Business Software for Codefresh

Port is a platform that allows you to build no-code, holistic, internal developer portals. Port's software catalog includes microservices, custom assets, and can be used with any data model. It also supports in-context maturity scorecards. Portals allow developers to automate workflows and self-service actions.

Amazon Elastic Container Service (Amazon ECS), is a fully managed container orchestration and management service. ECS is used by customers such as Duolingo and Samsung, GE and Cook Pad to run their most sensitive and critical mission-critical applications. It offers security, reliability and scalability. ECS is a great way to run containers for a variety of reasons. AWS Fargate is serverless compute for containers. You can also run ECS clusters with Fargate. Fargate eliminates the need for provisioning and managing servers. It allows you to specify and pay per application for resources and improves security by application isolation by design. ECS is also used extensively in Amazon to power services like Amazon SageMaker and AWS Batch. It is also used by Amazon.com's recommendation engines. ECS is extensively tested for reliability, security, and availability.

Develop healthier code. Improve code quality and workflow. Codecov offers a comprehensive suite of tools that allow you to group, merge and archive coverage reports, as well as compare them. Open source. Plans starting at $10/user per month. Ruby, Python and C++ as well as Javascript are all available. All CI products and workflows can be integrated easily. No setup is required. Automatic report merging for all CI languages and languages into one report. You can get custom statuses for any group of coverage metrics. You can review coverage reports by folder, project, and type (unit tests or integration tests). You can comment the detailed report directly in your pull request. Codecov is SOC 2 Type II Certified. This means that Codecov has been audited by a third party and attested to our security practices.

Snappy Tick Source Edition is a source-code review tool that helps to identify vulnerabilities in source code. We offer Source Code Review and Static Code Analysis tools. An In-line auditing approach will help you identify the most important security issues in your application. It will also verify that there are adequate security controls. SnappyTick Standard Edition (DAST), is a Dynamic application security tool that performs grey box and black box testing. Analyze the responses and requests to find vulnerabilities in an application. This can be done while the applications are still running. SnappyTick has amazing features. Multilingual scanning is possible. The best reporting that highlights the exact source files, line numbers, subsections, and even lines that are affected.

Platform engineering is revolutionizing how engineering organizations build and run their cloud-native setups. Humanitec is leading this revolution, providing enteprises with the fastest and most reliable way to build Internal Developer Platforms (IDPs). Humanitec is the leader in the platform engineering space. Named a 2022 Gartner® Cool Vendor, we drive developer productivity by radically simplifying how teams deliver software at scale. Our core product, the Humanitec Platform Orchestrator, is used by mid and large-size engineering organizations, from 100+ developer scale-ups all the way to Fortune 100s. Our OSS workload specification Score lets developers describe their workloads and dependencies as code. The Platform Orchestrator dynamically generates app and infra configurations with every new deployment, driving standardization across the entire software delivery lifecycle. This means no more ticket ops or waiting times for developers, resulting in 4x higher deployment frequency and 30% faster time to market. As a SaaS provider, Humanitec takes information security very seriously. We’re ISO 27001 certified and constantly strive to protect data while adhering to the industry’s best security practices.

Never write, maintain or triage another automated testing. Qualiti is a dedicated AI tester that engineers need, offering real-time automated tests for near-instant feedback. Qualiti's AI platform can test software without human input. This allows for faster testing and better results. Integrate your SCM/VCS, CI/CD or project management system with your tools for seamless results. No need to manage another tool. Qualiti automates up to 34% a company's engineering costs, allowing engineers to produce more reliable code faster. Developers can push their code and see results in just a few moments. This allows for faster bug detection and fix, which results in a quicker time-to market. Do not rely on numbers that do not tell you whether or what you care about is being test. Click through your application to view the tests and coverage.

Quickwork is used by enterprises to create simple and complex workflows. It also allows them to create and publish APIs that are secure, and to manage conversational interactions between employees, customers, and partners. This helps to provide an excellent user experience. Quickwork is an all-in one platform that provides the tools and services needed to build powerful and scalable integrations. It also offers serverless APIs and conversational experiences. Drag and drop applications to create powerful integrations. No need to write a line of code. You can choose from 1000s of apps for business, consumer, analytics, messaging and IoT. Quickwork's API Management allows you to convert any workflow into an REST API in a single click. Our serverless infrastructure allows you to scale your APIs elastically and securely. Create and manage real-time messaging and conversational workflows across multiple channels with human agents, IoT devices, and chatbots.

Get a complete picture of the security of your application. Reduce the risks associated with products by increasing security maturity within your secure development process. Application Security Posture Management solutions (ASPM) play a critical role in the ongoing management and control of application risks. They address security issues from development to deployment. The development team faces many challenges, including managing an AppSec Program, dealing with the growing number of products and not having a comprehensive view on vulnerabilities. We support the implementation of AppSec, monitor established and executed actions, provide KPIs and more to enhance the evolution of maturity. We help integrate security into the early stages by defining requirements and processes, and by optimizing resources and time spent on additional testing or validating.

5X is a data platform that offers everything you need to centralize your data, clean it, model it, and analyze it. 5X is designed to simplify data management. It offers seamless integration with more than 500 data sources. This ensures uninterrupted data movement between all your systems using pre-built connectors and custom connectors. The platform includes ingestion, warehousing and modeling, orchestration and business intelligence. All of this is presented in a simple-to-use interface. 5X supports a variety of data movements including SaaS applications, databases, ERPs and files. Data is transferred automatically and securely to data lakes and warehouses. 5X's enterprise-grade security encrypts the data at its source, identifying personally identifiable data and encrypting it at a column-level. The platform is designed for a 30% reduction in total cost of ownership compared to building a platform yourself. It also enhances productivity by providing a single interface for building end-to-end pipelines.

Container Registry allows you to manage Docker images, perform vulnerability scanning and determine who has access to what resources. All this in one place. You can quickly set up fully automated Docker pipelines using existing CI / CD integrations. In minutes, you can access private and secure Docker image storage via Google Cloud Platform. You can control who can view, download and access images. Google security ensures consistent uptime for a secure infrastructure. When you commit code to Cloud Source Repositories (GitHub, Bitbucket, or Bitbucket, you can automatically build and push images to the private Registry. Cloud Build integration makes it easy to configure CI/CD pipelines or deploy directly via Google Kubernetes Engine or App Engine, Cloud Functions or Firebase.

We take care of everything. You can create the perfect CI/CD platform that meets your company's needs with zero vendor lock-in. Stop building toolchain automation and stop writing manual scripts. Your engineers can now focus on your core business. The declarative model of pipeline workflows allows you to focus on what's required, not how it's done. This includes software builds, security scans and unit testing, as well as deployments. Blueprints allows you to diagnose any failures within Opsera by displaying the console output of each step of your pipeline execution. Comprehensive software delivery analytics for your CI/CD process in one view. This includes Lead Time, Change Failure Ratio, Deployment Frequency and Time to Restore. Contextualized logs allow for faster resolution, improved auditing, and compliance.

The first unified security solution that protects the integrity of your software across the entire DevOps CICD pipeline. You can track all events and actions in your software supply chain with unprecedented clarity. Get actionable information faster and make better decisions. You can improve your security posture by enforcing security best practice at every stage of the software delivery process. This includes real-time alerts, auto-remediation, and ensuring that you have access to all relevant information. Automated validity checks ensure that source code integrity is maintained for each release. This will allow you to be certain that the source code you have committed has been deployed. Argon continuously monitors your DevOps infrastructure for security risks, code leaks and misconfigurations. It also provides insights into the state of your CI CD pipeline.

Azure Marketplace is an online store with thousands of ready-to-use, certified software applications, services and solutions from Microsoft as well as third-party vendors. It allows businesses to discover, buy, and deploy software within the Azure cloud. The marketplace includes a wide variety of products including virtual machine images and AI and machine-learning models, developer tools and security solutions. Azure Marketplace simplifies procurement and centralizes billing with its flexible pricing options, such as pay-as you-go, free trial, and subscription models. It supports seamless integration with Azure Services, enabling organizations enhance their cloud infrastructure and streamline workflows.

How to build a marketplace, online school, or membership site? You will find tools, integrations, workflows, and guides to help you jumpstart your idea. Browse tools and apps, compare features, and leave feedback. Automating routine tasks? All integrations from Zapier and Integromat, Automateio, and other automation platforms are available in one place. Compare features and prices. Find tutorials and guides from vendors and the community. Contribute your knowledge. Make use of the nocode community's openness. Create your profile, grab your favorite tools, and share your stack.