Oxeye + GitLab: A Fresh Approach to AppSec

When you come across a team that’s taking a fresh approach to a known and scaled challenge like application security, you invest. Our former colleague Tyler Jewell (now CEO of DTC-backed Lightbend) brought Dean Agron and Ron Vider in to meet the DTC team two years ago. It was immediately apparent that their integrated approach to app sec was something new and interesting. And they were solving for one of the biggest headaches in security: the volume of alerts without context.

Instead of boiling the ocean, Oxeye zeroes in on the application risks that truly matter to an organization’s security. Their tech looks at the relationships between open-source packages, custom code, application flows, infrastructure, and exploitable vulnerabilities. When a vulnerability is discovered, Oxeye validates that it’s actually exploitable before raising a red flag. For customers, that means more of the data they need minus the chaos they don’t. This may read a bit like an advertisement but really, it’s a deep appreciation for what this team set out to accomplish.

Today we celebrate them joining with GitLab. As GitLab continues to expand its commitment to app sec in the world of CI/CD-driven software engineering, Oxeye’s tech on their platform has the potential to deliver significant value. We’re excited for GitLab. And we’re excited for Oxeye. Thanks to Dean, Ron, and the Oxeye team for allowing DTC to be a part of this story.

Mazel Tov!

The DTC Team