CA-VERACODE
Veracode, a global leader in application risk management, today announced platform innovations that set a new standard for developer-powered application security. New repo risk visibility and analysis from Longbow Security, powered by Veracode, speeds up remediation of application risk from code repositories to runtime images. The solution launches alongside Veracode Fix in the Integrated Development Environment (IDE) and Batch Fix to bridge the gap between development and security teams. These latest innovations help developers focus on the most critical tasks that drive value and differentiation.
“Developers today face significant competing pressures to innovate faster and perform more security checks on their code than ever before,” said Tim Jarrett, Group Head of Product Management at Veracode. “We are committed to a frictionless experience for developers and security operators and our latest product enhancements make the job of securing code simple and seamless.”
Bringing Developer & Security Teams Together: Repo Risk Visibility & Analysis
In April, Veracode acquired Longbow Security to help organizations effectively manage and reduce application risk across the growing attack surface. The integration of Longbow’s newest capability, repo risk visibility and analysis, bridges the gap between development and security teams with enhanced visibility from code repositories to cloud assets and runtime images. It also illuminates infrastructure-as-code and misconfiguration risk for cloud assets originating from repositories.
“Customers challenged us to apply our unique cloud risk and prioritization expertise from Longbow to problems they face managing upstream risk in their code repositories,” said Derek Maki, Vice President of Product Management at Veracode. “We responded with a solution that gives visibility into the relationship between source code weaknesses and runtime security posture. Simultaneously, development teams get a consolidated view of risk and huge time savings when it comes to prioritizing remediation, reducing code changes, and fixing issues fast.”
This new feature complements Veracode’s latest innovation for GitHub repo scanning, which enables developers to streamline activities like staging servers and environments so they don’t need to scan every time. This makes it easier for development and security teams to collaborate on secure coding and scanning as Veracode results are delivered to GitHub where developers can act immediately.
Security Debt Reduction: Veracode Fix in the IDE & Batch Fix
Research shows 92 percent of U.S.-based developers are already using artificial intelligence (AI) coding tools both in and outside of work, with generative AI helping software engineers write code 35-45 percent faster. At the same time, other research suggests code developed by AI contains the same percentage of security flaws as that generated by humans.
Veracode was the first company to deliver a solution that provides developers with AI-generated secure code fixes. Since launching Veracode Fix at RSA Conference last year, hundreds of customers have used the solution to reduce their backlog of security debt and risk. Ninety-two percent of CWEs (Common Weakness Enumeration) with a severity rating from medium to very high can be addressed through AI-generated code edits from Veracode Fix.
With the introduction of Veracode Fix in the IDE, developers can now fix flaws faster with AI-suggested remediation right in the IDE, without switching applications or researching alternative code options. Fixes can be made before code is pushed through the software development lifecycle, dramatically cutting the time and cost spent fixing flaws compared to retroactive remediation.
Batch Fix enables bulk AI-assisted remediation of flaws in source code across multiple flaws and files in one operation. This makes remediation of flaws an order of magnitude faster, aiding the reduction of security debt at scale. For example, developers can use it to fix a CWE that requires an easy-to-test resolution and run it across multiple source files at once.
Jarrett closed, “With these latest innovations, Veracode meets developers where they are—in the tools they use daily—to help them secure the code they create today, without compromising productivity. This vastly improves efficiency and velocity, fostering a culture of collaboration and trust between development and security teams.”
Repo Risk Visibility & Analysis, Veracode Fix in the IDE, and Batch Fix are available immediately. For more information, please visit the Veracode blog.
Visitors to RSA Conference can learn more about Veracode’s platform and these new features by visiting Veracode’s booth #2045 in the main hall.
About Veracode
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.
Learn more at www.veracode.com, on the Veracode blog, and on LinkedIn and Twitter.
Copyright © 2024 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240501107223/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
LambdaTest and SVAM International Inc. Announce Partnership to Transform Quality Engineering for Businesses26.11.2025 18:00:00 CET | Press release
The alliance empowers enterprises with accelerated SDLC cycles, reduced testing effort, and modern AI-driven digital transformation capabilities LambdaTest, a Gen-AI native quality engineering platform, announced a partnership with SVAM International, Inc., a global leader in digital transformation services. This strategic alliance marks a significant step forward in their mission to transform quality engineering for businesses worldwide. The partnership allows LambdaTest to extend its AI-native quality engineering capabilities into SVAM’s extensive digital transformation ecosystem. By integrating with SVAM’s experience in large-scale application development, testing, and delivery across major New York State and City agencies, as well as their platform expertise across Salesforce, ServiceNow, and Dynamics365, LambdaTest will empower more enterprises to modernize their software delivery pipelines. With LambdaTest’s intelligent test orchestration and execution engine at the core, teams c
GLORY Acquires Remaining Equity Shares in Acrelec Group26.11.2025 16:11:00 CET | Press release
Acrelec becomes a wholly owned subsidiary of Glory Glory Global Solutions (International) Ltd, a wholly-owned subsidiary of GLORY Ltd. [TYO:6457], has announced the acquisition of the remaining equity shares in Acrelec Group SAS. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251126039437/en/ Acrelec is a global technology company focused on reinventing the customer experience for restaurant and retail brands. Leveraging decades of software, hardware and service expertise, the company develops and integrates new platforms that increase customer engagement, optimize efficiency and improve operations. With over 120,000 installations across more than 70 countries, Acrelec counts many of the world’s best-known restaurant mega-brands among its customers. We announce that Jalel Souissi has left the Acrelec Group following the completion of the recent share acquisition. Jalel Souissi has played a pivotal role in the development and
Andersen Global styrker sin platform i Tyrkiet med tilføjelsen af medlemsvirksomhed26.11.2025 14:49:00 CET | Pressemeddelelse
Andersen Global udvider sin tilstedeværelse i Tyrkiet, efter at Celen Corporate Property Valuation & Counseling Inc. bliver til Andersen i Tyrkiet, hvilket udvider de kompetencer, der tilbydes under Andersen-brandet i landet. Det Istanbul-baserede firma blev stiftet i 1995 og ledes af Managing Partner Guniz Celen med en bred vifte af ydelser til både nationale og internationale kunder. Med ekspertise inden for finansiering af fast ejendom, værdiansættelse af materielle og immaterielle aktiver samt formueforvaltning leverer den tyrkiske afdeling af Andersen løsninger, der understøtter komplekse finansielle beslutninger for kunder i mere end 18 lande. “Vores mission har altid været at levere løsninger på de mest komplekse udfordringer inden for ejendoms- og investeringssektoren,” sagde Guniz. “At blive en del af Andersen-brandet styrker vores kompetencer som en betroet rådgiver og giver os adgang til globale ressourcer, hvilket gør os i stand til at skabe endnu større langsigtet værdi fo
Cegid Acquires Shine to Accelerate the Path of Becoming Europe's Leading Financial Copilot for SMBs and Accountants26.11.2025 14:00:00 CET | Press release
Transformative combination creates a powerhouse for SMBs and accountants, empowering businesses across Europe by integrating leading suites of e-invoicing, digital accounting, business accounts and payments, and HR solutions into a unified platform. Cegid, a European leader in cloud software for finance, accounting, HR, and retail software, and Shine, a fast-growing European fintech unicorn providing digital business accounts and payments, e-invoicing, accounting, and payroll software to small businesses across Europe, announced today that the companies have entered a definitive agreement to join forces to form a European champion and become a leading provider of software for businesses and their accountants. This transformational combination will create the first fully integrated, cloud-native and AI-driven financial hub for SMBs and accounting professionals in Europe – bringing together market-leading capabilities in e-invoicing, accounting, digital business accounts and payments, ta
U.S. FDA Grants Priority Review to Sonrotoclax for the Treatment of Relapsed or Refractory Mantle Cell Lymphoma26.11.2025 12:00:00 CET | Press release
If approved, sonrotoclax will become the first BCL2 inhibitor for R/R MCL in the U.S., addressing a high unmet need in an aggressive cancerSonrotoclax previously received Breakthrough Therapy Designation based on clinically meaningful, rapid responses in R/R MCLBeOne Medicines will present the data supporting the NDA and Priority Review for the first time at ASH 2025 BeOne Medicines Ltd. (Nasdaq: ONC; HKEX: 06160; SSE: 688235), a global oncology company, today announced that the U.S. Food and Drug Administration (FDA) has accepted and granted Priority Review to a New Drug Application (NDA) for sonrotoclax, a next-generation BCL2 inhibitor, for the treatment of adult patients with relapsed or refractory (R/R) mantle cell lymphoma (MCL), following treatment with a Bruton’s tyrosine kinase (BTK) inhibitor. “Sonrotoclax is advancing with remarkable speed, from Breakthrough Therapy Designation to Priority Review, all within a short window,” said Lai Wang, Ph.D., Global Head of R&D at BeOne.
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom