πŸ”Ή
Open Source security
Find all open source software (OSS) assets and fix any known vulnerabilities or license compliance issues.
CloudDefense SCA analyzes open-source dependency vulnerabilities on your application software with a single command-line tool. Please follow the instructions for the language of your choice.

SCA vs SAST

A segment covered by Tanya Janca, an AppSec celebrity best known for founding We Hack Purple.
This video covers the difference between SCA (Software Composition Analysis) and SAST (Static Application Security Testing).
1
https://www.youtube.com/watch?v=5mgXwlgjwIo
Copied!
Your source code doesn't leave your environment, CloudDefense doesn't store or have any kind of access to it.
Last modified 2mo ago
Copy link
Contents
SCA vs SAST