All the features provided by Veracode are valuable.
How has it helped my organization?
We do not pass our release without performing a static and a dynamic scan, and mitigating the flaws identified. In terms of how our customers have benefited from the added application security of our… more»
What needs improvement?
We use Ruby on Rails and we still don't have any support for that from Veracode. The static scans on Java lack microservices architecture scanning. We have developed an in-house pattern for this and… more»
What's my experience with pricing, setup cost, and licensing?
I think licensing needs to be changed or updated so that it works with adjustments. Pricing is expensive compared to the amount of scanning we perform.
What other advice do I have?
We have made process changes and improvements, although Veracode is not tightly integrated into our CI/CD platform yet. I am very likely to recommend to colleauges that they work with CA Veracode.