Our primary use cases are for comprehensive security assessment using static analysis, dynamic analysis, source code composition, and manual penetration tests. We also use it for security training for developers.
How has it helped my organization?
Veracode is a valuable tool in our secure SDLC process.
What is most valuable?
Source code composition analysis for vulnerabilities and license compliance is the most valuable feature.
What needs improvement?
It needs better controls to include/exclude specific sections when creating a report that can be shared externally with…