geoff
namespace

February 20, 2023

Funding
Companies
Share this post

Runtime Perspective

Although an unavoidable part of building software, relying on open source software increases the surface area for potential security issues. One solution is to scan everything at various points in the development process, compiling extensive lists of vulnerabilities. Such comprehensive security measures tend to create a lot of false positives, often for software that never makes it to a production environment or never poses a real threat. Runtime perspective — visibility into open source libraries at runtime — provides additional context to development teams to help them prioritize these security weaknesses. 

By integrating into the applications’ code base, build process, and CI/CD pipeline, these [traditional security] tools provide developers and security teams with a list of theoretical issues. This list contains CVEs of the required open source libraries of the applications, regardless of their state and context in the runtime environment. There’s a huge gap between the potential risk and the actual threats in the runtime environment. Only 15% of CVEs scanned with traditional solutions are posing a real risk, and the other 85% are irrelevant, resulting in lots of false positives and noise.

...Oligo is providing clear visibility to open source libraries at runtime and precise risk prioritization, thereby eliminating noise and helping teams focus on risks that matter the most and make informed decisions on managing security efforts properly and efficiently. 

Revolutionizing the Game of Application Security, Oligo

Funding

Sandbox Banking, a fintech startup building a low-code integration platform for banking, raised $4.3m in Seed funding. 

Orb Labs, provider of interoperability solutions for developers building cross-chain applications, raised $4.5m in Seed funding.

Procyon.ai, a multi-cloud privilege access management to help teams avoid credential sprawl, raised $6.5m in Seed funding.  

Sending Labs, creator of communication tools and SDKs for web3 applications, raised $12.5m in Seed funding. 

Monad Labs, a blockchain built for high throughput while preserving compatibility with the Ethereum Virtual Machine (EVM), raised $19m in Seed funding.

Oligo Security, a startup that helps engineering teams identify open source vulnerabilities in production environments, raised $28m in funding.

Descope, a developer-first authentication and user management platform, raised $53m in Seed funding.

CommandK, an access management tool to fix secret sprawl and protect user PII, raised $3m in Seed funding.

Subscribe to Namespace

Get this list delivered to your inbox every week — for free.

New issues go out every Monday.
Nice, you're on the list. See you next week.
Oops! Something went wrong while submitting the form.