Arnica leverages machine-learning algorithms and graph-based behavioral analysis to secure software supply chains in compliance with regulatory requirements such as SOC2. It monitors a developer's day-to-day behavior and identifies any nuances in their workflows to validate the authenticity of changes made to the code. This allows the platform to detect developer impersonators and prevent attackers from sending malicious codes to the codebase. Arnica provides developer access management, detection and mitigation, continuous SDLC compliance, software bill of materials (SBOM), and developer behavior monitoring.
The company’s behavior-based permissions management solution continuously evaluates developers’ access and updates to least privilege.
Also, the platform automatically revokes any unused developer privileges to help companies manage excessive permissions and implement least-privileged status to minimize the impact of a potential breach on developer workflows. It also provides self-service developer access management, which enables developers to automatically regain their permissions to any code repository through collaboration tools such as Slack or Microsoft Teams when required. Developers can also request the bot to fix a hard-coded secret.
Arnica offers its platform under a SaaS subscription model for up to USD 10 per identity per month and includes a free basic plan with limited features.
Funding and financials
In October 2022, the company raised USD 7 million in a seed funding round co-led by Joule Ventures and First Rays Venture Partners. The funds were utilized to accelerate product development and expand its go-to-market teams.
By using this site, you agree to allow SPEEDA Edge and our partners to use cookies for analytics and personalization. Visit our privacy policy for more information about our data collection practices.