Veracode Application Security Platform Adds New Static Analysis Features
April 05, 2017

Veracode, recently acquired by CA Technologies, announced four new features in its Veracode Application Security Platform: Accelerated Results, Custom Cleansers, Greenlight Auto-Scan and Perl language support.

With these new features, Veracode is further enabling developers to work faster and more securely across more applications.

In alignment with the continuous development mindset, the new features within the Veracode Application Security Platform help developers reduce risk in their applications with improved time to results, accuracy and portfolio coverage:

- Accelerated Results provides developers with security findings as each application module finishes scanning. This new feature empowers developers to address security issues sooner in the software development lifecycle (SDLC) by providing results up to eight-times faster than previous methods.

- Custom Cleansers lets security architects and teams extend Veracode Static Analysis to recognize custom cleansing functions for common vulnerabilities including SQL injection, URL redirection, log forging, and header injection. This new feature allows developers to secure code faster with more accurate findings and actionable results.

- Veracode Greenlight Auto-Scan is a hands-free feature that automatically scans a file the moment it is saved, eliminating the manual step for developers.

- Perl Language Support helps security teams ensure that more of their portfolio, particularly web applications built using legacy languages, is secure.

“Developers want to reduce risk in their applications while maintaining the speed of development that CI/CD environments and DevOps demand,” said Tim Jarrett, Senior Director of Enterprise Security Strategy, Veracode. “By allowing them to review results faster and removing noise from the results, with the added advantage of support for legacy code, the new features within Veracode’s Application Security Platform empowers businesses to secure more of their application portfolios with fully automated security testing.”

Share this

Industry News

February 20, 2020

The American Council for Technology and Industry Advisory Council (ACT-IAC), the premier public-private partnership dedicated to advancing government through the application of information technology, officially announced the release of the DevOps Primer.

It was produced through a collaborative, volunteer effort by a working group from government and industry, hosted by the ACT-IAC Emerging Technology Community of Interest (COI).

February 20, 2020

DLT Solutions, a subsidiary of Tech Data, launched the Secure Software Factory (SSF), a framework that provides the U.S. public sector with consistent development and deployment of high-quality, scalable, resilient and secure software throughout an application’s lifecycle.

February 20, 2020

Netography announced the general availability of the company’s Security Operations Platform.

February 19, 2020

Perfecto by Perforce announced its integration with Katalon Studio.

February 19, 2020

Radware announced the Alteon Cloud Control as part of its Alteon Multi-Cloud Solution designed to simplify the deployment of secured application delivery services across public and private cloud environments.

February 19, 2020

BluBracket introduced its product suite, a comprehensive security solution for code in the enterprise.

February 18, 2020

Electric Cloud announced its ElectricFlow Winter 2019 Release. The platform now provides persona-based UI enhancements, new pipeline and release automation options, and new service catalog updates to streamline workflow and simplify onboarding to help companies start fast and adapt quickly.

February 18, 2020

SMA Technologies announced OpCon 19.1, the latest version of its workload automation platform.

February 18, 2020

Typemock announced the launch of its Isolator for Build Server Complete.

February 13, 2020

CyberArk announced the CyberArk Blueprint for Privileged Access Management Success, designed to help customers take a future-proof, phased and measurable approach to reducing privilege-related risk.

February 13, 2020

Cloudentity announced a partnership with Signal Sciences to provide a holistic approach for enterprise companies looking to secure their web applications and APIs.

February 13, 2020

OutSystems announced that the Portuguese government has agreed to co-finance €5.1 million through the Portugal 2020 economic development program for a pair of innovative research and development programs led by OutSystems.

February 12, 2020

Tata Consultancy Services (TCS) launched Jile 4.0, a major release of its on-the-cloud enterprise Agile DevOps platform that enables software teams to manage, automate and measure the end-to-end software delivery value stream from ideation to deployment.

February 12, 2020

Synopsys announced that on Feb. 18 it will release a major update to the Polaris Software Integrity Platform to extend its static application security testing (SAST) and software composition analysis (SCA) capabilities to the developer's desktop through the native integration of the Code Sight IDE plugin.

February 12, 2020

Tufin announced the availability of Tufin SecureCloud, a security policy automation service for enterprises needing to gain visibility and control of the security posture of their cloud-native and hybrid cloud environments.