🦫 Secure your CI with Cimon

Get Started with Cimon Attest (Beta)

Cimon Attest is an extension to Cimon Agent, the runtime security solution for CI pipelines. The extension enables seamless generation of SLSA provenance inside the pipeline and automatically signs it using the supplied key. The task is based on a NodeJS wrapper code to the docker.io/cycodelabs/cimon container image used by the eBPF-based runtime security solution.

So get started towards the goal of SLSA compliance!

Get Started with Cimon Agent

Cimon is a runtime security solution that detects and stops software supply-chain attacks on your pipeline, including those targeting SolarWinds and CodeCov, through easy onboarding and a developer-friendly experience.

By utilizing the revolutionary eBPF technology, Cimon monitors and mitigates attacks within the kernel, denying access to users' assets as soon as they arise.

Following the next getting started instructions will help you get started with Cimon's runtime security solution for Azure Pipelines.