CA-VERACODE
Veracode, a global leader in application risk management, today announced platform innovations that set a new standard for developer-powered application security. New repo risk visibility and analysis from Longbow Security, powered by Veracode, speeds up remediation of application risk from code repositories to runtime images. The solution launches alongside Veracode Fix in the Integrated Development Environment (IDE) and Batch Fix to bridge the gap between development and security teams. These latest innovations help developers focus on the most critical tasks that drive value and differentiation.
“Developers today face significant competing pressures to innovate faster and perform more security checks on their code than ever before,” said Tim Jarrett, Group Head of Product Management at Veracode. “We are committed to a frictionless experience for developers and security operators and our latest product enhancements make the job of securing code simple and seamless.”
Bringing Developer & Security Teams Together: Repo Risk Visibility & Analysis
In April, Veracode acquired Longbow Security to help organizations effectively manage and reduce application risk across the growing attack surface. The integration of Longbow’s newest capability, repo risk visibility and analysis, bridges the gap between development and security teams with enhanced visibility from code repositories to cloud assets and runtime images. It also illuminates infrastructure-as-code and misconfiguration risk for cloud assets originating from repositories.
“Customers challenged us to apply our unique cloud risk and prioritization expertise from Longbow to problems they face managing upstream risk in their code repositories,” said Derek Maki, Vice President of Product Management at Veracode. “We responded with a solution that gives visibility into the relationship between source code weaknesses and runtime security posture. Simultaneously, development teams get a consolidated view of risk and huge time savings when it comes to prioritizing remediation, reducing code changes, and fixing issues fast.”
This new feature complements Veracode’s latest innovation for GitHub repo scanning, which enables developers to streamline activities like staging servers and environments so they don’t need to scan every time. This makes it easier for development and security teams to collaborate on secure coding and scanning as Veracode results are delivered to GitHub where developers can act immediately.
Security Debt Reduction: Veracode Fix in the IDE & Batch Fix
Research shows 92 percent of U.S.-based developers are already using artificial intelligence (AI) coding tools both in and outside of work, with generative AI helping software engineers write code 35-45 percent faster. At the same time, other research suggests code developed by AI contains the same percentage of security flaws as that generated by humans.
Veracode was the first company to deliver a solution that provides developers with AI-generated secure code fixes. Since launching Veracode Fix at RSA Conference last year, hundreds of customers have used the solution to reduce their backlog of security debt and risk. Ninety-two percent of CWEs (Common Weakness Enumeration) with a severity rating from medium to very high can be addressed through AI-generated code edits from Veracode Fix.
With the introduction of Veracode Fix in the IDE, developers can now fix flaws faster with AI-suggested remediation right in the IDE, without switching applications or researching alternative code options. Fixes can be made before code is pushed through the software development lifecycle, dramatically cutting the time and cost spent fixing flaws compared to retroactive remediation.
Batch Fix enables bulk AI-assisted remediation of flaws in source code across multiple flaws and files in one operation. This makes remediation of flaws an order of magnitude faster, aiding the reduction of security debt at scale. For example, developers can use it to fix a CWE that requires an easy-to-test resolution and run it across multiple source files at once.
Jarrett closed, “With these latest innovations, Veracode meets developers where they are—in the tools they use daily—to help them secure the code they create today, without compromising productivity. This vastly improves efficiency and velocity, fostering a culture of collaboration and trust between development and security teams.”
Repo Risk Visibility & Analysis, Veracode Fix in the IDE, and Batch Fix are available immediately. For more information, please visit the Veracode blog.
Visitors to RSA Conference can learn more about Veracode’s platform and these new features by visiting Veracode’s booth #2045 in the main hall.
About Veracode
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.
Learn more at www.veracode.com, on the Veracode blog, and on LinkedIn and Twitter.
Copyright © 2024 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240501107223/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Gulf Oil Selects DataXstream’s OMS+ Portal to Power LATAM Digital Transformation9.12.2025 14:33:00 CET | Press release
New deployment will enable Gulf Oil to modernize the distributor experience, support long-term digital growth and deliver a unified customer experience on SAP S/4HANA DataXstream LLC, an SAP® Endorsed App partner developing innovative solutions for SAP sales and distribution, today announced that Gulf Oil, a globally recognized lubricant company with operations in more than 25 countries, has selected OMS+ Portal to modernize and unify the company’s customer-facing sales platform across Latin America. The project is part of a broader initiative to streamline operations, enhance scalability and deliver a seamless buying experience that is fully integrated with SAP S/4HANA. As Gulf Oil continues its footprint across LATAM, the company needed a solution that would not only elevate the customer experience, but also provide the flexibility and performance needed to scale. OMS+ Portal will serve as the central platform for Gulf’s distributor network, offering a unified, SAP-embedded environme
Guardant Health and Policlinico Gemelli Launch In-House Liquid Biopsy Testing Service in Italy9.12.2025 14:05:00 CET | Press release
Leading European Hospital System Begins Offering On-site Liquid Biopsy Testing Based on Proprietary Guardant360® CDx Technology Guardant Health, Inc. (Nasdaq: GH), a leading precision oncology company, today announced the successful launch of FPG 360, an in-house liquid biopsy testing service at the Fondazione Policlinico Universitario Agostino Gemelli IRCCS (Policlinico Gemelli) in Rome, Italy. This partnership is the latest in a series of public-private partnerships Guardant Health has formed with top-tier European academic and research hospitals that embed its groundbreaking technology with existing care pathways to expand access to more cancer patients. Policlinico Gemelli will offer on-site liquid biopsy testing based on Guardant360® CDx technology. The collaboration expands access to precision oncology diagnostics and supports both routine care and clinical research. FPG 360 is one of the first dedicated liquid biopsy testing facilities in Italy housed within a hospital system. P
NTT DATA appoints CEO of newly established AI Company NTT DATA AIVista, Inc.9.12.2025 14:00:00 CET | Press release
Dr. Bratin Saha joins NTT DATA AIVista, Inc., bringing extensive experience in AI, infrastructure, platforms and solutions NTT DATA AIVista, Inc. established in Silicon Valley to help NTT operating companies accelerate the launch and scaling of AI native businesses NTT DATA, a global leader in AI, digital business and technology services, today announced the appointment of Dr. Bratin Saha as CEO of the newly established AI Company, NTT DATA AIVista, Inc., effective Dec 1, 2025. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209189202/en/ Dr. Bratin Saha, newly appointed CEO of NTT DATA AIVista, Inc. Saha brings deep expertise in AI, infrastructure, platforms and solutions; scaling new businesses and significant ecosystem relationships. Prior to joining NTT DATA, he held executive positions at NVIDIA, Amazon Web Services (AWS) and most recently DigitalOcean. At NVIDIA, Saha served as Vice President of Software Infrastructu
Aqemia to Attend the 44th Annual J.P. Morgan Healthcare Conference 20269.12.2025 14:00:00 CET | Press release
Aqemia, a drug invention company combining generative AI and quantum-inspired physics, announces it will attend and hold 1x1 meetings at the 44th Annual J.P. Morgan Healthcare Conference, taking place at The Westin St. Francis in San Francisco from January 12 to 15, 2026. Aqemia will be represented by Maximilien Levesque, CEO and co-founder, Emmanuelle Martiano, COO and co-founder, and Théa Vu-Bignand, VP Finance. Powered by QEMI, its proprietary physics-based generative AI engine for therapeutic molecule invention, Aqemia designs novel drug candidates in a repeatable, efficient, and scalable way. The company focuses on advancing its internal preclinical pipeline while establishing partnerships that validate its platform and scientific differentiation, with the ambition to accelerate the delivery of new therapies in areas of high unmet medical need. About Aqemia Aqemia is a drug invention company dedicated to creating novel molecules to address unmet medical needs. Its proprietary QEMI
Avia Expands to Europe with New German Subsidiary9.12.2025 14:00:00 CET | Press release
AviaGames, a leading global mobile skill-based gaming platform, today announced the establishment of a new subsidiary in Germany. Games industry veteran Michelle Zou has been appointed to head the new entity, overseeing market expansion and investment initiatives across Europe. This move marks a significant milestone in AviaGames’ global growth strategy. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209920028/en/ Games industry veteran Michelle Zou has been appointed to head the AviaGames German subsidiary, overseeing market expansion and investment initiatives across Europe. AviaGames has rapidly emerged as one of the most prominent interactive entertainment companies worldwide, with a global user base of tens of millions of players across North America, and Europe, spanning North America and beyond. The company is especially recognized for its popularity among female players and for delivering high-quality, skill-based
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom