In a strategic move, GitLab acquires Oxeye to enhance static application security testing (SAST), aiming to improve risk detection and minimize false positives. Oxeye’s technology, acquired for a reported $30-$40 million, brings innovative capabilities that trace vulnerabilities from code to cloud, aligning with GitLab’s mission to enhance security across the software development life cycle.
Director of Product Management Sarah Waldner emphasizes Oxeye’s distinctive approach to SAST, which promises to significantly enhance GitLab’s SAST scanning capabilities for multiple programming languages, including Python, Go, Java, and JavaScript. This acquisition underscores GitLab’s commitment to providing customers with more accurate and actionable security findings, ultimately helping them build secure software more efficiently.
With Oxeye’s integration into GitLab’s DevSecOps platform, customers can expect fewer false positives, more true positive detections, and enhanced security and compliance capabilities. The move solidifies GitLab’s position in the application security testing market and reaffirms its dedication to empowering users to deliver secure applications through its comprehensive suite of security solutions.