Revision as of 09:42, 15 October 2020 edit Elinruby (talk \| contribs) Extended confirmed users 106,685 edits Added to categories Tags: Mobile edit Mobile web edit Advanced mobile edit ← Previous edit		Revision as of 09:46, 15 October 2020 edit undo Elinruby (talk \| contribs) Extended confirmed users 106,685 edits →SAST weaknesses: Imp trans Tags: Mobile edit Mobile web edit Advanced mobile edit Next edit →
Line 246: ==SAST weaknesses== Even though developers are positive about the usage of SAST tools, there are different challenges ~~with~~to the adoption of SAST tools by developers.<ref name="auto"/>. With ~~the development of~~ Agile Processes ~~into~~in software development, ~~the~~early integration of SAST ~~early~~generates inmany ~~the~~bugs, ~~process~~as ~~results~~developers inusing ~~many~~this ~~problems as developers~~framework focus first on features and ~~delivering something~~delivery.<ref> {{Cite journal \|last=Arreaza\|first=Gustavo Jose Nieves Line 258: \|doi=10.1109/CSCloud/EdgeCom.2019.00-11 \|isbn=978-1-7281-1661-7 }}</ref>. Scanning a large amount of line of code with SAST tools may result in hundreds or thousands of vulnerability warnings for a single application. It generates a large number of false-positives increasing the investigation time and reducing the trust in such tools. This is particularly the case when the context of the vulnerability cannot be caught by the tool<ref>

Static application security testing: Difference between revisions