AppSec.Code

AppSec.Code is a full-fledged software development environment with built-in information security features. In the summer of 2024, AppSec.Code was included in the register of Russian software.

2026: Kernel version 18.7

AppSec Solutions has updated its secure software development lifecycle management product. The company announced this on February 17, 2026.

The updated AppSec.Code platform allows development teams that use popular open source repositories to switch to domestic DevSecOps tools for controlling code versions, while using all the most modern information security practices and analyzing the quality of the software being developed.

The Russian replacement of foreign VCS systems will now allow developers to switch to the latest tools, while not losing functionality in the set. The release affected, first of all, the major kernel update to version 18.7.

This is very important, especially against the background of the fact that the development market still uses outdated versions of VCS systems to a large extent, which cannot be updated, because their technical support is closed in Russia. Many have a list of open vulnerabilities and bugs that cannot be closed without an update. Not to mention reduced performance compared to modern systems. We have updated the key components of the platform, improved the stability and performance of instances in both docker and k8s, "said Danil Balavnev, Head of Product AppSec.Code.of AppSec Solutions.

In addition to increasing performance, the developers of the AppSec.Code platform have added native integration to the product with other AppSec Solutions ecosystem products that automatically perform scans in SAST/DAST/SCA practices, highlighting vulnerabilities during the development phase, preventing them from production. The platform also expanded its administration capabilities by implementing more flexible access control rules with tighter control of critical operations. Now not only performance metrics are available, including autotests, pipelines and deploys, but also data on code, code duplicates, feature complexity, developer ratings.

2025

StarVault Compatibility

AppSec Solutions (AppSec Solutions) and Orion soft (Orion) on December 3, 2025 announced the technological compatibility of their AppSec.Code and StarVault products.

In conjunction, domestic products will allow developers to use different repositories without losing functionality and with high security standards, connecting secret management modules.

Working with AppSec Code and Orion soft solutions is suitable for companies with large development teams. The ability to share StarVault with AppSec.Code's secure development environment will help companies automate and standardize secure development.

Compatibility of products of domestic vendors is an important step for the Russian market DevSecOps. The ability to switch to Russian tools without losing speed and quality helps developers release competitive products, ensuring the necessary technological sovereignty, "said Anton Basharin, Senior Managing Director of AppSec Solutions.

The organization of secure development in companies with a large staff of its own IT specialists is necessary for large business and at the same time an integrated process. Ready-made platform solutions simplify it and help meet the needs of regulators - StarVault, for example, closes all requirements of GOST R 56939-2024 for secure development as part of secret management. These factors make platform solutions more and more popular, and their compatibility is becoming an important condition for implementation, "added Alisher Kamalov, leader of the StarVault Orion soft product.

Marlin Platform Compatibility

HD Tech has confirmed the full compatibility and correctness of its flagship product, the domestic IDP platform Marlin, and the source code management and development solution for AppSec.Code protected software from AppSec Solution. HD Tech announced this on January 29, 2025. Read more here.

2024: Integration with AppSec.Hub

The AppSec.Hub platform has been integrated into the AppSec.Code secure software secure development environment. AppSec Solutions (AppSec Solutions) announced this on December 17, 2024. This is a full-fledged domestic alternative to the Gitlab Enterprise product, whose vendor has left the Russian market. Now Russian companies have the opportunity not only to fulfill the mandatory requirements for import substitution in the field of information security, but also to solve the problem of a shortage of competencies, as well as significantly reduce time-to-market.

Integration of services will simplify the interaction of the information security specialist and the developer. You can now run a scan to search for the most common vulnerabilities (static, dynamics and composite analysis) without attracting additional specialists and without opening access to the code for them. The developer will cope on his own, in one click. This will significantly simplify the task in those teams where there is an acute lack of information security specialists.

Imagine a major project: 20 development teams, 2-3 cybersecurity specialists on them, with a lot of tasks and burning deadlines. To run a vulnerability scan at each stage, for each command, the AppSec engineer must access the code, which often takes a long time, and only then manually register the code for additional checks, run the scan and get the results. The integration of AppSec.Code and AppSec.Hub will make it much easier: it is enough for an information security engineer to set a task for the developer, and for the latter to press one button in the interface, said Alexander Zavodovsky, product manager of AppSec.Code.