Static Application Security Testing (SAST) tools, such as Snyk scan your applications for known vulnerabilities
What's returned, referencing a sample SQL Injection vulnerability found in my fork of CSPF-Founder's JavaVulnerableLab demo application.
- Vulnerabilities, and severity score per vulnerability found in code
- Description, file and line number of each discovered vulnerability
- Remediation advice
- As-needed educational content for each discovered vulnerability