Collaborate Disseminate
Learn how to add static application security testing (SAST) to your CI/CD workflows to constantly verify code changes and improve application integrity.
The post [Webinar] Static Analysis Security Testing (SAST) in CI/CD: Why and How appeared first on… Continue reading [Webinar] Static Analysis Security Testing (SAST) in CI/CD: Why and How
Learn how to combine static application security testing (SAST) and software composition analysis (SCA) to strengthen your software security program.
The post SAST vs. SCA: What’s the difference? Do I need both? appeared first on Software Integr… Continue reading SAST vs. SCA: What’s the difference? Do I need both?
David Woodhouse at AWS, who maintains the open source OpenConnect VPN client, explains how he integrated Coverity Scan with GitLab CI.
The post Integrating Coverity Scan with GitLab CI appeared first on Software Integrity Blog.
The post Integrating Co… Continue reading Integrating Coverity Scan with GitLab CI
MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.
The post Coverity release ties in well to the latest MITRE CWE Top 25 appeared first on Softw… Continue reading Coverity release ties in well to the latest MITRE CWE Top 25
Web frameworks can introduce security issues into web applications. Mitigate this risk with a static analysis tool that understands the frameworks you use.
The post Why your SAST tool needs to understand your web framework appeared first on Software I… Continue reading Why your SAST tool needs to understand your web framework
With so many application security tools, how do you choose the best ones for your environment? Learn how to assemble your application security toolkit.
The post Do you have the right tools in your application security toolkit? appeared first on Softwa… Continue reading Do you have the right tools in your application security toolkit?
Code quality and code security aren’t the same, but they’re closely related. And in the current cyberthreat environment, developers should care about both.
The post How are code quality and code security related? appeared first on Software… Continue reading How are code quality and code security related?
Static application security testing helps you find and fix vulnerabilities earlier in the development life cycle, resulting in more secure software.
The post How to win the application security arms race appeared first on Software Integrity Blog.
The … Continue reading How to win the application security arms race
Improve your web application security management by finding and fixing security vulnerabilities earlier and achieving compliance with industry standards. Organizations in many industries use web applications to collect and handle information such as cr… Continue reading How to manage web application security with Coverity
You’ve finally purchased a static analysis solution—but do you know how to use it? Learn how to implement SAST tools in a way that best suits your environment. In response to the growing consensus that software defects grow riskier and cost… Continue reading So you just bought a SAST tool. Now what?