Code Scanning That Works With Your Code - Scott Norberg - ASW #317
Security Weekly Podcast Network (Audio)
00:00
Navigating Code Scanning Challenges
This chapter examines the difficulties encountered in using SAST and DAST scanners, highlighting personal experiences from product development. The discussion focuses on the limitations of existing tools in detecting vulnerabilities and advocates for creating a custom scanner using advanced compiler APIs. It emphasizes the need for accurate vulnerability detection, effective training for developers, and the balance between customization and scalability.
Transcript
Play full episode
