Skip to content

Boostsecurity is an Application Security Posture Management (ASPM) solution that helps you build secure software and secure your software supply chain.


How-to Guides


  • Platform UI - Dive deep into each aspect of the BoostSecurity user interface and gain understanding into how each view works.
  • Scanner Coverage - The Scanner Coverage page serves as a centralized dashboard for monitoring the Scanner Coverage status of your organizations.
  • CI Integration - Learn how to integrate BoostSecurity into your CI.
  • Configuring Scanner Modules - Learn about all the supported scanner modules
  • FAQ - common questions and answers about BoostSecurity
  • What's new - List of latests changes to the service

BoostSecurity Scanner

The Boost Scanner provides out-of-the-box static-analysis automation with over 150 tuned rules to find across all cloud platforms and half a dozen programming languages. The Boost Scanner rules have been screened, tested, and adjusted to provide high-signal, low-noise results directly to developers before code is in production.

  • All Rules - see the list of 150+ rules support by the Boost Scanner
  • Secrets - rules for detecting secrets in source code
  • Insecure Coding - rules for discovering vulnerabilities like the OWASP Top 10
  • CI/CD - Supply Chain - rules for CI/CD - Supply Chain misconfigurations
  • AWS - rules for cloud misconfigurations in AWS terraform and cloud formation
  • GCP - rules for cloud misconfigurations in GCP terraform
  • Azure - rules for cloud misconfigurations in Azure terraform
  • Kubernetes - rules for misconfiguration in Kubernetes manifests
  • X.509 - rules for misconfigurations in X.509 certificates


  • Jira - connect BoostSecurity findings to JIRA
  • Slack - connect the BoostSecurity Activity Feed to Slack to see findings as they are discovered
  • Teams - connect the BoostSecurity Activity Feed to Teams to see findings as they are discovered
  • Dependabot - connect the BoostSecurity to Github's Dependabot API