Integrations

Single Sign-On (SSO)

Xygeni provides Single Sign-On (SS) through integration with 3rd party Identity Providers (IdPs) using SAML2 protocol.

Integrate into CI/CD Systems

The build pipeline is a good point for running the Xygeni scanner, as it can check early in the build cycle if there are issues that should be resolved before advancing to the next step.

The Continuous Integration/Delivery System can run a scan step in a given pipeline for ensuring that the software and the build pipeline itself are free of issues that bad actors may leverage to breach the software supply chain, inserting malicious or unintended code, or exfiltrating sensitive information for nefarious purposes.

Xygeni Sensors

Xygeni provides 'plugins' (Xygeni Sensor) for Source Code Managers (SCMs) like Azure DevOps, BitBucket, GitHub or GitLab or standalone CI/CD systems like Jenkins. The sensor captures important events, like administrative changes, new commits or pull requests, pipeline events, and other relevant activity, and sends them to the Xygeni servers typically using webhooks.

Xygeni analyzes the events and emits an alert when an unusual activity anomaly is identified. Unusual activity typically demands to take immediate action to mitigate the risk and prevent further damage.

Collaboration & Communication Tools

Xygeni allows users to configure Slack as a channel to publish issues found by Xygeni platform.

Ticketing Systems

Xygeni allows users to create tickets from issues found. Supported ticketing systems are Jira and GitHub.

After configured the integration, you will be able to create tickets from the details slide of any issue.

Remediation (auto-fix)

Xygeni allows users to automatically fix of certain types of issues (vulnerabilities of open source dependencies).