Our new dataviz tool, the Software Security Explorer, gives you the ability to answer multitude of questions you may have about application security. Learn about flaw prevalence of CWEs and their corresponding fix rates, learn how many apps are OWASP compliant on first scan, filter every view by either Language, Industry, or both. Try it out today:

Catch up with appsec trends and news via the Veracode podcast:

We're headed to DeveloperWeek 2017, catch up with the Veracode team at the world's largest developer expo and conference:

Veracode Greenlight finds security defects in your code and provides contextual remediation advice to help you fix issues in seconds, right in your IDE. Learn more:

Password policies can contribute to a strong application security strategy, or create a false sense of security while leaving user data and applications open to attack.

We recently conducted a survey of developers and development managers to find out what’s on their minds and how their concerns compare to those of application security teams. The results contain some surprises:

Only by seamlessly integrating security into the development processes will we ensure secure code becomes synonymous with quality code:

The prevalent attitude about software security today is similar to the 1960s’ car-safety attitude – a defeatist approach that software is inherently unsafe, we can’t make it any safer, and we just have to live with that risk. But as with car safety in the 60s, we should fight this defeatist attitude about software, and work to make a change. Read more:

DevOps has the opportunity to become DevSecOps. It can be rapid, incremental and continuous. And it can be driven by development and operation specialists. Learn more: