Veracode Interactive Analysis installs in the pipeline with a lightweight, multi-language agent that delivers high-quality results.
Find Vulnerabilities In The Pipeline Fast
Veracode Interactive Analysis’ agent finds vulnerabilities in code by leveraging existing QA automation. It only extends pipeline run time by about 3 percent for a 5-minute QA phase, that’s only about 9 seconds.
Other IAST solutions require separate agents for each programming language, complicating tooling when testing multi-language applications. Veracode Interactive Analysis uses a single agent to cover all languages.
Get Accurate Results
Because vulnerabilities are observed at runtime from within the code, exploitability of a security issue is proven beyond doubt, reducing false positives. Veracode Interactive Analysis also detects and removes duplicate findings.