Sparrow Cloud is a single platform for managing security and quality issues of both source code and web applications: running static and dynamic tests, checking test results, marking vulnerability status, and generating reports.
Since its introduction in 2018 as a cloud-based static application security testing service, Sparrow Cloud has been evolving continuously. Sparrow Cloud added dynamic analysis in 2019 and an integrated service that combined static and dynamic analysis in 2020 and is now introducing its open source management service.
This open-source management SaaS service will not be available until the beginning of 2023.
Sparrow SCA will analyze source code and binary files for open source license information and security vulnerabilities and generate detailed results into reports and SBOM (Software Bill of Materials) in global standard formats: SPDX, CycloneDX, and SWID Tags.
Sparrow Cloud was also launched in AWS Marketplace last March and enabled users to quickly identify, analyze, and remediate their applications, including software and web applications for security vulnerabilities without any hardware or other installation.