Veracode Static Analysis Logo
Veracode Static Analysis Logo
Veracode

Veracode Static Analysis

Composite Score
7.5 /10
CX Score
7.9 /10
Category
Veracode Static Analysis
7.5 /10

What is Veracode Static Analysis?

Veracode Static Analysis provides fast, automated security feedback in the IDE and the pipeline, and conducts a full policy scan before deployment. It then provides clear guidance on what issues to focus on and how to fix them faster.

Company Details


Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

Veracode Static Analysis Ratings

Real user data aggregated to summarize the product performance and customer experience.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

89 Likeliness to Recommend

100 Plan to Renew

71 Satisfaction of Cost Relative to Value


{y}
{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+98 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love Veracode Static Analysis?

0% Negative
0% Neutral
100% Positive

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing

Feature Ratings

Average 76

Container Security Testing

83

Mobile Application Security Testing

83

Software Composition Analysis (SCA)

83

Interactive Application Security Testing (IAST)

83

Static Application Security Testing (SAST)

83

Vulnerability Scanning

83

Integrated Development Environment (IDE) plug-in

80

Policy Engine and Enforcements

75

Automated Workflow

75

False Positive Remediation

75

Risk Scoring

73

Vendor Capability Ratings

Average 76

Product Strategy and Rate of Improvement

79

Quality of Features

79

Ease of Data Integration

77

Usability and Intuitiveness

77

Vendor Support

77

Availability and Quality of Training

75

Breadth of Features

75

Business Value Created

75

Ease of IT Administration

75

Ease of Customization

73

Ease of Implementation

71

Veracode Static Analysis Reviews

  • Role: Information Technology
  • Industry: Government
  • Involvement: IT Leader or Manager
Validated Review
Anonymous Reviewer

Submitted Sep 2024

We’ve used it for few yeas and it’s worked well..

Likeliness to Recommend

8 /10

Pros

  • Helps Innovate
  • Continually Improving Product
  • Performance Enhancing
  • Saves Time

Amit C.

  • Role: Industry Specific Role
  • Industry: Healthcare
  • Involvement: End User of Application
Validated Review
Verified Reviewer

Submitted Mar 2024

This is an Amazing product

Likeliness to Recommend

10 /10

What differentiates Veracode Static Analysis from other similar products?

Veracode scans files, classes, and small packages, Veracode Static Analysis can be used to test the entire application.

What is your favorite aspect of this product?

clear guidance on finding, prioritizing, and fixing issues

What recommendations would you give to someone considering this product?

It enabling you to discover and inventory all of your external web applications

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing

Rajat S.

  • Role: Information Technology
  • Industry: Engineering
  • Involvement: IT Development, Integration, and Administration
Validated Review
Verified Reviewer

Submitted Mar 2024

Veracode boasts a powerful scanning engine

Likeliness to Recommend

9 /10

What differentiates Veracode Static Analysis from other similar products?

Unlike most SAST tools that require source code, Veracode can analyze compiled binaries. This is crucial for applications where source code isn't readily available, expanding its reach

What is your favorite aspect of this product?

Each vulnerability has a detailed explanation, helping developers understand the root cause and potential impact. Veracode prioritizes vulnerabilities based on severity and exploitability, allowing developers to focus on the most critical issues first.

What do you dislike most about this product?

Veracode is a commercial product with tiered pricing plans, which can be expensive for smaller teams or those with limited budgets. Setting up and configuring Veracode can be challenging for beginners, especially for teams unfamiliar with SAST tools. The comprehensive nature requires some learning curve.

What recommendations would you give to someone considering this product?

Consider your team's experience with SAST tools. If your team is new to these tools, the initial learning curve for Veracode might be steeper.

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing