The fundamental promise of Sken is that you do not need to use multiple CI/CD plugins for different types of scans to run on your apps.

Sken includes the entire lifecycle of open source scanners and CI/CD tools, for different programming languages.

Related article: Quickly get started with Sken

Opensource Scanners

SAST

  • find-sec-bugs

  • NodeJsScans

  • brakeman

  • bandit

  • Gosec

  • PHP CodeSniffer

  • ES Lint

  • TSLint

Secret Leaks

  • Gitleaks

SCA

  • OWASP dependency check

DAST

  • OWASP ZAP

App Languages

  • Java

  • NodeJS

  • Ruby on Rails

  • Python

  • Go Lang

  • PhP

  • TypeScript

CI/CD Tools

  • Jenkins

  • Travis CI

  • Circle CI

  • GitHub Actions

  • Bamboo

  • Harness / Drone CI

  • Azure DevOps

Did this answer your question?