List of supported SAST tools
| Name | Type | Supported version | Legal |
|---|---|---|---|
| Bearer | Data Flow Analysis (Source code) |
1.151.0 |
Elastic License 2.0 (Source Available) |
| Coverity Static Analysis | Data Flow Analysis (Source code and compiled code) |
2024.12.1 |
Black Duck Terms of Service v2024.2 |
| Semgrep Community Edition | Pattern matching |
1.128.1 |
LGPL-2.1 (Copyleft) |
| Snyk Code | Data Flow Analysis (Source code) |
1.1298.3 |
SNYK TERMS OF SERVICE |
| SpotBugs | Data Flow Analysis (Compiled code) |
4.9.7 |
LGPL-2.1 (Copyleft) |