Checkmarx Expands Software Supply Chain Security with Advanced Secrets Detection and Repository Health

PARAMUS, N.J.--(BUSINESS WIRE)--Nov 20, 2024--

With the vast majority of development teams using open source software and employing agile development, Checkmarx, the industry leader in cloud-native application security for the enterprise, has announced a new generation in software supply chain security with its Secrets Detection and Repository Health solutions to minimize application risk.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241120723914/en/

Checkmarx software supply chain solutions are offered within the consolidated Checkmarx One enterprise application security platform. These new solutions, Repository Health and Secrets Detection , expand Checkmarx’ software supply chain security offering, joining Software Composition Analysis (SCA), Malicious Package Protection, AI Security and Container Security. Together, they secure every critical aspect of the enterprise software supply chain, equipping development and security teams to identify and mitigate risk at each stage of their software development lifecycle.

“The software supply chain is increasingly targeted by threat actors looking for new ways to breach the enterprise,” said Kobi Tzruya, Chief Product Officer at Checkmarx. “It’s complex and interdependent by nature, with a huge variety of elements and potential entry points to secure. Checkmarx is expanding the capabilities of Checkmarx One to help organizations maximize supply chain security, reduce risk, and fully secure their application development on a single platform.”

Secrets Detection

Secrets are a natural byproduct of application development. Developers often “hard code” credentials to simplify iteration during coding and testing but may forget to remove them before moving the application into production. As the enterprise increasingly moves to the world of agile development, microservices and cloud, the problem and its associated risk will only increase due to the ever-expanding number of services that will need to be collaborated on during the development phase.

Checkmarx Secrets Detection reduces risk by quickly identifying sensitive credentials that may be exposed, enabling development and security teams to quickly remove discovered secrets. Part of the Checkmarx One platform, Secrets Detection accurately identifies more than 170 different types of secrets, including API keys, certificates, exposed credential, encryption keys, tokens, private URLs and other sensitive data.

Repository Health

Checkmarx’ Repository Health helps teams maximize the security posture of their software supply chain by continuously tracking health scores for all software repositories across the application footprint. Scoring is based on more than a dozen key factors in areas such as code quality, dependency management, continuous integration/continuous delivery (CI/CD) best practices and project maintenance.

Checkmarx One introduces 13 new automated checks covering critical areas such as binary artifacts, code reviews, continuous integration packaging and best practices, enabling developers and security leaders to maintain robust repository health. These checks range from searching for binary artifacts within the code to ensuring that best practices of secure development are being followed, such as checking for the completion of code reviews or fuzzing, along with automatic continuous integration checks.

For more information about Checkmarx Secrets Detection and Repository Health, visit this page.

About Checkmarx

Checkmarx is the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services balance the dynamic needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. At Checkmarx, we believe it’s not just about finding risk but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders. We are honored to serve more than 1,800 customers, including 40 percent of all Fortune 100 companies.

Follow Checkmarx on LinkedIn, YouTube and X.

Repository Health offers real-time visibility into the security and maintenance status of code repositories, helping teams proactively address issues and maintain secure development practices. (Graphic: Business Wire)

Secrets Detection reduces the risk of unauthorized access by identifying sensitive credentials unintentionally exposed in code. (Graphic: Business Wire)

The first stage of Mohamed Salah’s rehabilitation at Liverpool is complete after the Egypt forward returned to the team for its 2-0 win over Brighton in the Premier League on Saturday.

The question now as Salah heads off to the Africa Cup of Nations: Is there a future for him at Anfield when he comes back?

Salah, who let rip last weekend about his current frustrations at Liverpool, entered as a 26th-minute substitute to a big ovation and set up the second of Hugo Ekitike’s goals as the defending champion extended its unbeaten run to five games in all competitions.

Also Saturday, Chelsea beat Everton 2-0 and was set on its way to victory by Cole Palmer’s first goal in three months. First-place Arsenal hosts last-place Wolverhampton later.

Salah held talks with Liverpool manager Arne Slot on Friday in an effort to overcome their issues and the result was that Salah was recalled to the matchday squad for the Brighton game. He had been a substitute for the last three Premier League matches before being left at home for the midweek Champions League trip to Inter Milan as a punishment for his explosive comments to reporters last weekend.

“It was an easy decision to put him in the squad," Slot said. “I have said many times before what has been said between us will stay between us.”

Liverpool's fans demonstrated they are willing to excuse Salah for his show of anger and gave him a rapturous welcome when he came on as a substitute for the injured Joe Gomez midway through the first half.

By then, Liverpool was leading 1-0 thanks to Ekitike's rising shot inside the first minute and Salah showed glimpses of his class, especially on the counterattack. It was Salah's corner kick that was headed in by Ekitike for the second goal in the 60th, sparking another round of chants for the Egyptian.

Slot said Salah was a threat all game.

“Pleasing to see but not a surprise,” Slot said.

Salah could be away for more than a month if Egypt goes all the way in the Africa Cup.

It was a second straight start for Palmer, whose season has been blighted by a groin injury that has restricted him to seven games in all competitions.

There looked to be nothing wrong with Palmer when he ran onto Malo Gusto's pass and slipped a finish inside the near post to give Chelsea the lead in the 21st minute at Stamford Bridge.

However, Palmer said after the game that he wasn't at his best yet because he was “still dealing with an injury.”

“It’s just a matter of not doing too much too soon,” Palmer told the BBC. “Literally, it’s just a day-by-day thing. Hopefully it gets better.”

Gusto added the second goal in the 45th minute for Chelsea, which jumped to fourth place.

Steve Douglas is at https://twitter.com/sdouglas80

AP soccer: https://apnews.com/hub/soccer

Chelsea's Cole Palmer celebrates after scoring his sides first goal during the English Premier League soccer match between Chelsea and Everton in London, Saturday, Dec. 13, 2025. (Adam Davy/PA via AP)

Liverpool's Hugo Ekitike celebrates after scoring his side's second goal during the English Premier League soccer match between Liverpool and Brighton and Hove Albion in Liverpool, England, Saturday, Dec. 13, 2025. (AP Photo/Jon Super)

Liverpool fans hold placard depicting Liverpool's Mohamed Salah before the English Premier League soccer match between Liverpool and Brighton and Hove Albion in Liverpool, England, Saturday, Dec. 13, 2025. (AP Photo/Jon Super)

Liverpool's Mohamed Salah, left, challenges for the ball with Brighton's Lewis Dunk during the English Premier League soccer match between Liverpool and Brighton and Hove Albion in Liverpool, England, Saturday, Dec. 13, 2025. (AP Photo/Jon Super)