Important!
January 13, 2022
Important!
Score 8 out of 10
Vetted Review
Verified User
Modules Used
- Static Analysis (SAST)
- Software Composition Analysis (SCA)
Overall Satisfaction with Veracode
All development projects must run analysis static at Veracode before going to production. We do this through [a] continuous integration pipeline on Azure, Jenkins, etc. It's integrated in our application lifecycle management processes. All development teams went to their projects Veracode reports and fix[ed] all issues in their projects before mak[ing] a step to [the] production environment.
- Identify third part components security issues and suggest updates.
- Provides training course to solve the issues found in the analysis.
- Easy to configure in our devops integration platforms. Has a good documentation for it.
- Full Integration with Azure AD.
- User management in the portal. To be more clear.
- Separate the concept of an application and components of one.
- Arrange applications into Groups/Subgroups.
- Helps in code security.
- Safe time in check security issues of the projects.
- Saves time in our project delivery to production.
Do you think Veracode delivers good value for the price?
Not sure
Are you happy with Veracode's feature set?
Yes
Did Veracode live up to sales and marketing promises?
I wasn't involved with the selection/purchase process
Did implementation of Veracode go as expected?
Yes
Would you buy Veracode again?
Yes
Integrating Veracode
- Azure Active Directory
There is no button or redirect from Veracode portal to our Azure login page or another identity provider.
- Single Signon
- API (e.g. SOAP or REST)
- AppExchange or similar marketplace
Good documentation with examples and screenshots is the most.