SAST

These playbooks analyze repositories for vulnerabilities in source code through Static Application Security Testing (SAST). These playbooks analyze repository code statically to find vulnerabilities such as insecure patterns, secrets, or dependency issues in 1P or 3P code. SAST is run over code repositories and does not require execution of the program, making them ideal for pre-deployment checks.