Endor Labs, a start-up focused on code and pipeline governance, has successfully raised $70m in an early-stage funding round.
Led by Lightspeed Venture Partners, the funding round saw participation from Coatue, Dell Technologies Capital, Section 32 and over 30 industry-leading executives.
Endor Labs has committed itself to enhancing code security and boosting developer productivity. According to the company, developers are currently overwhelmed with security alerts and are forced to invest significant time in integrating and maintaining security tools within their continuous integration and delivery, also known as CI/CD, pipelines. On top of this, they constantly negotiate priorities and exceptions with security teams.
With a platform built primarily on open-source software (OSS) governance, Endor Labs targets this issue by assisting teams to select and maintain secure, high-quality open-source software. As a result, the company claims to reduce vulnerability noise by approximately 80%, by focusing solely on risks that would genuinely impact an organisation’s operations.
Endor Labs plans to use the new funding to deepen its existing capabilities and expand into new areas of software development lifecycle. As the founder and CEO, Varun Badhwar, articulated, the raised capital will contribute to “deepening our existing capabilities and extending to other areas of the software development lifecycle, where AppSec can help developers ship secure code without a productivity tax”. The firm also aims to continue its investment in channels and expanding its go-to-market initiatives on a global scale.
An additional highlight of Endor Labs’ operations is its Dependency Lifecycle Management Platform. This platform conducts in-depth analytics into every OSS dependency, aiding developers in monitoring and maintaining them on a large scale and facilitating improved decision-making.
Endor Labs CEO Varun Badhwar shared, “Our Code and Pipeline Governance Platform goes beyond known vulnerabilities to give security teams a way to measure both security and operational risk. Thanks to a deep understanding of dependency usage across repositories, security professionals can prioritise vulnerabilities that are actually reachable and exploitable and detect next-generation supply chain attacks.”
This round comes just ten months after the launch of the start-up. Since its inception, Endor Labs has experienced substantial growth and earned the recognition of being a “Cool Vendor” by Gartner Inc.
Copyright © 2023 RegTech Analyst
Copyright © 2018 RegTech Analyst
