Dryrun Security

What is Dryrun Security?

Dryrun Security is your coding sidekick, built to boost your code’s security right as you’re writing it. It’s all about giving developers a clear picture of security risks in real-time, making security testing feel less like a chore and more like a natural part of the process. This tool acts like a helpful buddy, analyzing every pull request to make sure the code changes you’re making are safe and sound. It works smoothly with lots of different languages and frameworks and integrates easily as a GitHub App, so getting it set up and reviewing code is a breeze. Dryrun Security really helps developers out by giving them feedback almost instantly, keeping their code repositories safe, and generally making them more productive.

James Wickett and Ken Johnson, the folks behind Dryrun Security, are big on making sure developers have the tools they need to keep security and quality front and center as they build.

Who created Dryrun Security?

Dryrun Security was actually started by James Wickett, who serves as the CEO and Co-Founder, alongside Ken Johnson, the CTO and Co-Founder. James kicked things off because he genuinely believes developers care about security and quality, but they’ve often been left wanting when it comes to the tools the security industry provides. Ken Johnson, who used to lead the internal security code reviews over at GitHub, then joined him as CTO. The company officially launched on December 6, 2023, with the goal of giving developers an AI-powered tool that could automatically check their code for security issues right there as they’re coding. It supports a variety of languages and frameworks, aiming to boost both developer productivity and overall code security.

What is Dryrun Security used for?

• It works with many different languages and frameworks.
• It automatically checks your code for security issues as you write it.
• It provides quick security reviews.
• It helps protect every code repository you have.
• It speeds up your development pipeline.
• It offers detailed security analysis.
• It helps reduce incorrect security alerts.
• It specifically looks at how authentication and authorization are handled.
• It examines sensitive parts of your code paths.
• It checks sensitive functions for potential problems.

Who is Dryrun Security for?

• Developers
• Security professionals

How to use Dryrun Security?

Dryrun Security is an AI tool designed to help developers by automatically checking their code for security issues right as they’re coding. To get the most out of Dryrun Security, just follow these simple steps:

1. Get it installed: You can install the DryRun Security GitHub App onto the repositories you want to protect. It really only takes about a minute.
2. Keep coding: Just write your code like you normally would. Whenever you create a pull request – that’s a code change in GitHub – DryRun Security’s checks will automatically kick in.
3. Understand the security picture: Before you merge any code changes, developers get immediate security context, usually in just a few seconds. This way, you know the security implications of your changes before they go live.

By following these straightforward steps, developers can use Dryrun Security to improve their security practices, make their development process faster, and ensure their code changes are safer.