As part of our latest release RIPS 3.3, we published our new integration for GitHub. It can be used as a security gateway to automatically check your application builds for the existence of security vulnerabilities and security-related code quality issues. See how RIPS can automatically protect your production server from new security bugs.

RIPS 3.3 is now available! It enables to scale our cutting-edge SAST technology to large teams and applications. Run parallel scans with our new data center edition, increase analysis depth with an improved dependency and framework analysis, and enjoy an upgraded user experience with new notifications, user activity statistics, and a RIPS health check.

BigTree is a small content management system which does not depend on many frameworks and advertises itself as user friendly and developer ready. In this blog post, we will take a look at a few vulnerabilities we have detected in the codebase of BigTree.

TYPO3, one of the most widely used enterprise-level CMS with over 9 million downloads and over 15 years of experience in the content management market, announced today its partnership with RIPS, the technology leader for static application security testing of web applications.

In this technical blog post we will examine how a drive by exploit in the Pimcore release 6.2.0 allows an attacker to execute OS commands by tricking an authenticated administrator into exploiting a command injection vulnerability.