Improve your web application security management by finding and fixing security vulnerabilities earlier and achieving compliance with industry standards.
Posted in Static Analysis (SAST) | Comments Off on How to manage web application security with Coverity
You’ve finally purchased a static analysis solution—but do you know how to use it? Learn how to implement SAST tools in a way that best suits your environment.
Posted in Static Analysis (SAST) | Comments Off on So you just bought a SAST tool. Now what?
Both enterprise and open source static analysis tools can boost your application security program. But each has its strengths. Learn more before you choose one.
Posted in Static Analysis (SAST) | Comments Off on How to choose between enterprise and open source static analysis
How can development teams make SAST easier? By using a platform that’s fast, accurate, and flexible and integrates with the tools they already use.
Posted in Static Analysis (SAST) | Comments Off on Making SAST easier, faster, and more integrated with Polaris
Automating static analysis in your SDLC requires a tool that integrates into daily workflows, presents results intuitively, and offers remediation guidance.
Posted in Static Analysis (SAST) | Comments Off on How to automate static analysis in your SDLC
The Polaris platform integrates the Synopsys Software Integrity portfolio into an easy-to-use solution so you can build secure, high-quality software faster.
Posted in General, Static Analysis (SAST) | Comments Off on Announcing the Polaris Software Integrity Platform
How do static analyzers manage code dependencies? There are many ways, but the best static analyzers take a hybrid approach to dependency analysis.
Posted in Developer Enablement, Static Analysis (SAST) | Comments Off on Why dependencies matter for SAST
Coverity 2018.12 adds analysis without build, covers more languages and frameworks, finds more vulnerabilities, and supports enterprise application security goals.
Posted in General, Static Analysis (SAST) | Comments Off on Coverity 2018.12: Securing enterprise applications
In our on-demand webinar with Meera Rao (Synopsys), you’ll learn how to integrate SAST into DevOps using automation to find issues early in the SDLC and support DevOps velocity.
Posted in Agile, CI/CD & DevOps, General, Static Analysis (SAST), Webinars | Comments Off on Webinar: Static analysis helps DevOps teams maintain velocity securely
If you read the previous installment, you’ll recall that we boosted ourselves to low earth orbit using CodeXM to write a Coverity checker to help enforce a naming convention (which, of course, you can tweak to suit your needs). Our progress so far: local variables and function names (including method names). Now we’ll push higher up, […]
Posted in Static Analysis (SAST) | Comments Off on Let’s write more CodeXM checkers (second-stage ignition)
Get the latest AppSec news and trends sent directly to you.
