Data Sheet: Shifting Security Left with the ActiveState Platform

A solution for DevSecOps – the ActiveState Platform

The ActiveState Platform secures your open source supply chain, while providing a universal package management solution for Python, Perl and Tcl designed to let:

• Developers eliminate dependency hell and “works on my machine” issues. 
• DevOps improve reproducibility and transparency of workloads.
• SecOps to reduce Mean Time to Remediation (MTTR) from weeks to hours.

ActiveState Platform for DevSecOps

Developers: Simplify Dev Environment Management

Individual developers primarily use the ActiveState Platform for:

• Environment Management – similar to Python’s pip or Perl’s CPAN, you can use the ActiveState Platform’s CLI, the State Tool, to install and manage your environments on Windows, Linux and macOS.
  • Provides dependency resolution, flags conflicts and even provides workarounds, eliminating dependency hell.

Development teams primarily use the ActiveState Platform for:

• Shared Runtime Environments – the ActiveState Platform automatically builds from source code a single, central “source of truth” for your project’s runtime environment that can be used by all developers on a team.
  • Eliminate “works on my machine” issues. 
  • Ensure secure Dev environments compared to installing pre-compiled binaries.
  • Ensure developers work with an approved set of packages.

DevOps: Optimize CI/CD Pipelines

DevOps uses the ActiveState Platform’s pre-built runtime environment to build their CI/CD environments, gaining:

• Reproducibility – shared runtimes ensure reproducible environments between Dev and Test, resulting in fewer bugs arising due to inconsistent environments.
• Speed – pre-built runtimes decrease the time to build containers. Caching can help speed things up for repeated runs, but not when you’re doing rapid development and changing your dependencies.
• Security – all Python, Perl and Tcl environments are built from source, helping to solve open source supply chain issues by delivering transparency for all language artifacts in production workloads.

SecOps: Remediate Vulnerabilities Faster

SecOps can use the ActiveState Platform to shift security left, securing the Development and Test environments without disrupting the software development process:

• Monitor Python, Perl and Tcl open source components used by developers to ensure timely awareness of vulnerabilities.
• Upgrade or downgrade vulnerable components, and automatically rebuild a secure runtime environment ready to be pulled into your CICD pipeline. 

Features	Benefits
Universal Package Management for Python, Perl & Tcl on Windows, Linux and macOS	A single toolchain reduces maintenance and overhead costs
Native virtual environment support	Run multiple projects/versions of Python, Perl and Tcl on your machine without dependency conflicts.
Revision control provides an auditable history of changes to your environment	Never rebuild corrupted environments again – just revert to the latest working version.
Versatile CLI (State Tool) lets you manage your environment directly from the terminal.	Integrate with your existing CI/CD pipelines, and keep your team synchronized across platforms.
Build environments fast from source code with our distributed, parallel build system.	Automatically build packages (including linked C libraries) from source without the need for OS or language expertise.