Coinbase open sources its security scaling tool

posted about 2 months ago
Coinbase is making a recently developed, automated security scaling tool available to the public. Called Salus, after the Roman the goddess of safety and well-being, the program can automatically choose to run and configure different security scanners and issue a report on the results. Available as an open-source tool on GitHub starting today, Salus is said to offer the advantage of being able to centrally coordinate security scans across a large number of software storage repositories, avoiding having to configure a scanner for each different project.

Coinbase explains that it uses a combination of human code reviews and automated scans to ensure its production deployments are as "secure as possible... Tools like these help us to ship faster, and we are tremendously grateful for these open source efforts. It was in this spirit that Coinbase started its open source fund, a token of gratitude for this type of community-oriented work... It helps us enforce security policies for each change made to a codebase and ensures there is a quick feedback loop with the developer about potential vulnerabilities."
Tags: news