Leading provider of SAST tool on the market asked us to analyze their scan results and security vulnerabilities findings in two popular projects. Here are results (names and results redacted due to confidentiality and sensitivity).

 

Project Commercial Tool – Number of Findings False Positives (FP) found by Glog True Positives (TP) found by Glog Remediation Advice provided by Glog
AH 3466 3460 6 Yes, for all TPs
OAM 9028 8985 43 Yes, for all TPs

 

Work in progress with couple of popular tools including messengers and similar.