Veracode SBOM - Managing Risks
Do you use the Software Bill of Materials (SBOM) feature? If yes, how would you assess the SBOM feature for helping manage your risks (e.g., software supply chain, security, and licensing risks)? Please explain.
AU
AnantUpadhyay
CEO at CareerCraftly
The software bill of materials feature has proven helpful in finding bugs and flaws that may cause problems in our product when we launch it. It has helped a lot to exponentially reduce the cost after the launch cycle.
View full review »PB
Pradeep Honaganahalli Basavaraju
ML engineer at a consultancy with 10,001+ employees
Veracode's tool scans every single library and gives a dashboard showing the number of libraries, high and low criticality issues, and whether a product has any issues. It helps us assess the libraries and decide whether to resolve the issues or replace the library to minimize risks.
View full review »
Pradeep Kumar.
Founder and Director at Bizcarta Technologies India Pvt Ltd
The SBOM feature helps identify risks in all third-party software.
View full review »
reviewer2287986
Lead Product Security Engineer at a computer software company with 1,001-5,000 employees
The SBOM helps manage our risk.
View full review »Learn More: Other Topics:
- Prevent Vulnerable Code
- Policy Reporting - Compliance
- Visibility into Application Status
- Fix Flaws
- Save Time
- Security Posture
- What Would You Say?
- False-Positive Rate
- False-Positive Rate - Time and Costs
- Reduced Costs
- SBOM - Reporting
- SBOM - Managing Risks
- False Positives - Fixing Vulnerabilities
- Centralized View - All Testing Types
- Scanning Process - Importance
- Centralized View - Application Status
- Scanning Process - Best Practices
- Code Scanning
- ASC
- ASC - Support with Issues
- Shift Left
- Testing
- AI Generated Fixes
- Innovative Features
- Cost Effectiveness
- ASC - Cost
- What is the biggest difference between Veracode and Checkmarx?
- Which gives you more for your money - SonarQube or Veracode?
- Checkmarx or Veracode. Which should we choose?
- Would you recommend Veracode? What are some of your use cases?
- Checkmarx vs SonarQube; SonarQube interoperability with Checkmarx or Veracode
- What do I scan when changing code in Veracode?
- If you had to both encrypt and compress data during transmission, which would you do first and why?
- When evaluating Application Security, what aspect do you think is the most important to look for?
- What are the Top 5 cybersecurity trends in 2022?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
Buyer's Guide
Download our free Veracode Report and get advice and tips from experienced pros
sharing their opinions.
