Wave Report

The Forrester Wave™: Static Application Security Testing, Q1 2021

The 12 Providers That Matter Most And How They Stack Up

January 11th, 2021
Sandy Carielli, Principal Analyst
Sandy Carielli Principal Analyst
With contributors:
Amy DeMartine , Melissa Bongarzone , Christine Turley

Summary

In our 28-criterion evaluation of static application security testing (SAST) providers, we identified the 12 most significant ones — CAST, Checkmarx, GitHub, GitLab, HCL Software, Micro Focus, Parasoft, Perforce Software, SonarSource, Synopsys, Veracode, and WhiteHat Security — and researched, analyzed, and scored them. This report shows how each provider measures up and helps security and risk professionals select the right one for their needs.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($2995).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.