DevOps Dozen 2022 – Tools Awards Finalists

FINALISTS:

Cycloid [Nominated 1 time(s)]

Based on your Git, Cycloid is an internal engineering platform that allows any end-users to interact with tools and cloud without the need to become a DevOps expert. This means that Cycloid can be used to create an opinionated platform to define the governance and the level of flexibility wanted. Cycloid is entirely technology, tool, and cloud-agnostic with easy to deploy modules covering Governance, Deployment, Operations and FinOps. In addition to stacks, Cycloid provides features like InfraImport and StackCraft as part of a GitOps approach that enables organizations to easily establish an IaC baseline of an environment.

Iterative Studio [Nominated 1 time(s)]

Iterative Studio provides collaboration for machine learning teams. It provides seamless data and model management, experiment tracking, visualization and automation, with Git as the single source of truth.

Red Hat OpenShift GitOps [Nominated 1 time(s)]

As the number of clusters in a Kubernetes environment grows and as applications are deployed to different clusters in different environments — such as development, staging and production — Red Hat OpenShift GitOps ensures the kind of consistency, security and support that enterprises require. OpenShift GitOps is based on Argo CD, a CNCF project that acts as the declarative GitOps engine that enables GitOps workflows across multicluster OpenShift and Kubernetes infrastructure.

FINALISTS:

BMC Compuware ISPW solution [Nominated 1 time(s)]

The BMC Compuware ISPW solution is a source code management (SCM), build, and deploy solution that enables continuous integration and continuous delivery (CI/CD) on the mainframe. It gives organizations the confidence to build, test, and deploy software on the mainframe quickly and efficiently.

CircleCI [Nominated 1 time(s)]

CircleCI is leading the way in the increasingly important corner of DevOps known as CI/CD, empowering thousands of software developers to build faster and more accurately, decreasing the time to innovation. By automating manual tasks in development cycles and enabling developer productivity across industries, CircleCI powers companies like Samsung, Ford Motor Company, Spotify, Lyft, Coinbase and Stitch Fix to work smarter.

CloudBees CI [Nominated 1 time(s)]

Built on the most widely used automation server in the world, Jenkins™ – CloudBees CI provides flexible, scalable, and governed CI, designed for enterprise sized requirements. The CloudBees solution enables enterprises to simplify experiences with Jenkins, leverage Kubernetes elasticity and resiliency, confidently manage plugins, secure workflows, and deliver Jenkins at scale – all while ensuring security, governance, and compliance are met.

Continuous Machine Learning (CML) [Nominated 1 time(s)]

Continuous Machine Learning (CML) is an open-source CLI tool for implementing continuous integration & delivery (CI/CD) with a focus on MLOps. Use it to automate development workflows — including machine provisioning, model training and evaluation, comparing ML experiments across project history, and monitoring changing datasets. CML can help train and evaluate models — and then generate a visual report with results and metrics — automatically on every pull request. GitHub repo: https://github.com/iterative/cml

Copado Platform [Nominated 1 time(s)]

Copado is redefining the standard of Salesforce DevOps with its low-code approach to delivering faster, higher quality releases and improving trust across customer transformation projects.

Designed for the new breed of non-technical and technical low-code delivery teams, Copado enables customers to integrate continuous quality into every branch of code deployed by embedding end-to-end testing. One of the first companies to achieve this milestone, Copado ensures quality, security and compliance across every step of the software development lifecycle. Earlier this year, it was the first to natively integrate testing into its low-code CI/CD DevOps platform.

GitKraken CI/CD for Jira [Nominated 1 time(s)]

CI/CD for Jira allows teams to view build and deployment information from your CI/CD pipelines directly in Jira. This application is a free extension for Git Integration for Jira by GitKraken. CI/CD for Jira is SOC2 certified, is part of the Atlassian Marketplace Bug Bounty Program, and has completed the Security Self-Assessment Program.  Users can also unlock additional triggers for Jira automation and search parameters for JQL queries.

Harness Software Delivery Platform [Nominated 1 time(s)]

Harness provides a CI/CD platform that is both simple and powerful for engineers to deliver software. Weaving both CI and CD together allows for even more seamless development processes, and this is taken to the next level with ingrained security, compliance, and governance. While the cloud has rapidly modernized, most CI/CD tools have remained stagnant. In contrast, Harness’s CI/CD tool is the only tool on the market that deploys AI and ML technology, making it a pioneering solution for DevOps teams. While the tool is on the cutting edge, it can meet organizations at any stage of their cloud modernization journey – empowering teams to chart their own paths forward.

(see also: https://harness.io/products/continuous-integration)

LaunchDarkly [Nominated 1 time(s)]

LaunchDarkly’s platform provides developers and engineers with the freedom to take risks with fewer limitations and fear of failure. With LaunchDarkly, companies can control which users a feature is released to by targeting specific user identities (browser-based vs. mobile device users, for example). This way, if there’s a problem, developers can implement a quick kill switch so they don’t have to go through the entire CD process again to redeploy an older version of the software. Now, they can simply toggle the feature off, fix the problem, and redeploy, saving developers from a ton of added stress and time. Beyond the benefit for developers, it ultimately results in building better software for customers.

Octopus Deploy [Nominated 1 time(s)]

Octopus Deploy enables software teams to deploy their solutions in a continuous and automated way. It simplifies complex deployment processes allowing software solutions to be delivered faster and in a unified way to various deployment environments. Octopus Deploy addresses the needs of enterprise organizations which now don’t need to choose between the speed and the quality of their software deployments. It also provides robust permission and auditing capabilities to ensure internal and external compliance. Octopus Deploy integrates, out-of-the-box, with leading CI/CD solutions to streamline deployment pipelines and to provide additional value to organizations’ existing systems.

OpsMx Intelligent Software Delivery Platform [Nominated 1 time(s)]

The OpsMx Intelligent Software Delivery (ISD) Platform simplifies and intelligently automates software delivery, enabling hundreds of thousands of developers at Google, Cisco, Western Union, and other leading global enterprises to ship better software faster. Incorporating open source Argo and Spinnaker, OpsMx’s ISD Platform is the first open, unified platform for deploying applications in container, virtual machine, and multi-cloud environments. OpsMx ISD utilizes the power of Spinnaker and Argo by integrating with more than 70 popular CI/CD tools to automate CD pipelines – with a user experience that is second to none.

Red Hat OpenShift Pipelines [Nominated 1 time(s)]

Red Hat OpenShift Pipelines — which is designed for decentralized teams that work on microservice-based architecture — is a cloud-native, serverless continuous integration and continuous delivery (CI/CD) solution based on the Tekton Continuous Delivery Foundation project, a powerful yet flexible Kubernetes-native open source framework for creating CI/CD systems.

FINALISTS:

Allstacks Platform [Nominated 1 time(s)]

The Allstacks platform was created with the goal of supporting engineers and helping them secure a spot in the boardroom. By providing clear, easy-to-understand benchmark data, Allstacks makes it easier to transparently communicate project status. Improving the internal communications process helps make the development process smoother, an important step to success.

In 2022, Allstacks released a live dashboard with valuable industry benchmark data from software engineering teams for free on its website, which was an industry first. Any company can access this real-time, actionable data to enable continuous improvement goals by comparing the progress of its own software teams against 250,000 contributors.

BMC Compuware zAdviser [Nominated 1 time(s)]

BMC Compuware zAdviser continuously captures data from different development sources to create key performance indicators (KPIs) and metrics for visualizing and understanding the software development lifecycle. With BMC Compuware zAdviser, management can track efforts and determine where bottlenecks lie. Using data from the BMC Compuware ISPW (for source code management), BMC Compuware zAdviser reports on time spent on code development, lead time for changes, change failure rate, deployment frequency, and overall lifecycle time.

These metrics, along with a dozen other metrics, are also available in easy-to-navigate dashboards. BMC Compuware zAdviser benchmarks help to better understand what “good” looks like.

CloudBees Platform [Nominated 1 time(s)]

CloudBees Platform is an end-to-end, integrated platform that provides a single solution for continuous integration (CI), continuous delivery (CD), value stream analytics, feature management (FM), release orchestration and continuous compliance. Users can view and analyze their software delivery process from end to end, leveraging DORA metrics to drive improvement across teams. CloudBees Platform enables organizations to simplify building and managing DevOps pipelines by minimizing the overhead involved in orchestration, integration and governance, thus maximizing value by providing visibility, traceability and observability into the flow of work.

ConnectALL [Nominated 1 time(s)]

ConnectALL’s value stream management platform has the capability to connect any and all of the tools, systems and platforms in the DevOps and software delivery value stream ecosystem. With these connections, people can see, measure, and automate their value streams empowering them to improve flow, be data driven, and deliver business value. It provides visibility to data across an organization’s DevOps pipeline activities and tools.

Digital.ai Value Streaming Management [Nominated 1 time(s)]

Digital.ai’s Value Streaming Management Tool unifies, secures and generates predictive insights across the software lifecycle, empowering teams, propelling innovation and enhancing business value.

ValueOps from Broadcom [Nominated 1 time(s)]

ValueOps from Broadcom delivers on the promise of VSM, by combining business- and investment-oriented product management features with advanced, operationally focused Agile planning and management capabilities. Breaking down the silos between business and IT reduces waste, optimizes the flow of value, and unites the enterprise.

By integrating the proven investment planning features in Clarity™ with the advanced Agile management capabilities in Rally® software, ValueOps from Broadcom aligns business and IT leaders. This alignment allows them to create and manage consistent value streams that span the enterprise to eliminate friction, accelerate development, and improve both quality and accountability.

ZenHub [Nominated 1 time(s)]

Over 8,000 software-focused startups, high-growth companies, agile teams, and open source projects use Zenhub’s productivity management solution to deliver software innovation faster. Zenhub helps strategic firms foster effective communication among team members, set goals, plan with greater transparency and participation, and ship software releases more predictably.

FINALISTS:

AppDynamics Cloud [Nominated 1 time(s)]

In June 2022 Cisco launched AppDynamics Cloud, a cloud-native observability platform for modern applications which are based on increasingly complex, distributed architectures and services. Designed for simplicity, usability, and intuitiveness, it empowers IT teams to deliver the exceptional digital experiences currently demanded by businesses, consumers and end users.

CodeLogic [Nominated 1 time(s)]

CodeLogic is a breakthrough technology that uniquely addresses the massive scope and complexity of today’s enterprise software and data infrastructure. It provides a clear understanding of software structure, from API and code to data, to address the hidden connections and dependencies that are humanly impossible to observe. CodeLogic delivers insights into the current state of growing software systems and the adverse impact of code changes that hinder innovation and cause failure.

Cribl Stream [Nominated 1 time(s)]

Cribl Stream is a vendor-agnostic observability pipeline that gives you the flexibility to collect, reduce, enrich, normalize, and route data from any source to any destination within your existing data infrastructure. You’ll finally achieve full control of your data, empowering you to choose how to treat your data to best support your business goals.

Get Data from Anywhere to Anywhere

CrowdStrike Falcon LogScale [Nominated 1 time(s)]

CrowdStrike Falcon LogScale is CrowdStrike’s centralized log management and observability solution. It addresses head-on the most common observability pain points: speed, scalability and cost. Built using an index-free architecture and advanced compression technology that drastically reduce hardware requirements, CrowdStrike Falcon LogScale enables developers to log everything and search an incomprehensible amount of data in seconds — delivering insight at every step of the development lifecycle.

Grafana LGTM [Nominated 1 time(s)]

Grafana LGTM (Loki for logs, Grafana for visualization, Tempo for traces, and Mimir for metrics) is an open and composable monitoring and observability stack built around the leading open source technology for dashboards and visualization. The stack can be run fully managed with Grafana Cloud or self-managed with the Grafana Enterprise Stack, both featuring the full suite of visualization plus metrics, logs, and traces as well as extensive enterprise data source plugins, dashboard management, alerting, reporting, and security.

Lumigo Platform [Nominated 1 time(s)]

Lumigo is a cloud-native observability and debugging platform built for serverless and

microservices applications. AI-driven distributed tracing and visual debugging provide critical

navigation through distributed environments. With Lumigo, users no longer have to comb

through logs and metrics to find and fix issues. Instead, Lumigo follows every request and

visualizes its path to help users quickly get around bottlenecks. Lumigo is agentless, no-code

and unlocks black box third-party services to surface issues.

New Relic CodeStream [Nominated 1 time(s)]

New Relic CodeStream effectively consolidates tools by facilitating production telemetry and collaboration in the integrated development environment (IDE). CodeStream allows developers to uncover production errors, discuss code and review pull requests within the IDE itself, reducing context switching and improving developer productivity. The new feature also syncs discussions between the IDE, Slack, Microsoft Teams and email, ensuring seamless communication cross platforms.

Nobl9 Platform [Nominated 1 time(s)]

Nobl9 is the first observability platform that accelerates software delivery by adding business context and eliminating data overload. Global Enterprises use Nobl9 to accelerate engineering, set clear software reliability goals, and ensure end-user satisfaction. Nobl9 enriches data from popular enterprise observability systems and fits into developer workflows using popular DevOps and collaboration tools like GitHub, Gitlab, Terraform, Helm, and more.

SolarWinds® Observability [Nominated 1 time(s)]

SolarWinds® Observability is a fully integrated, cloud-native software as a solution (SaaS) offering, built to deliver unified and comprehensive visibility for today’s modern, distributed, hybrid, and multi-cloud application environments. SolarWinds Observability also helps DevOps teams accelerate innovation to deliver better applications faster. Live code profiling is designed to flag and fix potential issues before code is shipped and user performance is impacted.

Splunk Observability Cloud [Nominated 1 time(s)]

Splunk Observability Cloud is the only fully integrated, turn-key package of all the tools DevOps teams need to conquer the complexity caused by modern applications and infrastructure.

It allows customers to deliver high performing applications and world-class customer experiences by eliminating operational blindspots. Users can quickly find, analyze and resolve incidents anywhere in their stack with all the answers in one place.R. One tightly integrated modern UI powered by the most advanced capabilities means reduced tool sprawl, centralized management, cost control, and one seamless and streamlined workflow for monitoring, troubleshooting, investigation and resolution.

StackState [Nominated 1 time(s)]

StackState provides a topology-powered observability platform purpose-built to improve the performance of today’s dynamic IT environments. The company’s observability platform auto-discovers and tracks component dependencies, relationships and configuration changes across your entire stack. The StackState platform correlates topology changes with telemetry and trace data from all components. The correlated data provides a complete view of your stack as it changes over time, enabling you to find and fix problems fast. The ability to track every change is due to our unique version graph database and a framework that we call the 4T® Data Model. This approach eliminates data silos and provides a unified topology.

The Dynatrace Software Intelligence Platform [Nominated 1 time(s)]

Dynatrace’s unified, end-to-end software intelligence platform delivers the deepest and broadest observability for dynamic hybrid and multicloud environments, all in context, and at massive scale. This observability extends beyond metrics, logs, and traces to also integrate user experience and security data, as well as data from the latest open source standards, such as OpenTelemetry. With the integration of Grail, Dynatrace’s new core technology, the software intelligence platform is revolutionizing data analytics and management by unifying observability, security, and business data from cloud-native and multicloud environments, retaining its context, and delivering instant, precise, and cost-efficient AI-powered answers and automation.

FINALISTS:

Gloo Platform [Nominated 1 time(s)]

The Solo.io Gloo Platform integrates API Gateway, Service Mesh and Networking technologies into a unified application networking platform. Gloo Platform is focused on four core use-cases to enable companies to deploy, operate and secure their cloud-native applications and APIs.

Kalix Platform [Nominated 1 time(s)]

Kalix (@kalix_io) is a Platform-as-a-Service developed by Lightbend (@lightbend). Kalix is the first and only platform that fully manages the inherent complexity of Kubernetes while simultaneously maximizing its performance. Kalix is designed for developers using any language (from Java to Python) to focus solely on the app’s business logic, while Kalix handles any and all ops duties, including databases. This enables developers to  easily build large-scale, high performance microservices and APIs with no operations required. The most admired brands around the globe use Lightbend product offerings to transform their businesses and engage billions of users every day through software that is changing the world.

Kasten by Veeam® [Nominated 1 time(s)]

The Kasten by Veeam K10 solution helps enterprises overcome Day 2 data management challenges to confidently run applications on Kubernetes. Kasten K10 integrates with relational and NoSQL databases, all major Kubernetes distributions, and runs in any cloud to maximize freedom of choice. It provides enterprise operations teams with an easy-to-use, scalable, and secure system for backup/restore, disaster recovery, and application mobility with unparalleled operational simplicity.

Palette Edge Platform [Nominated 1 time(s)]

The Palette Edge platform, was first announced in March 2022 and shortly thereafter earned Spectro Cloud recognition as a 2022 Gartner Cool Vendor in Edge Computing. Palette Edge helps IT teams redefine how cost-efficiently they can deploy and manage edge K8s clusters at scale: this includes locations with small form factor devices, no on-site IT skills and marginal connectivity. Palette Edge delivers remote troubleshooting, zero-downtime rolling upgrades and patch management, even in single-server edge deployments. This can be accomplished thanks to the platform’s unique A/B OS partition, multi-node failsafe design and support for both ARM and x86 architectures, including Intel’s Trusted Platform Module (TPM).

Rafay Kubernetes Operation Platform [Nominated 1 time(s)]

Rafay’s Kubernetes Operation Platform (KOP) is the industry’s first and only offering purpose-built for platform teams. Rafay’s built-in automation and governance helps simplify and reduce the time it takes to deliver Kubernetes services and enterprise-wide standards that empower developers to innovate faster and focus on what they do best – shipping new, innovative software.

Red Hat OpenShift [Nominated 1 time(s)]

Red Hat OpenShift is a container orchestration platform that builds on Kubernetes’ rock-solid foundation—paying full respect to the open source community that continues to nurture the project. The downstream OpenShift project extends Kubernetes to make it suitable for enterprise operations teams. Indeed, Red Hat OpenShift focuses on an enterprise user experience. It’s designed to provide everything a full-scale company may need to orchestrate containers—including enhanced security options and full-time professional support—and it integrates directly into enterprises’ custom IT stacks.

StormForge Optimize Live [Nominated 1 time(s)]

StormForge Optimize Live, released in February of 2022, uses machine learning to analyze observability data and make recommendations that make applications run more efficiently without sacrificing application performance or reliability.

FINALISTS:

Aqua Platform [Nominated 1 time(s)]

Aqua stops cloud native attacks with the industry’s first unified cloud native application protection platform (CNAPP), featuring intelligence-driven cloud native detection and response capabilities. Aqua secures customers’ cloud native assets from day one and protects them in real time.No other solution can stop attacks in progress. Aqua protects the entire application lifecycle, including the code, and is the only solution that is fully integrated with software supply chain security capabilities, protecting against supply chain risk from code all the way through to runtime, across the application and underlying infrastructure. Aqua ensures that prevention is automated and response is immediate, and it guarantees that protection with a $1M warranty.

Axiomatics Platform [Nominated 1 time(s)]

Axiomatics provides an enterprise-ready, dynamic authorization strategy for authoring, managing, and auditing access control policies. Made for today’s Zero Trust challenges. With the Axiomatics solution, Information Access Management (IAM) teams establish policy guardrails, while enabling developers, DevOps and DevSecOps teams as well as application owners to author, test, deploy, and analyze policies. Organizations on the journey toward an Orchestrated Authorization approach do so with the goal of implementing an authorization vision that can support every application and resource in their technology environment.

Bionic Application Security Posture Management [Nominated 1 time(s)]

Bionic Application Security Posture Management (ASPM) helps teams make their applications secure and resilient through a complete real-time view of their application security posture in production. Bionic ASPM does for applications what CSPM (cloud security posture management) tools like Wiz, Lacework, and Prisma do for cloud infrastructure. In just a few clicks, teams can drill down to see the details of each critical risk and service along with auto-ticketing to provide immediate feedback to engineering teams, so they can remediate risk efficiently.

CrowdStrike Falcon Platform [Nominated 1 time(s)]

The CrowdStrike Falcon platform is helping enterprises improve operational and security efficiency, while eliminating redundant cybersecurity tools. The platform was purpose-built in the cloud with a single-agent architecture to provide unmatched scalability, superior protection and performance, reduced complexity and immediate time-to-value. The lightweight cloud-native architecture of the Falcon agent ensures that customers benefit from the latest versions without the expensive management overheads associated with most security vendor products and push out multiple updates and upgrades as needed, ensuring customers can stay ahead of evolving threats without any disruption or interruptions.

Deepfactor [Nominated 1 time(s)]

Designed from the ground up to secure cloud native applications, Deepfactor is a developer security platform that enables engineering teams to quickly discover and resolve security vulnerabilities, supply chain risks, and compliance violations early in development and testing.

Ermetic [Nominated 1 time(s)]

Ermetic provides a single platform where Security, DevOps, DevSecOps and IAM stakeholders can work together to govern access, improve cloud security posture and achieve least privilege access, without impacting application continuity or speed to market. Its shift left capabilities, including Just-in-Time (JIT) access and IaC scanning, help democratize security and cover the full lifecycle from development to deployment, enhancing organizational security efforts and cross-team collaboration.

Legit Security Platform [Nominated 1 time(s)]

The Legit Security Platform supports both cloud-native and on premises development and protects an organization’s software supply chain environment from attack.

The Legit Security Platform provides a foundation of complete visibility across your SDLC including visibility of other security controls like SAST and SCA.

It secures businesses with a single pane of glass across the software supply chain, providing real-time visibility, and identifies security issues that reduces organizational risk. We improve security effectiveness by allowing customers to address security issues earlier in the SDLC, along with deeper contextual info and automation to improve speed and productivity.

Orca Platform [Nominated 1 time(s)]

Orca was the first-to-market with an agentless cloud security solution (its patented SideScanning technology) that instantly offers 100% coverage and visibility into cloud workloads—whether VMs, serverless or containers—without the performance impact, security gaps and operational costs of agents. The Orca platform also pioneered combining CSPM, CWPP and CIEM capabilities in a single solution, defining the CNAPP category. This Unified Data Model not only reduces cloud security complexity, but also enables Orca to leverage broad contextual intelligence to prioritize alerts and recognize when seemingly unrelated issues are combined to create dangerous attack paths.

Red Hat Advanced Cluster Security [Nominated 1 time(s)]

Red Hat Advanced Cluster Security (ACS)  for Kubernetes is a Kubernetes-native security platform that enables organizations to more securely build, deploy and run cloud-native applications anywhere, as well as ensure that the underlying Kubernetes infrastructure remains hardened and protected.

Slim Platform [Nominated 1 time(s)]

Knowing what’s in your container is critical to securing your software supply chain. The Slim platform lifts the veil on container internals so you can analyze, optimize, and compare changes before deploying your cloud-native apps.

ThreatModeler Platform [Nominated 1 time(s)]

CloudModeler is ThreatModelers flagship product built for securing cloud infrastructure from design to deployment. CloudModeler is built on IaC-Assist, the latest plug-in that enables organizations to reduce their threat drift from code to cloud by reducing the manual labor required to scan and remediate security threats. CloudModeler, improves developer productivity by identifying the design flaw or vulnerability, explaining the issue represented, and providing just-in-time contextual guidance for revision.

TrilioVault for Kubernetes [Nominated 1 time(s)]

TrilioVault for Kubernetes (TVK) is a cloud-native data protection platform that supports applications in any environment. Whether on-prem, in the cloud, or at the edge, TVK protects your entire Kubernetes application, including data, metadata, and all associated objects, allowing you to restore from any point in time with just one click. With TVK, you can easily backup and recover your applications, recover from ransomware attacks, meet DR protocols, and migrate apps across cloud infra.

FINALISTS:

Open Mainframe Project Zowe [Nominated 1 time(s)]

Zowe is the most exciting innovation in the mainframe space in a generation.  It’s an open source framework that bridges DevOps and modern ways of working to the mainframe.

While mainframe processes have experienced incremental improvements over the years, DevOps has reset expectations for software velocity and quality.  The mainframe community now broadly accepts the value of DevOps and Zowe is viewed as the gateway. While there was some dispute about proprietary solutions or open source, the direction is now clear.  Rather than continuing to be constrained by proprietary options, the mainframe community now truly understands the value of the open source solutions.

Liquibase Enterprise [Nominated 1 time(s)]

Liquibase has brought its enterprise database change management platform. Liquibase Enterprise, and database DevOps to Db2 for z/OS. Liquibase allows development teams and organizations around the world to standardize and streamline their database change process within their existing CI/CD toolchain and has extended this to the world’s central data repositories running on mainframes.Liquibase Enterprise provides enterprise reliability and security for mission-critical databases in high transaction environments for highly regulated industries. Liquibase delivers developer and DBA productivity, governance and security, deployment agility, and mission-critical reliability for leading companies in banking, insurance, healthcare, and more.

The BMC Compuware Topaz Solution [Nominated 1 time(s)]

The BMC Compuware Topaz Solution provides a single user interface (UI) that both mainframe and non-mainframe developers can easily use, regardless of their expertise or skill set. We integrate the mainframe into the DevOps toolchain and enable virtualized and non-virtualized testing and automated build-test-deploy processes for higher, faster quality code. We empower developers to make changes to code, test, debug and performance tune, all in one easy to use tool.

FINALISTS:

ArmorCode AppSecOps Platform [Nominated 1 time(s)]

The ArmorCode AppSecOps Platform provides AppSec teams with the visibility, actionable insight, automation, and integration needed to build, deliver, and scale an effective and efficient AppSec program across the entire organization, as well as the DevSecOps pipeline.  ArmorCode is the only platform that enables organizations to scale Application Security Posture, Compliance and Vulnerability Management, and DevSecOps Workflow Automation all from a single platform.

Astra Streaming [Nominated 1 time(s)]

Astra Streaming is an advanced, fully-managed messaging and event streaming service built on Apache Pulsar. Featuring built-in API-level support for Kafka, RabbitMQ and Java Message Service (JMS), Astra Streaming is a ground-breaking innovation in the DevOps space that makes it easy for enterprises to get real-time value from all their data-in-motion. Delivered as a fully-managed SaaS with boundless scale, the platform offers massive throughput and low latency. Astra Streaming is the simplest way for businesses to modernize their event driven architecture and turbo charge their data-in-motion strategy.

Bionic Application Security Posture Management [Nominated 1 time(s)]

Bionic is an Application Security Posture Management (ASPM) platform that provides unique visibility into the security, data privacy, and operational risk of applications running at scale in production. In just a few clicks, you can drill down to see the details of each critical risk in the context of the service, the deployment, or the business application. Bionic’s auto-ticketing provides immediate feedback to DevOps and engineering, so they can remediate risk efficiently. Bionic integrates with all of your existing clouds, apps, and DevOps tools in minutes, so you can clearly contextualize and understand how cloud security risks now impact your business applications.

BMC Compuware zAdviser DORA Metrics dashboard [Nominated 1 time(s)]

BMC Software announced the availability of its new DORA Metrics dashboard within BMC Compuware zAdviser. This analytics tool enables the continuous measurement of DevOps key performance indicators (KPIs) for the mainframe. As part of the dashboard, users can benchmark their performance against peers in their industry through anonymous data aggregation with BMC Compuware zAdviser. Additionally, the solution uses machine learning (ML) to correlate developer behavior and KPIs and suggest optimizations.

CodeSec by Contrast Security [Nominated 1 time(s)]

Contrast’s CodeSec,  (https://www.contrastsecurity.com/developer) brings the fastest and most accurate scanner on the market right to developers for free. Developers can start scanning code, serverless environments and open source software (OSS) with ease. Contrast’s demand-driven analysis allows CodeSec to deliver 10x faster and more accurate scanning results for code and serverless applications right to the developer’s laptop. In only three clicks, users can download, authenticate (with an existing GitHub or Google Account), and start scanning with ease.

Fiberplane [Nominated 1 time(s)]

Modern CI/CD workflow, microservices and distributed teams and systems all require a new explorative form factor for infrastructure debugging, one that works real-time and takes into account the changing nature of teams. Fiberplane allows users to integrate data sources from their observability stack to get to the heart of problems quickly and collaboratively. Fiberplane offers collaborative investigation and documentation tools with real data, all hosted within a technical open source notebook format.

Firefly CloudOps [Nominated 1 time(s)]

Firefly provides a purpose-built cloud asset management solution that enables DevOps teams to manage their entire cloud infrastructure as IaC, using the same Git repo and DevOps processes and governance as they use for application software. Firefly continuously catalogs their entire cloud footprint across multi-cloud, multi-accounts and Kubernetes deployments to understand which parts of it are codified as IaC, and what is unmanaged or misconfigured. Unmanaged assets can be automatically codified as Terraform, Helm, etc, saving countless hours of engineering time.

GitKraken CI/CD for Jira [Nominated 1 time(s)]

CI/CD for Jira allows teams to view build and deployment information from your CI/CD pipelines directly in Jira. This application is a free extension for Git Integration for Jira by GitKraken. CI/CD for Jira is SOC2 certified, is part of the Atlassian Marketplace Bug Bounty Program, and has completed the Security Self-Assessment Program.  Users can also unlock additional triggers for Jira automation and search parameters for JQL queries.

Inigo Platform [Nominated 1 time(s)]

Inigo is a new GraphQL API management platform for DevOps/DevSecOps teams that offers a unique one-stop-shop for GraphQL API security, analytics, and developer productivity at scale. Inigo enables developers to avoid resource-heavy in-house tools that are costly to maintain and prone to errors. Inigo offers the absolute best developer experience around GraphQL APIs, so developer teams can scale with confidence and efficiency.

Jellyfish Benchmarks [Nominated 1 time(s)]

Jellyfish Benchmarks is the industry’s first comparative benchmarking tool for engineering leaders. With the industry’s only in-app benchmarking capability, Jellyfish customers can now understand how they stack up against peers on a percentile basis across numerous metrics on the organization, division, group or team level. Jellyfish Benchmarks also provide data-driven insights with which to inform and influence non-engineering executives, and thus drive better strategic decisions and more closely align engineering with the wider business. The new benchmarking tool enhances the Jellyfish platform’s current capabilities to measure engineering alignment against strategic business priorities and the performance and operations of engineering teams.

Rezilion Platform [Nominated 1 time(s)]

Rezilion is an automated DevSecOps platform that allows organizations to effortlessly manage and eliminate software vulnerabilities from development to production and across cloud workloads, applications, and IoT devices. Rezilion’s unified software attack surface management platform is purpose-built to manage software vulnerabilities end-to-end across the entire technology stack.

vFunction Platform [Nominated 1 time(s)]

vFunction’s application modernization platform is designed for IT organizations — from the CIOs seeking to accelerate innovation to the architects and developers who manage and maintain applications —  to rapidly and incrementally modernize their legacy application portfolios. Adopted by Microsoft, AWS and HPE, vFunction’s award-winning, patented technology is the first and only AI for App Modernization platform that alculates the complexity, risk, and technical debt associated with your applications, so you can accurately understand and present the business case around modernizing. Then it automates the design and transformation of the monolithic architecture into microservices — at a cost 3x less, a rate 25x faster with 10x less risk than doing it manually.