Synopsys is a Leader in the 2021 Forrester Wave™ for SAST

Synopsys has been named a leader in The Forrester Wave™: Static Application Security Testing, Q1 2021, based on an evaluation of Coverity®, our static application security testing (SAST) solution.

In the report, Forrester evaluated 12 of the top SAST providers against 28 criteria, including accuracy, software development lifecycle integration, product vision, performance, and execution roadmap.

Takeaways from this year's report include key differentiators between vendors, such as developer enablement, new architecture support, and accuracy.

Download the report


As development speeds continue to increase and teams embrace new development methodologies, SAST solutions that build security into the software development life cycle (SDLC), regardless of how and where the application is built, will lead the pack. Vendors that offer deep integration with the CI/CD pipeline; quickly expand to protect new architecture like containers, APIs, and infrastructure-as-code (IaC); and continuously improve on performance and accuracy, position themselves to delight both security and developer stakeholders."

THE FORRESTER WAVE™: STATIC APPLICATION SECURITY TESTING

|

Q1 2021

Among the 12 SAST providers evaluated, Synopsys received:

  • The highest score in the Current Offering criterion
  • The highest score in the Software Development Lifecycle Integration criterion
  • The highest possible score in the Remediation Guidance & Education criterion
  • The highest possible score in the Product Vision criterion
  • The highest possible score in the Market Approach criterion
  • The highest possible score in the Planned Enhancements criterion
2021 Forrester Wave™ SAST report | Synopsys

References were particularly complimentary of Coverity’s low false positive rate, flexible reporting, and customer support. One reference commented that if a Coverity scan flagged an issue, 'the general consensus on the developer team is that it’s accurate and [we] need to look at it.’"

THE FORRESTER WAVE™: STATIC APPLICATION SECURITY TESTING

|

Q1 2021