Jit Announces C, C++, and Ruby Support for SAST
Updated February 28, 2024.
Jit is excited to announce new language support for our SAST offering, powered by Semgrep!
For C and C++, Jit added thirty hand-picked rules that combine Semgrep community and official rules, which will cover common issues like Buffer Overflows, Integer Overflows, and more.
Additionally, our new Ruby support will include 48 Semgrep rules that cover common vulnerabilities like tainted URI hosts.
For other common languages, Jit customers can read thorough descriptions of vulnerabilities, in addition to in-PR remediation code recommendations to automatically fix issues.
While auto-remediation is not yet available for C, C++, or Ruby, this remains a priority for us. For now, developers can quickly understand how to address issues with in-depth descriptions of the security issues.
An Overview of SAST with Jit
Jit unifies the developer user experience of SAST alongside SCA, secrets detection, CI/CD security, SBOM, IaC scanning, cloud security, and DAST – making eight security tools feel like one. SAST is delivered entirely within the PR, so developers never need to leave their environment.
Jit proudly leverages the Semgrep and GoSec static analysis engines for SAST, which are automatically invoked as the developer creates their PR. Security issues are presented with remediation context and code suggestions (coming soon for C, C++, and Ruby!) within the same PR, so developers never need to leave their environment.
Looking to try it yourself? Try Jit for free or book a demo.
