SAST (Static Application Security Testing) is the automated analysis of written code (compiled or uncompiled) for security vulnerabilities. SAST products parse your code into different pieces that it can further analyze, in order to find vulnerabilities that are many layers deep in regard to functions and subroutines. SAST products are able to follow recursion many steps deeper than a human mind is capable; and therefore they are able to find many more types of vulnerabilities than a human being (without using automated tools for assistance).
Analyze your source code for known vulnerabilities using Static Application Security Testing (SAST). CloudDefense checks your code for violation of security rules and compares the found vulnerabilities between the source and target branches.
Prevent new vulnerabilities from passing through the Build process by adding an automated CloudDefense test to your CI/CD. To continuously avoid known vulnerabilities in your code, integrate CloudDefense into your Continuous Integration (a.k.a. build) system. You’ll get notified if your project’s code is affected by newly disclosed vulnerabilities.
CloudDefense SCA support most popular languages and support for more languages continue to be added regularly. If you need support for a language we do not support yet, please reach out to firstname.lastname@example.org so we can share upcoming launch dates with you.