Checkmarx Named a Leader in Static Application Security Testing By Independent Research Firm
Checkmarx, a global leader in software security solutions for DevOps, today announced that it has been recognized as a Leader in The Forrester Wave™: Static Application Security Testing, Q1 2021. Based on Forrester’s analysis of the 12 most significant static application security testing (SAST) vendors, Checkmarx ranks highest in the ‘strategy’ category, earning the top possible scores in the product vision, planned enhancements, execution roadmap, and market approach criteria.
“Checkmarx strives to deliver the value customers expect from an enterprise SAST offering, while also continuously evolving our solutions to be at the forefront of addressing and supporting modern application development”.
OWASP Top 10 API issues and support for Salesforce’s VisualForce and Lightning frameworks.” Furthermore, “customers embracing modern development methodologies will benefit from Checkmarx’s API support and deep integrations with CI/CD tooling.”1
The Forrester report points out, “as development speeds continue to increase and teams embrace new development methodologies, SAST solutions that build security into the software development lifecycle (SDLC), regardless of how and where the application is built, will lead the pack. Vendors that offer deep integration with the CI/CD pipeline; quickly expand to protect new architectures like containers, APIs, and infrastructure-as-code (IaC); and continuously improve on performance and accuracy, position themselves to delight both security and developer stakeholders.”
Checkmarx provides automated solutions that simplify and speed up security testing in DevOps. A foundational component of the Checkmarx Software Security Platform, CxSAST is capable of identifying hundreds of security vulnerabilities and weaknesses in custom source code, with the unique ability to scan uncompiled/unbuilt code.
By placing an emphasis on the developer experience, CxSAST enables developers to work efficiently with their preferred tools and triggers scans directly from code management platforms such as GitHub and GitLab, thereby streamlining workflows and speeding up the overall process of secure software development.
In addition to SAST, Checkmarx offers software composition analysis (CxSCA), interactive application security testing (CxIAST), and integrated developer AppSec training (CxCodebashing), providing a comprehensive approach to application security testing.