At 5:24 AM -0500 1/30/07, Kenneth Van Wyk wrote: > Any SC-Lers have any first-hand experience with Veracode that they're > willing to share here?
In particular, www.veracode.com says very little about what ISPs they will process. It also implies their analysis is centered around "the Common Weakness Enumeration (CWE) from MITRE and the Common Vulnerability Scoring System (CVSS) from FIRST". That might mean they are centered on Internet issues. -- Larry Kilgallen _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________