On every new pull request, a StackHawk scan will run against your application, service, or API to find any newly introduced vulnerabilities from your code or your open source components.
Quick Triage of Findings
If alerted of a new security finding, developers have all of the information needed at their fingertips. With clear descriptions of vulnerabilities and the request/response details that triggered the finding, developers can take action now or send to an existing team backlog.
Developers can copy a cURL command to recreate the request that triggered the finding, leading them right to the bug. With links to fix documentation, it’s never been faster to remediate security bugs.
What it Tests
As a dynamic testing tool, StackHawk is language agnostic.