Veracode - Save software and superb support!
November 08, 2022

Veracode - Save software and superb support!

Christoph Schäfer | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Modules Used

  • Static Analysis (SAST)

Overall Satisfaction with Veracode

As a Developer, I have to make sure that the System we are building is safe. Therefore Veracode helped a lot by scanning our Code for vulnerabilities. Therefore our Security Department opens up a Ticket Process wherefore we simply open up a new Static Code Scan and wait for the result. When all the vulnerabilities are fixed, we get a sign-off.
  • Customer Service.
  • Easy Usability.
  • Well Documentation.
  • Details on Documentation.
  • Customer Communication for Appointments.
  • Secure Usage of Open Source.
  • Sensitive Data Leaguage.
The Customer support is super good, and the consultant did a superb job! Unfortunately, the first appointment was not attended by Veracode. Therefore it took longer than expected to fix the issues. The overall experience was very good, though!
We use Veracode continuously during our implementation process. Therefore we have it integrated into our CI/CD pipeline. Whenever we publish new code, it is a security gate in our Pull Request policy that the Veracode scan runs on success. Therefore it is super easy when the security department needs a current scan; we can just publish a Sandbox scan and are good to go!
Yes indeed. As new packages being used are directly scanned before they are committed to our code base.
  • Black Duck Software Composition Analysis (SCA)
The usage of Veracode is definitely easier going!

Do you think Veracode delivers good value for the price?

Not sure

Are you happy with Veracode's feature set?


Did Veracode live up to sales and marketing promises?


Did implementation of Veracode go as expected?


Would you buy Veracode again?


I think that Veracode is a good basic code scan in order to ensure code security. It is super easy to integrate into CI-CD processes and offers good protection against common code vulnerabilities. It is less appropriate to consider it as the ONLY security consideration for your application.