What Can SOOS Scan?

soos supports many different types of scanning based on your tech stack and requirements each scan type has multiple ways of integration, most support integration through numerous ci systems, file upload, or direct github integration all scan types that soos supports will flow into the dashboards docid\ afadyt8sumyzdb55fqa1l and can be viewed alongside your other scan results component/dependency analysis getting started with soos sca docid\ b7 897qthtrbeasfjyn2n sca helps ensure that the open source components that developers embed in their applications do not introduce risk getting started with container scanning docid\ slmxej8j94tszscagzyyo container scanning helps ensure that containers deployed (or built upon) by an organization do not introduce risk getting started with soos sbom manager docid 8adf0mdrfc7cr arvws0n sbom scanning ensures that first or third party sboms do not introduce risk proprietary and patented analysis full dependency tree creation vulnerability analysis license analysis governance policies issue creation report generation compliance web application analysis getting started with dast docid\ ll57a8kftyp6whayrftug dast scanning helps identify problems and vulnerabilities found in web applications by running scans against deployed web applications on demand built on top of zap no limit endpoint scanning multiple authentication flows api scanning centralized reporting issue creation governance policies code analysis getting started with sast/secrets docid 1q0otptttjejvpp5cbegs sast helps ensure that security issues or bad practices are not found in source code and are caught early in the development process bring your own sast/secrets tool centralized reporting issue creation governance policies