CA Veracode Named a Leader in Static Application Security Testing

BURLINGTON, Mass., Dec. 12, 2017 (GLOBE NEWSWIRE) -- Veracode, Inc., a leader in securing the world’s software, and acquired by CA Technologies (NASDAQ:CA), today announced it has been named a Leader in The Forrester Wave™: Static Application Security Testing, Q4 2017 report by Forrester Research. The report is based on the detailed evaluation of the 10 most significant vendors in static application security testing (SAST). To download the report, please click here.

According to The Forrester Wave™: Static Application Security Testing, Q4 2017, the analyst report stated that in addition to its application security platform, CA Veracode “offers the Greenlight IDE plug-in for early, on-the-fly SAST checking.” The report also stated that CA Veracode “shows very strong support for binary and byte code scanning as well as wide support of source code language.”[1] 

“CA Veracode’s mission is to help create a world where secure software is synonymous with great software, where the applications that matter are made to be secure from the start,” said Sam King, general manager, CA Veracode. “As such, we believe Forrester’s recognition of us as a leader is a result of our dedication to ensuring that both security and development professionals have the best tools at their fingertips to deploy world-class and secure applications.”

To achieve this mission, CA Veracode has evolved its static application security testing family of products to meet the changing needs of development and security professionals. CA Veracode Greenlight provides security results in seconds so developers can secure their code as they write it, while the CA Veracode Static Analysis analyzes the binary code of applications for unknown vulnerabilities in a scalable, repeatable format. CA Veracode’s Developer Sandbox functionality enables engineers to test and fix code between releases without triggering a failed policy compliance report to the security team.

Vendors were evaluated across 29 criteria including their ability to offer a variety of SAST capabilities suitable for developers and security professionals. These capabilities include source code scanning with broad language support, incremental scans, quality gates and integrations with developer tools such as IDEs and build tools.

CA Veracode extends application security across the entire software lifecycle by empowering development teams with the tools to test early, giving security teams with the solutions they need to govern security issues, and enabling operations teams maintain applications’ security resulting in reduced application risk.

To learn more about CA Veracode’s Static Application Security Testing Capabilities, please visit:

For a free trial of CA Veracode Greenlight, please visit:

Read more about the DevSecOps approach to software security, with the CA Veracode’s State of Software Security Report 2017

1The Forrester Wave™: Static Application Security Testing, Q4 2017

About CA Veracode

Veracode, CA Technologies application security business, is a leader in helping organizations secure the software that powers their world. Veracode’s SaaS platform and integrated solutions help security teams and software developers find and fix security-related defects at all points in the software development lifecycle, before they can be exploited by hackers. Our complete set of offerings help customers reduce the risk of data breaches, increase the speed of secure software delivery, meet compliance requirements, and cost effectively secure their software assets- whether that’s software they make, buy or sell.

Veracode serves more than 1,400 customers across a wide range of industries, including nearly one-third of the Fortune 100, three of the top four U.S. commercial banks and more than 20 of Forbes’ 100 Most Valuable Brands. Learn more at, on the Veracode blog, on Twitter and in the CA Veracode Community.

Copyright © 2017 Veracode, Inc. All rights reserved. All other brand names, product names, or trademarks belong to their respective holders.

Media Contact:
Laura Paine
Phone: 339-674-1535

Megan Grasty
Highwire for Veracode (U.S.)
Phone: 415-963-4174 ext. 26

Kate Baldwin
Hotwire for Veracode (UK & EMEA)