• Code doesn’t leave your premises even for scanning – zero trust scan
  • Packaged as a container for easy on-premise deployment
  • Support for open source dependency, IaC and embedded secrets scan (using custom password list)
  • Workflows to scan PRs for open source vulns and IaC issues
  • Support for on-premise / hosted GitHub Enterprise service
  • Auto upgrade using watchtower