After the first full scan with Veracode SAST, when the programmer changes something in the code, does he scan the code again completely or only the changes?
After the first full scan with Veracode SAST, when you change something in the code, you can choose to scan the code again entirely or only the changes.
Scanning the code again completely
This option may be the most comprehensive, as it will identify all potential security vulnerabilities, even those introduced in the most recent changes. However, they say that this option can be time-consuming and resource-intensive.
Scanning only the changes
This option may be faster, and it could be the more efficient option, as it will only identify the potential security vulnerabilities that were introduced in the most recent changes. However, it may not identify all of the potential security vulnerabilities.
The best option for you will depend on your circumstances. If you are concerned about missing any potential security vulnerabilities, then scanning the code again completely may be best. However, if you are looking for a faster and more efficient option, scanning only the changes may be the option you can choose.
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-generated remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time...
After the first full scan with Veracode SAST, when you change something in the code, you can choose to scan the code again entirely or only the changes.
This option may be the most comprehensive, as it will identify all potential security vulnerabilities, even those introduced in the most recent changes. However, they say that this option can be time-consuming and resource-intensive.
This option may be faster, and it could be the more efficient option, as it will only identify the potential security vulnerabilities that were introduced in the most recent changes. However, it may not identify all of the potential security vulnerabilities.
The best option for you will depend on your circumstances. If you are concerned about missing any potential security vulnerabilities, then scanning the code again completely may be best. However, if you are looking for a faster and more efficient option, scanning only the changes may be the option you can choose.