January 29, 2024
Featured
Coana on why vulnerability scanning can be time-consuming and demoralizing for engineering teams:
[There is] a significant limitation of conventional SCAs: they lack the contextual understanding necessary to provide detailed and relevant vulnerability reports. These tools cannot determine whether you are actually using the vulnerable part of an affected package, or if you are, whether it's in a context vulnerable to exploitation. As a result, conventional SCAs create lots of vulnerability alerts that simply aren’t relevant to their users. In fact, our findings at Coana reveal that up to 95% of all vulnerability alerts from these tools are completely irrelevant false positive alerts that present no security risk.
[ Vulnerability Scanning is Broken ]
Funding
——
Coana | $1.6m | Pre-Seed | Website | Announcement
Coana is a tool for software composition analysis (SCA). The platform introduces the concept of 'reachability', which distinguishes between exploitable and unexploitable vulnerabilities, to help teams focus on the most important vulnerabilities.
——
unSkript | $3.75m | Pre-Seed | Website | Announcement
unSkipt uses Generative AI and adaptive health checks to proactively find, diagnose and fix issues in Kubernetes clusters. The platform can learn from users and incidents to update its knowledge to assist with future incidents.
——
Masa | $5.4m | Seed | Website | Announcement
Masa is a decentralized data marketplace that allows users to contribute their data to the Masa network and receive rewards. Developers can build applications on top of this network of "private-by-default" user data.
——
Better Stack | $10m | Venture | Website | Announcement
Better Stack is an infrastructure monitoring platform, similar to Datadog and New Relic. The company emphasizes its collaborative features and claims to be "10x cheaper, yet 10-100x faster than the alternatives".
——
Ozone API | $10.8m | Series A | Website | Announcement
Ozone API is an API solution that helps engineering teams at banks and financial institutions comply with open banking standards and regulations.
——
ModernFi | $18.7m | Series A | Website | Announcement
ModernFi is an API-driven platform for banks to access the company's deposit network. Financial institutions can sweep (spreading customer deposits across banks), reciprocate, and receive deposits through the company's APIs.
——
Axiom | $20m | Series A | Website | Announcement
Axiom helps developers build applications that can access more historical data on the Ethereum blockchain at a lower cost. Without a tool like Axiom, smart contracts can only access the current state of the Ethereum blockchain, which omits historical data.
——
Qdrant | $28m | Series A | Website | Announcement
Qdrant is a vector database that allows teams to handle complex high-dimensional data, like images, audio, and text. It is become an important part of building generative AI and retrieval-augmented generation (RAG) applications.
——
Clerk | $30m | Series B | Website | Announcement
Clerk is a user management platform that offers embeddable UIs and APIs to help engineering teams rapidly build and manage authentication. That includes features like multi-factor authentication, session-management, magic links, social sign-on, and bot detection.
——