Solutions
Platform
Checkmarx One Platform
API Security
SAST
SCA
Checkmarx One Assist
ASPM
Codebashing
Container Security
DAST
IaC Security
Malicious Package Protection
Repository Health
Secrets Detection
Solutions
Agentic AI AppSec
Code to Cloud
Developer Experience
DevSecOps
SSCS
On Premises
SAST
Industry
Public Sector
Services
Support
Services
Maturity Assessment
Open-Source and Free Tools
KICs
ZAP
Vorpal
2MS
Plans & Pricing
Partners
Partners
Our Partner Programs
Find a Partner
Programs
Channel Partners
GSI
Tech Partners
Existing Partners
Partner Portal
Academy
Partner Hub
Company
Checkmarx
About Us
Customers
Leadership
Awards
Industry Recognition
News
Events
People
Careers at Checkmarx
Trust
Security & Compliance
Get In Touch
Contact Us
Support Portal
Resources
Engage
Documentation
Packaging
Discover
Blog
Knowledge Hub
Glossary
Events
News
Press Releases
Resources
Customer Testimonials
Analyst Reports
Product Demos
Solution Briefs
Videos
Whitepapers & Reports
Webinars
All Resources
Research
Checkmarx Zero
Research Blog
Vulnerabilities
Open-Source Tools
Get a demo
Get a Demo
Home
Blog
Checkmarx Blog
Find it all here - expert insights, opinionated views and more
All articles
Shape
Tag
#DevSecTrust
Account Takeover
AEG Smart Scale
AEG Smart Scale PW 5653 B
agentic AI
AI
AI Agents
AI generated code
AI in Engineering
AI Powered
AI Revolution
AI Security
AI-Generated Code
Analyst
analyst reports
Android
Android App
Android Vulnerability
Android WebView
Android's NFC Design
Announcement
Apache Dubbo
Apache Software Foundation
Apache Struts
Apache Unomi
API
API Security
APMA
APMA Digital
Application Security
Application Security Awareness
Application Security Platform
Application Security Program
Application Security Testing
Application security training
Application Security Vulnerabilities
AppSec
AppSec Awareness
appsec awareness program
AppSec Maturity
AppSec Platform
AppSec Services
AppSec Survey
AppSec Testing
Arbitrary Code Execution
article
asca
ASPM
AST
AST Platform
Automation
awareness
Awarness
AWS
AWS Marketplace
Banking Sector
BLE
bluetooth
Bluetooth Low Energy
bluetooth security
BOLA
Breaking News
brinqa
Catastrophic Backtracking
CheckAi
Checkmarx
Checkmarx Application Security Platform
Checkmarx Fusion
checkmarx one
Checkmarx One 3.0
Checkmarx One Assist
Checkmarx Partners
CIO
CISO
Cloud AppSec Testing
Cloud Native
cnapp
Code Execution
code to cloud
Codebashing
Coding Languages
Consolidation
Container Security
Cross-Site History Manipulation
Crypto
CSRF
CVE
CVE-2020-13669
CVSS 3
CxFlow
cxsa
CxSAST
CxSCA
Cyber Security
cybersecurity
data exposure
Deep Dive Webinar
Denial of Service
Developer
Developer Advocate
Developer Education
developer experience
Developer Survey
developer training
Developers
devex
DevOps
DevSecOps
Docker
DORA metrics
dos
Drupal
Drupal security analysis
English
EU
Exec
Exploitable Path Analysis
Federal Government
Forrester Wave
Free
fusion
Future of AppSec
Gartner
Gartner Magic Quadrant
GenAI
GenAI Security
GitHub
GitLab
Go
Golang
HTTP2
HTTPS
IaC
IAC Security
IDC Marketscape
IDE Scanning
Industry Reports
Infrastructure as Code
Infrastructure as Code Security
Injection Attacks
input sanitization
Integration
Interactive Application Security Testing
Internet Of Things
IoT
JavaScript
JSON
KICS
Kubernetes
Launch
Leadership
Lenovo Watch X
List of Risks
Log4j
macOS
MAD
malicious code
Man in the Middle
microservices
MitM
Mobb.ai
Mobile App Security
Modern Application Development
National Cybersecurity Strategy
New Engine
NIS2
NIST
NIST 800-218
Nondeterministic Finite Automaton (NFA)
Open SAMM
open-source
Open-Source Analysis
Open-Source Components
open-source programming language
Open-Source Projects
Open-Source Security
Open-Source Software
Open-Source Supply Chain
OWASP
OWASP 2016 Mobile Top 10
OWASP API Security Project
OWASP API Top 10
OWASP Top 10 API
Partner Program
partners
partnership
PHP
Platform
privacy
Privilege Escalation
Public Sector
PubSec
PyPi
Python
Python Obfuscation
Race Condition
Random-token Sanitizer
RCE
Recommendations
ReDoS
Reflected XSS
regex
Regular Expression Denial of Service
Regular Expressions
Regulatory Requirements
Remote Code Execution Vulnerabilities
repository health
Research
S3
SAMM
SAST
SBOM
SCA
SCA security
SCS
secrets
secrets detection
Secure Coding
Secure Coding Education
secure coding practices
Secure Development
Secure SDLC
security
Security Champions
Security Leadership
security maturity
security research
Security training
Security Vulnerabilities
Security Vulnerability
Self-XSS
ServiceNow
Session Hijacking
Shift Left
smart scale
smart watch
Sniffing
Software Assurance Maturity Model
Software Bill of Materials
Software Composition Analysis
Software Developers
Software Development
software exposure
software security
Software Supply Chain
Software Supply Chain Security
Source Code Analysis
Speed and Security
SQL Injection
sSDLC
SSL/TLS
static analysis
Static Application Security Testing
static code analysis
Stored-XSS
Supply Chain
supply chain attack
Supply Chain Security
Sysdig
Thought Leadership
Tips
Top 10 Issues
Top Considerations
typosquatting
US Government
vibe coding
Voice of the Customer
Vulcan Cyber
vulnerabilities
Vulnerability
vulnerability disclosure
Vulnerability Remediation
Vulnerable Apps
vulnerable IoT objects
Web Tokens
webinar
WebView
XSS
Year in Review
Applied Filters:
Clear filters
October 14, 2025
Checkmarx Named a Leader for the 7th Time in the 2025 Gartner® Magic Quadrant™ for Application Security Testing
Read More