What is it?
A test for security vulnerabilities that looks at the source code or binary of an application without running it.
Why is it important?
Static Application Security Testing (SAST) can be used before an application is executable, enabling early and regular tests for security vulnerabilities. SAST allows developers to fix problems during the development phase of an application and at a much lower cost than when the code is in quality assurance (QA) or production.
...continue reading "Term of the Week: Static Application Security Testing"