CA-VERACODE
1.5.2024 14:51:32 CEST | Business Wire | Press release
Veracode, a global leader in application risk management, today announced platform innovations that set a new standard for developer-powered application security. New repo risk visibility and analysis from Longbow Security, powered by Veracode, speeds up remediation of application risk from code repositories to runtime images. The solution launches alongside Veracode Fix in the Integrated Development Environment (IDE) and Batch Fix to bridge the gap between development and security teams. These latest innovations help developers focus on the most critical tasks that drive value and differentiation.
“Developers today face significant competing pressures to innovate faster and perform more security checks on their code than ever before,” said Tim Jarrett, Group Head of Product Management at Veracode. “We are committed to a frictionless experience for developers and security operators and our latest product enhancements make the job of securing code simple and seamless.”
Bringing Developer & Security Teams Together: Repo Risk Visibility & Analysis
In April, Veracode acquired Longbow Security to help organizations effectively manage and reduce application risk across the growing attack surface. The integration of Longbow’s newest capability, repo risk visibility and analysis, bridges the gap between development and security teams with enhanced visibility from code repositories to cloud assets and runtime images. It also illuminates infrastructure-as-code and misconfiguration risk for cloud assets originating from repositories.
“Customers challenged us to apply our unique cloud risk and prioritization expertise from Longbow to problems they face managing upstream risk in their code repositories,” said Derek Maki, Vice President of Product Management at Veracode. “We responded with a solution that gives visibility into the relationship between source code weaknesses and runtime security posture. Simultaneously, development teams get a consolidated view of risk and huge time savings when it comes to prioritizing remediation, reducing code changes, and fixing issues fast.”
This new feature complements Veracode’s latest innovation for GitHub repo scanning, which enables developers to streamline activities like staging servers and environments so they don’t need to scan every time. This makes it easier for development and security teams to collaborate on secure coding and scanning as Veracode results are delivered to GitHub where developers can act immediately.
Security Debt Reduction: Veracode Fix in the IDE & Batch Fix
Research shows 92 percent of U.S.-based developers are already using artificial intelligence (AI) coding tools both in and outside of work, with generative AI helping software engineers write code 35-45 percent faster. At the same time, other research suggests code developed by AI contains the same percentage of security flaws as that generated by humans.
Veracode was the first company to deliver a solution that provides developers with AI-generated secure code fixes. Since launching Veracode Fix at RSA Conference last year, hundreds of customers have used the solution to reduce their backlog of security debt and risk. Ninety-two percent of CWEs (Common Weakness Enumeration) with a severity rating from medium to very high can be addressed through AI-generated code edits from Veracode Fix.
With the introduction of Veracode Fix in the IDE, developers can now fix flaws faster with AI-suggested remediation right in the IDE, without switching applications or researching alternative code options. Fixes can be made before code is pushed through the software development lifecycle, dramatically cutting the time and cost spent fixing flaws compared to retroactive remediation.
Batch Fix enables bulk AI-assisted remediation of flaws in source code across multiple flaws and files in one operation. This makes remediation of flaws an order of magnitude faster, aiding the reduction of security debt at scale. For example, developers can use it to fix a CWE that requires an easy-to-test resolution and run it across multiple source files at once.
Jarrett closed, “With these latest innovations, Veracode meets developers where they are—in the tools they use daily—to help them secure the code they create today, without compromising productivity. This vastly improves efficiency and velocity, fostering a culture of collaboration and trust between development and security teams.”
Repo Risk Visibility & Analysis, Veracode Fix in the IDE, and Batch Fix are available immediately. For more information, please visit the Veracode blog.
Visitors to RSA Conference can learn more about Veracode’s platform and these new features by visiting Veracode’s booth #2045 in the main hall.
About Veracode
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.
Learn more at www.veracode.com, on the Veracode blog, and on LinkedIn and Twitter.
Copyright © 2024 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240501107223/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Visa Opens the Door to AI-Driven Shopping for Businesses Worldwide8.4.2026 18:00:00 CEST | Press release
Part of the Visa Intelligent Commerce portfolio, Intelligent Commerce Connect will enable more ways for agents to pay and merchants to accept agentic transactions in a single integrationCurrently in pilot with select partners including Aldar, AWS, Diddo, Highnote, Mesh, Payabli, Sumvin, and rolling out to more partners this year Visa Inc. (NYSE: V) today unveiled Intelligent Commerce Connect, a new solution that makes it easier for businesses to connect to and participate in AI-powered commerce. Intelligent Commerce Connect acts as a network, protocol, and token vault-agnostic ‘on ramp’ to agentic commerce for agent builders, merchants, and enablers. As consumers increasingly rely on AI agents to make purchases, businesses – whether they are building agents, selling to them, or processing transactions – need a simple way to get started. Intelligent Commerce Connect, part of the Visa Intelligent Commerce portfolio, meets that need. Through a single integration via the Visa Acceptance Pl
Sumitomo Corporation, SMBC Aviation Capital, Apollo and Brookfield Complete the Acquisition of Air Lease Corporation8.4.2026 15:13:00 CEST | Press release
Sumitomo Corporation, SMBC Aviation Capital, Apollo-managed funds (“Apollo”) and Brookfield today announced that they have completed the previously announced acquisition of Air Lease Corporation (“Air Lease”) and have renamed the business Sumisho Air Lease Corporation (“Sumisho Air Lease”). This transformational transaction improves the financial position of the business with long term support and aviation expertise from co-investors Sumitomo Corporation, SMBC Aviation Capital, Apollo and Brookfield. Sumisho Air Lease’s strong foundation as an established aircraft lessor, supported by SMBC Aviation Capital’s industry‑leading capabilities as servicer, creates a platform with the scale and financial strength needed to meet the fast‑changing and increasingly complex requirements of airline customers. Sumisho Air Lease will also benefit from the deep expertise and long-standing commitment that both Sumitomo Corporation and SMBC Aviation Capital bring to the global aviation leasing sector.
Sitetracker Launches Scout, an Agentic AI Platform Purpose-Built for Critical Infrastructure8.4.2026 15:00:00 CEST | Press release
Sitetracker, the leading Asset Lifecycle Management platform for critical infrastructure, today announced the launch of Scout, its new Agentic AI platform designed to help infrastructure owners, operators, and contractors gain deep insights and drive automation within their operations. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260408923336/en/ Scout, ready for real work As your AI analyst and agent, Scout is ready to work on day 1. Scout provides clarity when decisions are forming and momentum when action is required. It surfaces risk, synthesizes information, and helps accelerate execution by connecting data and driving action. Scout creates operational intelligence and turns it into action all in a secure environment that protects data sovereignty. “Our customers are looking to create compounding competitive advantages,” said Giuseppe Incitti, Chief Executive Officer of Sitetracker. “Scout delivers by providing easy t
Westinghouse Hosts Annual VVER Fuel Forum with Customers8.4.2026 15:00:00 CEST | Press release
Westinghouse currently has fuel supply contracts with all the European VVER operators Westinghouse and MVM Paks Nuclear Power Plant (NPP) recently co-hosted the VVER Fuel Forum in Budapest to share insights and plans for the continued deployment of VVER-1000 and VVER-440 fuel in operating reactors. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260408646373/en/ Participants to the VVER Fuel Forum Péter János Horváth, CEO of MVM Paks, welcomed all the participants, highlighting that Hungary is ending two decades of single supplier fuel dependency thanks to the agreement recently signed with Westinghouse to supply the VVER-440 NOVA E-6 fuel design. Six customers presented the progress made and positive outcomes achieved in the past years with the introduction of Westinghouse fuel into mixed cores with resident fuel in their reactors: Energoatom has extensive experience with Westinghouse VVER-440 and VVER-1000 fuel, currently u
Virica Biotech and FUJIFILM Biosciences Collaborate Under the Canada–Japan Co‑Innovation Program to Advance AAV Production Enhancers8.4.2026 15:00:00 CEST | Press release
Efficient production of Adeno-Associated Virus (AAV) vectors at scale for in vivo gene therapies remains a key bottleneck for broad patient access and sustainable manufacturing costs.Virica and FUJIFILM Biosciences will co-develop an off-the-shelf enhancer–media solution to boost AAV yields and process robustness in FUJIFILM Biosciences BalanCD® HEK293 system. Virica Biotech (“Virica”), a cell enhancer company specializing in Viral Sensitizers (VSE™) for viral vector manufacturing, today announced it is receiving advisory services and funding from the National Research Council of Canada Industrial Research Assistance Program (NRC IRAP), under the Canada–Japan Corporate Co-Innovation Program for a collaboration with FUJIFILM Biosciences. The collaboration will focus on optimizing a VSE™ formulation for FUJIFILM Biosciences BalanCD HEK293 media to support academic and commercial AAV producers globally. AAV vectors are a cornerstone of in vivo gene delivery for gene therapies, but they re
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom