Bearer - a SAST tool for security and privacy

Summary

Bearer is a newest SAST solution to scan source code and also detects sensitive data types and data exfiltration risks. It has both Free (open-source) and Enterprise plans.

7 min read

Bearer SAST tool

What is Bearer?

Bearer is the latest news in 2023 for the well-established SAST market.

It comes with modern SAST tools integration capabilities in addition to detecting privacy issues such as PII, PHI, and other sensitive data types, along with data exfiltration risks directly from code.

Bearer scan result

How is Bearer pricing works?

There are 2 plans in Bearer: Community (free) and Enterprise plans.

Enterprise plan has more advanced integration capabilities, AI-assistant for remediation, some extra discovery features.

Bearer Plans

Supported Languages

LanguagesFrameworks# rulesStatus
RubyRuby on Rails73GA
JavaScript / TypeScriptExpress, React72GA
JavaSpring28Beta
PHPSymfony65Beta
GoGorilla42Beta
Python5Alpha

update date- 26.12.2023

How to install Bearer?

Default installation:

				
					curl -sfL https://raw.githubusercontent.com/Bearer/bearer/main/contrib/install.sh | sh
				
			

Homebrew

				
					brew install bearer/tap/bearer
				
			
Debian/Ubuntu
				
					sudo apt-get install apt-transport-https
echo "deb [trusted=yes] https://apt.fury.io/bearer/ /" | sudo tee -a /etc/apt/sources.list.d/fury.list
sudo apt-get update
sudo apt-get install bearer
				
			
RHEL/CentOS
				
					$ sudo vim /etc/yum.repos.d/fury.repo
[fury]
name=Gemfury Private Repo
baseurl=https://yum.fury.io/bearer/
enabled=1
gpgcheck=0
				
			

Then install with yum:

				
					sudo yum -y update
sudo yum -y install bearer
				
			

On this page: