Veracode Review

Allows developers to run their own scans. I would like to see the false positives corrected.

What is most valuable?

Allows developers to run their own scans.

How has it helped my organization?

Reduced dependency on the security team to run scans. It helped the organizations to scan a large number of applications on a regular basis.

What needs improvement?

I would like to see the following:

  • Correction of the regularly received false positives
  • Options to manage comments and mitigations
  • Better UI functionality

For how long have I used the solution?

We have used this solution for a year.

What do I think about the stability of the solution?

A few months ago, there were issues with the scanners and tickets were opened. However, they were resolved. This is a stable product.

What do I think about the scalability of the solution?

There have not been any scalability issues yet.

How is customer service and technical support?

I would give technical support a rating of 8/10. At times, we have not seen the best support in terms of issues faced during a scan.

Which version of this solution are you currently using?

Static Scan 2016
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Veracode reviews from users
...who work at a Financial Services Firm
...who compared it with Coverity
Learn what your peers think about Veracode. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,773 professionals have used our research since 2012.
Add a Comment
ITCS user