Question

In SAST, during which phases are the software artifacts analyzed to uncover vulnerabilities?

a) Al the phases

b) Analysis and coding

c) Testing and deployment  

d) Coding and unit testing

Answer 1

Correct Answer is c) Testing and deployment

Static application security testing is also known as SAST.

In SAST, software artifacts are analyzed to uncover vulnerabilities during the coding and unit testing phases.

If a static analysis tool uncovers a particular vulnerability then it will find out all the instances of that particular vulnerability.