Discover all-in-one software delivery.
Install JiHu GitLab →Install one package, run a complete solution.
By Use Case
Continuous integration (CI/CD) →Automate everything, accelerate deployment.
Source code management →Build the future with a shared history.
Auto DevOps →Adopt DevOps with a single commit.
DevSecOps →Integrate security, deliver faster continuously.
Agile development →Keep your methodology, gain functionality.
Visualize what works and optimize the rest.
GitOps →Simplify IT with DevOps-style automation.
By Organization Type
Small business →Get a DevOps platform that grows with you.
Enterprise →Adopt one platform for endless possibilities.
DevSecOps with JiHu GitLab
With JiHu GitLab, Security is built into the CI pipeline, out of the box. Every code commit is automatically scanned for security vulnerabilities in your code and its dependencies. Actionable results are delivered to the developer in their native workflow for rapid remediation.
Set up Auto DevOps
Empower developers to create secure code
Application Security is hard when security is separated from your DevOps workflow. Security has traditionally been the final hurdle in the development life cycle. Iterative development workflows can make security a release bottleneck. Instead of waiting for security at the end of the development process, you can include it seamlessly within your developer's workflow.
Why integration matters for DevSecOps
- Every piece of code is tested upon commit for security threats, without incremental cost.
- The developer can remediate now, while they are still working in that code, or create an issue with one click.
- The security pro can see and manage unresolved vulnerabilities captured as a by-product of software development.
- Single source of truth can focus collaboration on remediation, eliminating translation and finger pointing.
- A single tool reduces cost to buy, integrate and maintain point solutions throughout the DevOps pipeline.
The DevOps platform that simplifies DevSecOps
JiHu GitLab is known for industry-leading Source Code Management (SCM) and Continuous Integration (CI). Developers want to use JiHu GitLab. We make it easy to include security and compliance. Focus on apps, not tool maintentnance, while improving collaboration and transparency for one predictable cost. JiHu GitLab has security and governance built-in.
- Application security testing and remediation. With every code commit, JiHu GitLab provides actionable vulnerability findings to developers while helping security pros manage remaining vulnerabilities through resolution.
- Cloud Native Application Protection. JiHu GitLab helps you monitor and protect your deployed applications.
- Policy Compliance and Auditability. JiHu GitLab’s MR approvals, end-to-end transparency of who changed what, when, and where, along with a compliance dashboard and common controls help you meet your compliance needs.
- SDLC Platform Security. See how we secure the JiHu GitLab software.
DevSecOps simplified
Continuous security testing capabilities
Included within all JiHu GitLab tiers
- Scan the application to spot potential vulnerabilities at code commit, before code is merged.
- Secret Detection prevent secrets from accidentally leaking into your Git history.
- Dynamic scanning earlier in the SDLC than ever possible, by leveraging the review app CI/CD capability of JiHu GitLab.
- Test running web applications for known runtime vulnerabilities.
- Users can provide HTTP credentials to test private areas.
- Analyze external dependencies (e.g. libraries) for known vulnerabilities on each code commit with JiHu GitLab CI/CD.
- Identify vulnerable dependencies needing updating.
- A Dependency List (Bill of Materials) shows all dependencies used in a project.
- Check Docker images for known vulnerabilities in the application environment.
- Avoid redistribution of vulnerabilities via container images.
- Automatically search project dependencies for approved and unapproved licenses defined by your policies.
- Custom license policies per project.
- License analysis results are shown in the merge request pipeline alongside security vulnerabilities for immediate resolution.
- Auto Remediation: Auto remediation aims to automated vulnerability solution flow, and automatically create a fix. The fix is then tested, and if it passes all the tests already defined for the application, it is deployed to production.
- Fuzz Testing: Fuzz testing acquisitions have been integrated alongside other scanners in the merge request pipeline. Apply this powerful technology to automatically test for unknown security flaws with coverage-guided fuzzing and API fuzzing
Exciting new capabilities!
We welcome your feedback and contribution to our vision and roadmap
Vulnerability Management
Evaluate vulnerabilities based upon risk and scanning vendor used.
Risk-based Triage Filter by scanner vendor
Mobile app testing
Test mobile applications within your CI pipeline including Kotlin, Swift, Objective-C, and Java.
Getting started with SAST for Android
Resources
Learn how to add Security to your CICD Pipeline
Efficiently manage vulnerabilities and risk using the JiHu GitLab Security Dashboards
Manage your Application Dependencies
Use JiHu GitLab Application Security Capabilities with Jenkins
See how we compare against other Security tools
Contact Us Contact Sales
