Identify and fix the most important security vulnerabilities in your code. We provide application security assessments that go far beyond the results of just running automated tools. Our recommendations are guided by your business model and risk tolerance.
We take on security intensive feature development when your business depends on it, like extreme PII processing when information needs to be encrypted. We offer services from user (and abuser) story writing, security tests, and implementation services for these security intense features.
Security is not an on/off switch. No useful software application is truly ultimately secure. Security risk may be managed! Your company can take sensible, commercially-viable steps to avoid being in the news with an embarrassing data breach with your name on it.
Rietta has spent more than a decade developing applications with appsec as a fundamental design requirement and more than seven years applying this exclusively in the context of Ruby on Rails applications.
How often do you run this `bin/setup` if it’s only ran when you set up your repo? Most developers setup their environment only every once in awhile. What happens when changes to the codebase happen and the bin/setup isn’t modified as well?