Code security scan

A code security scan is the technical process of using static (SAST) or dynamic (DAST) analysis tools (such as SonarQube, Snyk, or GitHub Advanced Security) to audit source code files. It parses script architectures to locate security flaws, vulnerable dependencies, and hardcoded secrets.