the state of software security within an organization. The 2.4 series includes major advancements in ThreadFix’s Hot Spot detection capabilities to identify the most critical and impactful vulnerabilities. With this release, vulnerabilities in shared software components are identified and highlighted to enable development teams to fix once and remove vulnerabilities across multiple applications.

“With the rapid adoption of microservices and other code compartmentalization and reuse, we’re excited to offer ThreadFix customers a more efficient way to identify and address shared vulnerabilities,” said Dan Cornell, Founder and CTO at Denim Group. “Being able to automatically identify situations where internal code reuse is resulting in vulnerability proliferation puts application security teams in a position to quickly identify these situations and work with development teams to efficiently address the most serious issues.”

In addition to vulnerability Hot Spot detection, the latest version of ThreadFix adds several new integrations that support companies in meeting strict governance, risk and compliance (GRC) requirements and a more accurate detection of vulnerabilities in open source software. Key new or enhanced integrations include HPE Fortify on Demand, HPE ALM, IBM Rational ClearQuest, Barracuda, Black Duck, ServiceNow, and RSA Archer. These enhancements and critical integrations provide users with a much needed automation platform to assist in building software faster and more securely.

The latest ThreadFix version continues to enhance reporting and customize previously available features that translate security vulnerabilities into the language of developers. It allows for the aggregation of software security test data in a manner that normalizes, correlates and manages multiple development projects in a single view. Managers can now more effectively use existing tools to save time and minimize reporting noise. ThreadFix dashboards allow application-level views of vulnerability trends, most vulnerable applications, and recent scan activity and collaboration.

About Denim Group

Denim Group is a leading independent application security firm, serving as a trusted advisor to customers on matters of application risk and security. The company helps organizations assess and mitigate application security risk. Denim Group's flagship ThreadFix product accelerates the process of application vulnerability remediation, reflecting the company's rich understanding of what it takes to fix application vulnerabilities faster.

Denim Group is a registered service mark of Denim Group, Ltd.
Other names and brands may be claimed as the property of others.