By Madhubanti Rudra, TMCnet Contributor
Veracode, a dealer in cloud-based application risk management, has stated that they have upgraded their SecurityReview automated static binary and dynamic web application testing service with several new features. Veracode’s SecurityReview is delivered as a turnkey service that can be used to implement a comprehensive application security program leveraging automated static and dynamic analysis capabilities for internal applications, mobile applications as well as applications procured from an extended software supply chain. According to the company, with the newly announced enhancements developers can now upload applications automatically and download line-of-code specific vulnerability identification and remediation instructions directly to defect tracking systems and integrated development environments. Veracode makes accurate, reliable application security testing accessible, not only to security experts but to all developers. Developers are often requested to deliver secure software on time and within budget, without being afforded the training or technologies to make it happen. Veracode understands their problem and offers a pragmatic approach to cloud-based security testing and training, that is then integrated into local development environments that enables developers to focus on writing secure code on time and within budget. Practice Leader for Bloor Research, Nigel Stanley has stated that Veracode is really completing the ‘last mile’ needed to deliver the advantages of both static and dynamic cloud-based security testing into the on-premise development climate by integrating cloud-based testing capabilities directly into tools that are part of a developer’s everyday life. Veracode SecurityReview features a number of new APIs and reference integrations that support security testing in popular Java, .Net, C/C
View the Original article