{"id":101802,"date":"2025-05-19T06:50:23","date_gmt":"2025-05-19T04:50:23","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?post_type=learn&#038;p=101802"},"modified":"2026-04-10T17:43:31","modified_gmt":"2026-04-10T15:43:31","slug":"the-role-of-sast-in-achieving-compliance","status":"publish","type":"learn","link":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/","title":{"rendered":"The Role of SAST in Achieving Compliance"},"content":{"rendered":"<p>CISOs today face audits that demand traceability of secure code practices across the software development life cycle (SDLC). Meeting PCI-DSS 4.0, GDPR, or NIST SSDF requirements is about securing code and proving it.<\/p>\n\n\n\n<p><a href=\"https:\/\/checkmarx.com\/learn\/sast\/static-application-security-testing-sast\/\">Static Application Security Testing (SAST)<\/a> plays a critical role in helping organizations meet these obligations by identifying and remediating vulnerabilities early in the development process. In fact, OWASP <a href=\"https:\/\/owasp.org\/www-community\/controls\/Static_Code_Analysis\">recognizes<\/a> static analysis as key to the implementation phase of the SDLC.\u00a0<\/p>\n\n\n\n<p>But beyond checking boxes, a well-integrated SAST tool can support a proactive DevSecOps culture, reduce risk exposure, and make compliance a byproduct of good security hygiene.<\/p>\n\n\n\n<p>As modern compliance mandates are more prescriptive about secure software development practices than ever, compliance frameworks emphasize secure software development, vulnerability management, and risk-based controls as essential to protecting sensitive data.<\/p>\n\n\n\n<p>From a compliance perspective, SAST offers two critical benefits:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Proactive risk reduction by identifying and remediating flaws early in the SDLC, well before the software reaches production.<\/li>\n\n\n\n<li>Traceable audit evidence of secure coding activities, policies, and controls applied at the code level.<\/li>\n<\/ol>\n\n\n\n<p>This shifts security left, improving risk posture and aligning development practices with compliance expectations.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-1\"><strong>Reducing Audit Fatigue with SAST<\/strong><\/h2>\n\n\n\n<p>One of the biggest challenges in preparing for compliance audits is compiling the right documentation. Traditional approaches often require manual screenshots, exported logs, and spreadsheets. Modern SAST tools address this pain by centralizing scan data and making it easy to report on scan coverage, policy enforcement, and remediation activities and provide everything in a single compliance dashboard and easy-to-generate reports.<\/p>\n\n\n\n<p>Audit-ready reports can show:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>When code was scanned and by whom<\/li>\n\n\n\n<li>What vulnerabilities were found and how they were resolved<\/li>\n\n\n\n<li>How findings map to recognized security frameworks (e.g., OWASP Top 10) or regulatory requirements (e.g., PCI-DSS).&nbsp;&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>This traceability is critical not only for external auditors but also for internal GRC teams seeking ongoing assurance that policies are being followed.<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-2\"><strong>SAST and the OWASP Top 10: Supporting Compliance Objectives<\/strong><\/h2>\n\n\n\n<p>The OWASP Top 10 is a widely accepted standard for assessing the most critical web application security risks. While not a formal compliance framework, OWASP Top 10 is widely used by regulators and auditors to assess application security maturity. One notable inclusion in the latest list is Software and Data Integrity Failures, which focuses on issues arising from untrusted software updates, CI\/CD pipeline flaws, and insecure deserialization.<\/p>\n\n\n\n<p>These risks directly relate to compliance, particularly when handling sensitive or regulated data. A robust SAST scan can detect indicators of these vulnerabilities before they are embedded in production systems.<\/p>\n\n\n\n<p>For example, a development team might unknowingly introduce a vulnerable deserialization function into their application during a routine update. Left unchecked, this could lead to remote code execution, an issue flagged under this OWASP category, and one that could result in non-compliance with regulations like PCI-DSS or HIPAA, which mandate protection against unauthorized system access. A SAST scan with rules mapped to OWASP Top 10 categories would immediately flag this insecure coding pattern during development, enabling the team to remediate the issue before it reaches production.<\/p>\n\n\n\n<p>In these instances, CISOs should remember that compliance is more than a series of rules and processes to check off and forget. It&#8217;s a continuous process, and SAST gives CISOs and AppSec leaders the ability to validate that every build aligns with policy and risk thresholds.<\/p>\n\n\n\n<p>In modern DevSecOps practices, security is embedded into every stage of the SDLC, involving SAST \u2013 along with other application security scanning functions like <a href=\"https:\/\/checkmarx.com\/learn\/sca\/sca-sast-dast\/\">SCA and DAST<\/a> \u2013 is most effective in early SDLC phases like coding and build, complementing other tools like DAST in later phases. DevSecOps is the gold standard, but in practice developers need to feel enabled rather than hindered by processes that ensure safe software development and compliance.<\/p>\n\n\n\n<p>Some SAST providers solve this by providing <a href=\"https:\/\/checkmarx.com\/blog\/introducing-real-time-ide-scanning-more-secure-code-in-real-time\/\">in-IDE scans<\/a> so developers get feedback as they code, offering fast, lightweight scans to speed up reviews of incremental changes, and enabling auto-remediation that pinpoints the best place to fix vulnerabilities with one-click GenAI suggestions.<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-3\"><strong>Business Impact: Compliance as a Byproduct of Secure Development<\/strong><\/h2>\n\n\n\n<p>Compliance can&#8217;t succeed if it slows down development. One of the biggest misconceptions is that AppSec controls, including SAST, are only valuable when managed centrally. In reality, the most effective programs push capabilities closer to where code is written.<\/p>\n\n\n\n<p>Modern SAST tools integrate directly into the developer&#8217;s IDE and CI\/CD pipelines, providing near-instant feedback. Some tools like <a href=\"https:\/\/checkmarx.com\/cxsast-source-code-scanning\/\">Checkmarx<\/a> even offer:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Incremental scans that run only on changed code<\/li>\n\n\n\n<li>IDE extensions that highlight vulnerable lines in real-time<\/li>\n\n\n\n<li>AI-assisted remediation suggestions to guide fixes<\/li>\n<\/ul>\n\n\n<section class=\"section-block-info light-theme\">\n    <div class=\"main-wrapper block-info__wrapper\">\n        <div class=\"block-info center\">\n\t\t\t\n\t\t\t<h2 class=\"section-title article-anchor\" id=\"article-anchor-4\">Some tools like Checkmarx even offer:<\/h2>\t\t\t<p class=\"section-description\">Incremental scans that run only on changed code, IDE extensions that highlight vulnerable lines in real-time, and AI-assisted remediation suggestions to guide fixes.<\/p>\n\t\t\t<div class=\"actions\">\n\t\t\t\t        <a href=\"https:\/\/checkmarx.com\/cxsast-source-code-scanning\/\" class=\"btn btn-2 btn-bg white demo\">Learn More<\/a>\n        \t\t\t\t\t\t\t<\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n\n<p>This developer-friendly approach reduces the perception of security as a blocker. It builds a culture where compliance becomes a side effect of good coding practices.<\/p>\n\n\n\n<p>SAST testing aligns directly with the requirements of modern day developers and can even provide predefined <a href=\"https:\/\/checkmarx.com\/blog\/presets-queries-onboarding-the-checkmarx-one-difference\/\">presets<\/a>, or collections of vulnerability queries that define the scope of the SAST scan, for several common and specific frameworks to help speed up the process. With reporting capabilities that map findings to compliance frameworks, SAST serves as more than a security measure, playing the role of an audit-ready compliance control. Using SAST effectively can <a href=\"https:\/\/checkmarx.com\/learn\/sast\/compliance-harnessing-sast-for-regulatory-success\/\">reduce audit fatigue<\/a>, support documentation requirements, and demonstrate due diligence.<\/p>\n\n\n\n<p>Checkmarx provides the following presets and more to make compliance audits easier on security teams and developers alike:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>HIPAA \u2013 For sensitive patient data-related security risks according to the HIPAA (Health Insurance Portability and Accountability Act) compliance guidelines.<\/li>\n\n\n\n<li>PCI \u2013 For credit card payment application security risks according to the PCI (Payment Card Industry) compliance guidelines.<\/li>\n\n\n\n<li>FISMA \u2013 For applications in scope of the Federal Information Security Modernization Act, with security risks commonly identified in federal standards like NIST SP 800-53<\/li>\n\n\n\n<li>NIST \u2013 For secure development practices based on NIST Secure Software Development Framework (SSDF) and related guidance.<\/li>\n\n\n\n<li>OWASP Mobile Top 10 \u2013 For the top 10 mobile application security risks according to the OWASP (Open Web Application Security Project) compliance guidelines for 2024.<\/li>\n\n\n\n<li>SANS Top 25 \u2013 \u200b\u200bFor high-impact software weaknesses as identified by the SANS Institute and MITRE, often used in secure coding benchmarks.&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>Want to dive deeper? Download our free whitepaper to explore best practices, expert insights, and actionable strategies <a href=\"https:\/\/checkmarx.com\/be-ready-cybersecurity-compliance-era\/\">for securing your applications and achieving compliance<\/a>.<\/p>","protected":false},"author":84,"featured_media":101820,"parent":0,"menu_order":0,"template":"","meta":{"_acf_changed":true,"footnotes":""},"learn-cat":[849],"class_list":["post-101802","learn","type-learn","status-publish","has-post-thumbnail","hentry","learn-cat-sast"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>The Role of SAST in Achieving Compliance<\/title>\n<meta name=\"description\" content=\"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The Role of SAST in Achieving Compliance\" \/>\n<meta property=\"og:description\" content=\"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-10T15:43:31+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1279\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\"},\"author\":{\"name\":\"Avi Hein\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/3546917fa0246ce4d997275a745acd79\"},\"headline\":\"The Role of SAST in Achieving Compliance\",\"datePublished\":\"2025-05-19T04:50:23+00:00\",\"dateModified\":\"2026-04-10T15:43:31+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\"},\"wordCount\":1029,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp\",\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\",\"url\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\",\"name\":\"The Role of SAST in Achieving Compliance\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp\",\"datePublished\":\"2025-05-19T04:50:23+00:00\",\"dateModified\":\"2026-04-10T15:43:31+00:00\",\"description\":\"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp\",\"width\":2560,\"height\":1279,\"caption\":\"SAST testing image\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/3546917fa0246ce4d997275a745acd79\",\"name\":\"Avi Hein\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_84.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_84.png\",\"caption\":\"Avi Hein\"},\"url\":\"https:\/\/checkmarx.com\/author\/avihein\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The Role of SAST in Achieving Compliance","description":"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/","og_locale":"en_US","og_type":"article","og_title":"The Role of SAST in Achieving Compliance","og_description":"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.","og_url":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_modified_time":"2026-04-10T15:43:31+00:00","og_image":[{"width":2560,"height":1279,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp","type":"image\/webp"}],"twitter_card":"summary_large_image","twitter_site":"@checkmarx","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/"},"author":{"name":"Avi Hein","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/3546917fa0246ce4d997275a745acd79"},"headline":"The Role of SAST in Achieving Compliance","datePublished":"2025-05-19T04:50:23+00:00","dateModified":"2026-04-10T15:43:31+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/"},"wordCount":1029,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp","inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/","url":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/","name":"The Role of SAST in Achieving Compliance","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp","datePublished":"2025-05-19T04:50:23+00:00","dateModified":"2026-04-10T15:43:31+00:00","description":"Static Application Security Testing (SAST) is instrumental in ensuring that applications comply with security standards by analyzing source code for vulnerabilities early in the development process. This proactive approach allows developers to address security issues before deployment, facilitating adherence to regulations such as HIPAA or PCI-DSS.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/learn\/sast\/the-role-of-sast-in-achieving-compliance\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/The-Role-of-SAST-in-Achieving-Compliance-scaled.webp","width":2560,"height":1279,"caption":"SAST testing image"},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/3546917fa0246ce4d997275a745acd79","name":"Avi Hein","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_84.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_84.png","caption":"Avi Hein"},"url":"https:\/\/checkmarx.com\/author\/avihein\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/101802","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/learn"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/84"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/101802\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/101820"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=101802"}],"wp:term":[{"taxonomy":"learn-cat","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn-cat?post=101802"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}