Back
Deep Code Analysis (DCA)
Discover your software architecture in minutes
Apiiro’s Deep Code Analysis (DCA) technology discovers and maps every component in your codebase – so that you can understand your software architecture across all material change and identify, prioritize, remediate, and prevent application risk at scale.
WHY APIIRO
Deep Code Analysis reveals your application DNA
DCA is Apiiro’s technology for uncovering and mapping every component in your codebase, their connections, and their material changes over time. Through deep Abstract Syntaxt Tree (AST) semantic analysis of your code, text, and developer’s knowledge across the history, DCA discovers, classifies, and contextualizes every component of your software architecture and their material logical changes. DCA is a totally different technology then Git diffs, which are contextless.
All that’s required is a simple API integration with your source code manager for DCA to automatically generate a graph-based inventory of every single application component across the history – and their relationships across the development lifecycles and the systems used to deliver software.
Application
- Modules
- APIs
- GraphQL operations
- Protobuf services
- Languages
- GenAI Frameworks
- Technologies
- OSS dependencies
- OSS licenses
- Serverless functions
- Storage buckets
- Interactions
- Feature requests
Supply chain
- Projects
- Repositories
- Source control managers (SCM)
- CI/CD pipelines
- Dependencies
- Artifacts
- Secrets
- Contributors & teams
- Tracked issues
Data & Controls
- Authorization
- Authentication
- Encryption
- Input Validation
- Session management
- Key management
- Data models
- GraphQL objects
- Protobuf messages
- Data access objects
- Sensitive data (PII, PCI, PHI)
Infrastructure
- Infrastructure as code
- Container images
- Containers
- Kubernetes services
- Kubernetes deployments
- Workloads
- Clusters
- Cloud providers
- Cloud App Engine
- API gateways
HOW IT WORKS
What makes DCA unique?
Only DCA is built to automatically uncover every building block of your software and supply chain architecture – at scale, and in context – from within the code base itself. DCA findings are enriched with code-to-runtime context and a proprietary risk engine, providing the visibility into all changes needed to actually embed secure-by-design throughout the entire SDLC.
Deep
Only DCA discovers and maps every single application component (APIs, PII in code, GenAI frameworks, developer knowledge and ownership) to give you the complete picture of your software architecture from code-to-runtime.
Contextual
DCA continuously evaluates findings through the lens of reachability (whether a package is being used in the code), business impact analysis, malware in code analysis, abnormal commit behavior, and more.
Unintrusive
DCA is enabled through simple, seamless and secure API integration with your source code managers (SCM) – no CI/CD configuration or ongoing maintenance required.
DCA is the key to understanding your software architecture
Combined with code-to-runtime context and Apiiro’s Risk Graph engine, DCA is the foundation of XBOM (eXtended Software Bill of Materials): Apiiro’s dynamic map of your software architecture. Leading global enterprises rely on Apiiro’s software architecture to identify, prioritize, remediate, and prevent application risks so they can release secure code, faster.
Risk Graph Explorer
Ask and answer any questions about your application and software supply chain components, their connections and trains, and their associated risks with Apiiro’s graph-based query language.
Material Change Detection
Apiiro monitors each and every code change to automatically determine which may introduce risky material changes, to more efficiently trigger security reviews, threat models, or agile pen tests.
Testing coverage map
Because Apiiro has visibility across your repositories, application profiles and security testing tools and processes, we can map your testing coverage to expose gaps and redundancies.
