Checkmarx is a company that makes static code analysis software.

Veracode Dynamic Analysis provides context around how an application responded to an attack and how it was exploited.

PullRequest is a company offering code review as a service founded in 2017 by Lyal Avery, Tyler Mann and Patrick Barsallo.

Automated code review tool that helps developers save time and manage technical debt.

r2c is a San Francisco startup in the software security and reliability sector. The company maintains open source tools semgrep and bento.

Code Climate is a company founded in 2011 by Bryan Helmkamp.

Vicarious identify the vulnerabilities in the software without involving the vendor and protect it before the hackers take advantage of it, even in compiled applications.

We’re Semgrep, a software security company. Our mission is to profoundly improve software security and reliability to safeguard human progress.

Coverity static analysis was developed by Synopsys and helps development and security teams find and fix defects and security flaws in code.

GrammaTech is a leading developer of software-assurance tools and advanced cyber-security solutions.

AttackFlow is a static code analysis company which develops innovative solutions for secure app development.

SecuLetter is a company founded in 2015.

Rips is a Bochum-based company founded in 2016.

BugBuster is a Switzerland-based company founded in 2011.