Company Research Report: Corgea Inc.
Company Overview
- Name: Corgea Inc.
- Mission: Empower every developer to ship the most secure products where security and speed are not at odds with each other.
- Founded By: No information is available
- Founding Date: No information is available
- Key People:
- Ahmad Sadeddin, CEO
- Adam Bronte, Founding Engineer
- Yutaka Hosoai, Founding Engineer
- Tamara Abualhsan, Founding Engineer
- Al Ghous, Advisor & CISO at Snapdocs
- Donna Wilczek, Advisor & CPO at Oomnitza
- Jawed Karim, Investor & Co-founder of YouTube
- Sam Kassoumeh, Investor & Co-founder of SecurityScoreCard
- Max Ament, Investor & Serial Entrepreneur
- Parker Treacy, Investor & Co-founder of Cobli
- Tarek Alaruri, Investor & Serial Entrepreneur
- Ian Eldred Pudney, Investor, CTO of Repacket & ex-Google Security Engineer
- Mahmoud Ali, Investor & ex-Security Leader at Reddit, Airbnb, and BitMex
- Headquarters: California, USA
- Number of Employees: No information is available
- Revenue: No information is available
- Known For: Security platform for developers which uses AI to detect and fix insecure code in applications.
Products
Overview of Products Offered
Corgea provides an AI-powered Static Application Security Testing (SAST) platform that offers comprehensive code security solutions to developers.
Key Products and Features
1. AI-Powered SAST
- Uses AI to detect and triage findings, and reduce false positives.
- Revolutionizes static analysis for precision in uncovering vulnerabilities missed by others.
2. Business & Logic Flaws Detection
- Detects complex vulnerabilities like business logic errors and misconfigurations.
3. Malicious Code Scanning
- Identifies hidden threats and backdoors through advanced scanning capabilities.
4. Secret Scanning
- Protects sensitive information by identifying hardcoded secrets.
5. Automatic Triage and Ticket Reduction
- Reduces around 30% of tickets by triaging false positives using AI.
6. High-Quality Code Fix Generation
- Provides high-quality, ready-to-approve code fixes for valid findings.
7. PolicyIQ
- Offers contextual security analysis that incorporates business domain context into vulnerability detection, enhancing accuracy.
8. SLA Management
- Manages security postures with SLAs that ensure vulnerabilities are resolved timely.
9. Integrations
- Integrates with tools like JIRA, Slack, Zapier, and webhooks for streamlined workflows.
10. Language Support
- Supports multiple languages and frameworks including Java, JavaScript, TypeScript, Go, Ruby, Python, C#, C, C++, PHP, and more.
Recent Developments
Product Developments
- SLA Management: An added feature allowing the creation of custom policies ensuring vulnerabilities are addressed within specific timeframes, maintaining governance over security posture and compliance.
- PolicyIQ Launch: Launched in January 2025, allows users to integrate detailed business context into security analyses, thus improving the precision of vulnerability detections and reducing false positives.
- New Integrations Announced:
- JIRA: Creation of automated tickets for detected vulnerabilities.
- Slack: Real-time notifications on completed scans.
- Zapier: Automates actions based on events in Corgea.
- Webhooks: Provides customized real-time notifications and data transfer.
Strategic Partnerships
- No explicit mentions of new partnerships in the available data.
Additional Features and Enhancements
- Compatibility Expansion: Inclusion of more languages in its support list such as C, C++, Kotlin, and F#.
- GitHub and Azure DevOps Integration: Easy integration for sending code fixes directly for developer approval.
- Advanced Reporting Capabilities: Provides in-depth visibility into codebase security postures.
Conclusion
This report provides a comprehensive insight into Corgea Inc.'s offerings and recent strategic initiatives. Corgea clearly focuses on enabling developers to integrate security seamlessly into their development processes, using cutting-edge AI technology to address vulnerabilities efficiently.
