An Intellyx Brain Candy Update
Traditional application security (appsec) depends in large part on static code analysis, where the appsec tool evaluates source code for vulnerabilities. However, people now realize that static code analysis by itself is woefully inadequate for finding vulnerable code.
Code Dx addresses the limitations of static code analysis with a tool that correlates appsec information from more than 70 tools, including penetration testing and software composition analysis tools, as well as static code analysis.
Code Dx then organizes the results by problem area, presenting vulnerability information and metrics to developers when and where they need the information in order to address any issues with their code.
Code Dx works throughout the software lifecycle and also integrates with popular DevOps tools like Jenkins, Team City, and Atlassian Jira. As a result, Code Dx plays well in any DevSecOps environment that raises application security to a top priority.
Copyright © Intellyx LLC. Intellyx publishes the Cortex newsletter, advises companies on their digital transformation initiatives, and helps vendors communicate their agility stories. As of the time of writing, none of the organizations mentioned in this article are Intellyx customers. To be considered for a Brain Candy article, email us at pr@intellyx.com.