SAST for .NET

Description

Static Application Security Testing for .net applications can be a good value for our SAST feature. There are some opensource tools (https://pumascan.com/, https://dotnet-security-guard.github.io/) but they are VS plugins and don't easily adapt to execute in a pipeline job.

Proposal

Include some tool that is able to do SAST for .net applications.

Customers

https://gitlab.my.salesforce.com/0016100001CXro6 (C#)
https://gitlab.my.salesforce.com/0016100000W3J3M
https://gitlab.my.salesforce.com/0016100000ATR1n
https://gitlab.my.salesforce.com/00161000006g0bG
https://gitlab.my.salesforce.com/001610000120Exq

Edited May 07, 2018 by Patrick Harlan