|
|
|
|
|
|
by pixl97
2107 days ago
|
|
|
As someone that works for a SAST vendor I will say it's mixed. By the choices we make in what we support in languages and their dialects we can effect the ecosystem. And at the same time, I have seen some terrible things that are picked up in code the first time they are scanned, that in theory should have been obvious but were missed for whatever reason. It gets even worse when you're looking at included libraries. Also, if you're using these tools, put in requests for new features and languages. This is how we know what customers want and where to focus resources. |
|
|