Veracode Static Analysis Logo
Veracode Static Analysis Logo
Veracode

Veracode Static Analysis

Composite Score
7.5 /10
CX Score
7.9 /10
Category
Veracode Static Analysis
7.5 /10

What is Veracode Static Analysis?

Veracode Static Analysis provides fast, automated security feedback in the IDE and the pipeline, and conducts a full policy scan before deployment. It then provides clear guidance on what issues to focus on and how to fix them faster.

Company Details


Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

Veracode Static Analysis Ratings

Real user data aggregated to summarize the product performance and customer experience.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

89 Likeliness to Recommend

100 Plan to Renew

71 Satisfaction of Cost Relative to Value


{y}
{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+98 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love Veracode Static Analysis?

0% Negative
0% Neutral
100% Positive

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing

Feature Ratings

Average 76

Container Security Testing

83

Mobile Application Security Testing

83

Software Composition Analysis (SCA)

83

Interactive Application Security Testing (IAST)

83

Static Application Security Testing (SAST)

83

Vulnerability Scanning

83

Integrated Development Environment (IDE) plug-in

80

Policy Engine and Enforcements

75

Automated Workflow

75

False Positive Remediation

75

Risk Scoring

73

Vendor Capability Ratings

Average 76

Product Strategy and Rate of Improvement

79

Quality of Features

79

Ease of Data Integration

77

Usability and Intuitiveness

77

Vendor Support

77

Availability and Quality of Training

75

Breadth of Features

75

Business Value Created

75

Ease of IT Administration

75

Ease of Customization

73

Ease of Implementation

71

Veracode Static Analysis Reviews

Saurabh G.

  • Role: Information Technology
  • Industry: Engineering
  • Involvement: Initial Implementation
Validated Review
Verified Reviewer

Submitted Mar 2024

"Great tool to find security flaws"

Likeliness to Recommend

10 /10

What differentiates Veracode Static Analysis from other similar products?

My company is using Veracode as the first item to be run before a Application Security Review. It shows the items that are the possible problems before running a dynamic vulnerability scan.

What is your favorite aspect of this product?

Veracode is good static analysis tool to find security flaws. I use this tool to scan my java microservices jar files. it's easy to configure. It does not require source code and accepts binary files and scans them. We can either manually scan files or integrate with jenkin so jars are auto scanned on every build.

What do you dislike most about this product?

Can take some time. It could be better if scanning time is improved.

What recommendations would you give to someone considering this product?

Just give it a try and see how much better you will operate!

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing

Mohamed F.

  • Role: Information Technology
  • Industry: Technology
  • Involvement: IT Development, Integration, and Administration
Validated Review
Verified Reviewer

Submitted Feb 2024

Likeliness to Recommend

9 /10

Pros

  • Performance Enhancing
  • Enables Productivity
  • Unique Features
  • Efficient Service

Supriya T.

  • Role: Information Technology
  • Industry: Technology
  • Involvement: End User of Application
Validated Review
Verified Reviewer

Submitted Jul 2021

Best for carrying out static analysis on products

Likeliness to Recommend

7 /10

What differentiates Veracode Static Analysis from other similar products?

Single application can conduct static analysis on different types applications (Android builds , iOS Builds ) and gives a crisp report . Developers can make necessary changes and build secured and robust application

What is your favorite aspect of this product?

- Its ability to conduct static analysis on different application (android core files, ios core files) - Scan reports (it is now sending files in different formats )

What do you dislike most about this product?

When static analysis is running , it ask to wait for some time and we see on screen its in progress. But some times I see that , the run is completed and email is sent to my registered email. But the screen here doesn't change. As a user I assume , run is still running. This has to be improved.

What recommendations would you give to someone considering this product?

If you want to scan your applications before sending to live then this is one of the best tool to have in your organization

Pros

  • Respectful
  • Acts with Integrity
  • Includes Product Enhancements
  • Helps Innovate