Checkmarx is a company that makes static code analysis software.
Veracode Dynamic Analysis provides context around how an application responded to an attack and how it was exploited.
Veracode SCA scans open source dependencies for known vulnerabilities and makes recommendations on version updating.
Dynamic program analysis tool kit from Checkmarx
Polyspace Code Prover proves the absence of run-time errors in handwritten and generated C and C++ source code without requiring developers and software testers to execute the code.
Coverity static analysis was developed by Synopsys and helps development and security teams find and fix defects and security flaws in code.
Using static code analysis, Polyspace Client for Ada and Polyspace Server for Ada provide code verification that proves the absence of overflow, divide-by-zero, out-of-bounds array access, and certain other run-time errors in source code.
Velocity synthesizes the data from code repos to give developers full visibility and empowers engineering teams for continuous delivery.