# Introduction
## Hey... we are Arnica!
Arnica is an application security posture management (ASPM) solution that protects developers, source code, and products. Arnica actively mitigates application security risks in your development ecosystem across Static Application Security Testing (SAST), Software Composition Analysis (SCA), open source license violations, Infrastructure as Code (IaC), hardcoded secrets, excessive access to source code and more.
## Code Security
Prevent code risks and third-party vulnerabilities in source code (SAST, SCA, IaC).
## Secret Detection & Mitigation
Identify & mitigate hardcoded secrets in real time.Learn More
## Software Bill Of Materials (SBOM)
Visualize & catalogue 100% of open-source libraries used across your organization.
## Automated Developer Access Management
Maintain development velocity while implementing least privilege.
## Security Reporting & Audit
Prove efforts towards compliance with fully logged, always-active security.
## Application Security Posture Management (ASPM)
Identify and prioritize risks in your product & source code
Code Security
Prevent code risks and third-party vulnerabilities in source code (SAST, SCA, IaC).
## 
Secret Detection & Mitigation
Identify & mitigate hardcoded secrets in real time.Learn More
## 
Software Bill Of Materials (SBOM)
Visualize & catalogue 100% of open-source libraries used across your organization.
## 
Automated Developer Access Management
Maintain development velocity while implementing least privilege.
## 
Security Reporting & Audit
Prove efforts towards compliance with fully logged, always-active security.
## 
Application Security Posture Management (ASPM)
Identify and prioritize risks in your product & source code