Precise Intelligence is Critical when Using Open Source Components
An application architecture team at a large publicly traded utility company was investigating tools that could help them rapidly identify and remediate application security risks across their entire SDLC whenever new open source vulnerabilities are publicly disclosed.
They asked two potential partners to participate in a technical proof of concept by scanning one of their production applications. They then compared the results of the scans side-by-side in order to determine which technology provided the most accurate results. This whitepaper details what the company found.