Is NUCLEAUS™ hard to set up?
ANSWER = It is super easy. We took all the elbow grease out of it. :-)
What development languages do you support?
ANSWER = We support the following nine (9) languages, including:
- Go (also referred to as GoLang)
- Java (compiled please!)
- Java Script (JS)
- Ruby on Rails
What frameworks do you support?
ANSWER = We support the following 12 frameworks including:
- Ruby (Ruby on Rails)
- Angular.js 2
What Flex frameworks do you support?
ANSWER = We support currently the most popular Flex frameworks, including:
- Tide, part of the Granite Data Services platform.
What Go (GoLang) frameworks do you support?
ANSWER = We support currently the most popular Go (GoLang) frameworks, including:
- Gin Gonic
- Tiger Tonic
What Java frameworks do you currently support?
ANSWER = We support currently the following Java frameworks, including:
- Hibernate (Data-focused)
- Maven (Build-focused)
- Apache Ant with Ivy (Build-focused)
What PHP frameworks do you currently support?
ANSWER = We support currently the most popular PHP frameworks, including:
- Yii Framework
- Fat Free
What Python frameworks do you currently support?
ANSWER = We support currently the following Python frameworks, including:
What Ruby frameworks do you currently support?
ANSWER = We support currently the following most popular Ruby frameworks, including:
- Ruby on Rails
What Git repositories do you currently support?
ANSWER = We support currently the following Git hosted services, including:
- Fog Creek Kiln
- Microsoft Visual Studio Team Services
What languages do you plan to support next?
ANSWER = C# is currently under development.
How often do you add languages?
ANSWER = We add languages as fast as our "bootstrapping" is capable of.
Why do you need compiled code for scans?
ANSWER = For languages like Java, there is simply no way to provide accurate results without being part of the build. As for such, we ask that the code be compiled.
Do you scan dependencies?
ANSWER = Yes we do! Not only do we scan code but we include dependencies to give a complete picture.
What features are in your product?
ANSWER = Our product features three simple steps to continuous scanning:
- Easy sign up
- Blister-fast time to value: You can be up and scanning in minutes
- Automated continuous scanning: NUCLEAUS™ scans your code once a day by default. (Yes, you can change that settings; however, we will “nag” you if you don't scan for a couple of days.)
- Map your results to NIST conformance
- Categorize results by Critical, High, Medium, and Low vulnerabilities
What code repositories do you support?
ANSWER = We support any Git enabled services, including GitHub™, GitLab™, and BitBucket™.
Do you support TFS?
ANSWER = It is on our development roadmap but do not have a timeframe yet for release.
Do you map to OWASP?
ANSWER = In the near future, OWASP top 10 will be mapped to your vulnerabilities.
How do you charge?
ANSWER = Your subscription includes your Virtual Scanning Appliance (VSA) the ability to scan and report on all of your code repositories in BitBucket™, GitHub™, Gitlab™, and any other Git-enabled services. (NOTE: There is a one-time set up fee for your account to establish the Virtual Scanning Appliance (VSA).
What is the monthly subscription fee for a Virtual Scanning Appliance (VSA)?
ANSWER = $0 because the VSA comes with your Subscription plan.
How will I be billed?
ANSWER = You will be billed for one (1) month of Subscription at the number of repositories and the one-time setup fee which is equivalent to one (1) month of Service.
Why am I billed a setup fee?
ANSWER = We have to build, provision, and deploy your Virtual Scanning Appliance (VSA).
Can I get a refund for the Virtual Scanning Appliance (VSA)?
ANSWER = If you cancel within three (3) days or as dictated by your local credit card laws AND you have not run a scan, we will refund your fees. (NOTE: When you run a scan, we incur a cost. It is only fair that you benefit, so we should too!)
Do you offer free trials?
ANSWER = At this price? Really. No.
Do you offer any discounts on the subscription?
ANSWER = Yes we offer a 10% discount on yearly pre-paid plans.
What SLA’s do you have?
ANSWER = We do not offer a Service Level Agreement (SLA). In our EULA, we describe "best effort". If you are dissatisfied with the service, you can cancel at any time. Your membership will terminate at the end of your billing period.
How long do you keep my data?
ANSWER = We keep your scan results for 30 days, then they are gone forever.
How much can I sue Springboard Cyber Security Check for?
ANSWER = Based on the EULA you agreed to, our total liability equals one (1) month of service.
What happens if I have more code repositories than what I originally signed up for?
ANSWER = The application will prompt you to upgrade your plan as soon as a you exceed the plan’s allocated number of repositories.
How would I describe NUCLEAUS™ in a “Tweet” to someone?
ANSWER = NUCLEAUS™ continuously scans code vulnerabilities and dependencies in a way that is simple, approachable, affordable and actionable. Signup-to-scanning in 3 steps.
Why would I have zero (0) results for vulnerabilities?
ANSWER = You have great code! Keep scanning new vulnerabilities all the time to keep it that way! (NOTE: If you are scanning Java, you must compile your Java code before the scanner will show results.
If you are still having trouble, please put in a ticket at https://nucleaus.zendesk.com.
How do i get help?
ANSWER = We offer two ways to seek help:
- Submit a ticket at https://nucleaus.zendesk.com
- Give us a call at +1 (800) 609-0393
Please allow up to two (2) business days to come back to you with a response.
All company names referred to herein are trademarks™ or registered® trademarks of their respective holders, and use of them does not imply any affiliation with or endorsement by them.